Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
File: y6AXGgLV5KdftAY1VFrgBkyMzK0.mft (raw, json)
Hash identifier: npX2EmrwRZpbFGd3cg6BJnwiAgSMPWSdifhaSook3zc=
Subject key identifier: AA:4D:7A:4D:4E:06:E6:72:2C:8D:0D:E8:72:B5:D1:B6:FB:DD:10:7D
Authority key identifier: CB:A0:17:1A:02:D5:E4:A7:5F:B4:06:35:54:5A:E0:06:4C:8C:CC:AD
Certificate issuer: /CN=cba0171a02d5e4a75fb40635545ae0064c8cccad
Certificate serial: 0196162263F16B78FAB3B9471A9A9B43AF11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
Manifest number: 11EA
Signing time: Tue 08 Apr 2025 16:01:14 +0000
Manifest this update: Tue 08 Apr 2025 16:01:14 +0000
Manifest next update: Wed 09 Apr 2025 16:01:14 +0000
Files and hashes: 1: mj2SP2YUf8OOW3PWyfsSenlnbcQ.roa (hash: 7rYL22HIBA9YP5PrLL9E5bTyxJEJdAa2DC73cuHwaP4=)
2: y6AXGgLV5KdftAY1VFrgBkyMzK0.crl (hash: ME9lIuTh3TDB2fmaCAB8zWLq5cHtS7VwrGBzNOgDRkw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 13:43:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:16:22:63:f1:6b:78:fa:b3:b9:47:1a:9a:9b:43:af:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cba0171a02d5e4a75fb40635545ae0064c8cccad
Validity
Not Before: Apr 8 16:01:14 2025 GMT
Not After : Apr 9 16:01:14 2025 GMT
Subject: CN=aa4d7a4d4e06e6722c8d0de872b5d1b6fbdd107d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a9:29:d8:90:d4:2c:ca:13:7b:69:3e:84:72:
db:d5:6f:bd:c3:da:e0:12:5b:3d:6d:e7:6b:0d:84:
d1:fc:d4:c6:66:5b:8f:b5:42:3f:e2:fa:6b:40:f8:
f3:ca:11:a0:c3:8f:97:2a:86:60:df:c2:0c:98:c5:
6f:a1:a9:dd:d0:12:04:e1:e1:14:4c:56:5b:87:63:
09:b2:3d:a4:9e:df:62:cf:f5:39:7c:69:5e:3c:57:
04:ff:3d:cd:b5:89:46:91:b2:02:56:84:36:21:f3:
ab:be:b0:03:19:fa:a3:e7:0c:cf:69:ab:a3:04:f8:
7e:ae:62:7a:76:8e:16:bf:c7:d1:15:cc:74:a7:26:
bc:d3:b2:0a:ed:ea:49:12:7a:1d:c6:b3:2a:14:03:
a5:af:a2:ce:92:7f:11:3d:90:af:89:2d:83:dd:f5:
92:b4:17:b5:cd:2c:7b:2b:ba:15:ec:88:21:27:8d:
15:84:72:7d:04:83:3d:4a:39:fc:cd:27:72:92:3a:
c1:dc:12:a6:3b:af:b2:cf:c1:ba:61:92:fb:8a:99:
f3:93:35:6e:e5:42:0a:ed:3d:b0:bd:77:23:d2:fc:
1f:f9:f1:2d:7c:bf:72:b1:53:05:9a:ef:c4:09:40:
00:9f:9f:9c:34:08:4b:f2:77:d7:58:bd:f4:ff:3b:
cb:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:4D:7A:4D:4E:06:E6:72:2C:8D:0D:E8:72:B5:D1:B6:FB:DD:10:7D
X509v3 Authority Key Identifier:
keyid:CB:A0:17:1A:02:D5:E4:A7:5F:B4:06:35:54:5A:E0:06:4C:8C:CC:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:0a:f7:73:1b:3b:1a:d4:60:17:9f:15:e9:5a:3b:8d:aa:df:
b5:4c:4b:e5:fc:d5:8c:6a:29:a1:fa:e9:eb:25:91:c3:33:5b:
81:e3:7c:b0:f3:90:e7:6b:6d:ca:46:a7:a1:e8:49:3c:19:8c:
c2:4e:de:83:69:13:b6:64:21:eb:a3:a3:e8:35:82:d7:2e:db:
56:ec:f8:0c:81:f8:1e:72:9f:a5:71:24:98:4d:c9:7b:5c:a0:
8e:0c:52:e8:90:02:fb:b4:9e:82:1c:8d:4d:c1:d6:a1:58:87:
93:95:ab:73:25:1f:9b:c1:81:9e:78:d9:2e:fe:64:67:ba:fd:
dc:fd:ce:18:c1:50:0f:61:ef:cf:ff:14:b0:3c:32:d9:84:95:
b5:f2:7e:a2:88:49:5f:11:95:ce:56:96:4f:cb:a1:a7:9b:d8:
c5:d5:ff:af:13:ac:15:2f:ae:cd:b9:7a:00:0e:62:8b:e7:65:
17:02:f0:12:bd:0b:6a:37:13:8a:b1:93:38:7c:5a:f1:25:19:
d8:5b:c8:76:63:80:f8:d9:ae:2e:73:64:bc:da:03:c4:a5:b7:
94:8a:a5:36:59:66:df:1f:fc:c0:4b:d6:db:0d:72:39:a1:df:
ab:46:70:30:ad:2f:3c:e2:a6:8d:ac:62:9e:36:0d:74:16:dc:
1f:6d:04:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYWImPxa3j6s7lHGpqbQ68RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiYTAxNzFhMDJkNWU0YTc1ZmI0MDYzNTU0NWFlMDA2NGM4
Y2NjYWQwHhcNMjUwNDA4MTYwMTE0WhcNMjUwNDA5MTYwMTE0WjAzMTEwLwYDVQQD
EyhhYTRkN2E0ZDRlMDZlNjcyMmM4ZDBkZTg3MmI1ZDFiNmZiZGQxMDdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvakp2JDULMoTe2k+hHLb1W+9w9rg
Els9bedrDYTR/NTGZluPtUI/4vprQPjzyhGgw4+XKoZg38IMmMVvoand0BIE4eEU
TFZbh2MJsj2knt9iz/U5fGlePFcE/z3NtYlGkbICVoQ2IfOrvrADGfqj5wzPaauj
BPh+rmJ6do4Wv8fRFcx0pya807IK7epJEnodxrMqFAOlr6LOkn8RPZCviS2D3fWS
tBe1zSx7K7oV7IghJ40VhHJ9BIM9Sjn8zSdykjrB3BKmO6+yz8G6YZL7ipnzkzVu
5UIK7T2wvXcj0vwf+fEtfL9ysVMFmu/ECUAAn5+cNAhL8nfXWL30/zvLgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKpNek1OBuZyLI0N6HK10bb73RB9MB8GA1UdIwQY
MBaAFMugFxoC1eSnX7QGNVRa4AZMjMytMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTZBWEdnTFY1S2RmdEFZMVZGcmdCa3lNekswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC82NTQ0MzMtZTMyMC00MmFlLWJiNjEt
NTcwYjE0ODMzNTM0LzEveTZBWEdnTFY1S2RmdEFZMVZGcmdCa3lNekswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC82NTQ0MzMtZTMyMC00MmFlLWJiNjEtNTcwYjE0ODMzNTM0
LzEveTZBWEdnTFY1S2RmdEFZMVZGcmdCa3lNekswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASQr3cxs7
GtRgF58V6Vo7jarftUxL5fzVjGopofrp6yWRwzNbgeN8sPOQ52ttykanoehJPBmM
wk7eg2kTtmQh66Oj6DWC1y7bVuz4DIH4HnKfpXEkmE3Je1ygjgxS6JAC+7SeghyN
TcHWoViHk5WrcyUfm8GBnnjZLv5kZ7r93P3OGMFQD2Hvz/8UsDwy2YSVtfJ+oohJ
XxGVzlaWT8uhp5vYxdX/rxOsFS+uzbl6AA5ii+dlFwLwEr0LajcTirGTOHxa8SUZ
2FvIdmOA+NmuLnNkvNoDxKW3lIqlNllm3x/8wEvW2w1yOaHfq0ZwMK0vPOKmjaxi
njYNdBbcH20EaA==
-----END CERTIFICATE-----
Generated at Tue Apr 8 21:18:31 2025 by rpki-client