Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
File: Ym0k1r81OWP-WvolsKWWZxUqhtA.mft (raw, json)
Hash identifier: O96K0MejK9FTQlD7KgOv9JtUirqinYgxSrhb90DzMWs=
Subject key identifier: 8D:B2:12:07:C2:31:C2:00:7E:91:5F:3E:71:89:13:28:2C:79:71:74
Authority key identifier: 62:6D:24:D6:BF:35:39:63:FE:5A:FA:25:B0:A5:96:67:15:2A:86:D0
Certificate issuer: /CN=626d24d6bf353963fe5afa25b0a59667152a86d0
Certificate serial: 019658A671AEC74EA3F639BFB4A0956CD4E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ym0k1r81OWP-WvolsKWWZxUqhtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
Manifest number: 0C8F
Signing time: Mon 21 Apr 2025 14:00:25 +0000
Manifest this update: Mon 21 Apr 2025 14:00:25 +0000
Manifest next update: Tue 22 Apr 2025 14:00:25 +0000
Files and hashes: 1: XsLpmpu2xvBP4JjcplMw-4A56mY.roa (hash: zDQ4NxbIV24C02r59jK+8GO4r9TIoUq4yC6lv1rRxf0=)
2: Ym0k1r81OWP-WvolsKWWZxUqhtA.crl (hash: 9Ac5bqrLIEzQQs6MEWAceyWEeSxHdWuCoI2tdzjZ71k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ym0k1r81OWP-WvolsKWWZxUqhtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 13:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:a6:71:ae:c7:4e:a3:f6:39:bf:b4:a0:95:6c:d4:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626d24d6bf353963fe5afa25b0a59667152a86d0
Validity
Not Before: Apr 21 14:00:25 2025 GMT
Not After : Apr 22 14:00:25 2025 GMT
Subject: CN=8db21207c231c2007e915f3e718913282c797174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:98:e8:bd:cd:1b:45:aa:81:e3:74:94:06:bf:
49:73:bb:47:c7:9f:44:df:fe:52:ce:14:e0:f5:c6:
9c:98:08:53:fc:f2:3e:af:d4:41:8a:ee:1c:db:f2:
4f:a3:9a:57:f6:48:e1:9c:cc:70:67:1b:ba:30:49:
fc:54:15:bc:df:f9:cf:3b:a5:96:f5:ed:44:5c:41:
fd:54:59:f7:9c:6a:31:d7:51:74:5c:c0:37:f3:94:
78:43:a2:be:b5:4c:d1:5b:d4:4c:c8:50:6d:31:c0:
17:79:46:cd:e0:62:b0:ed:78:b3:db:46:81:26:6d:
b4:80:92:88:b8:67:ea:61:f7:81:95:81:e8:c9:92:
97:07:8f:1c:bd:b7:18:1a:b2:dc:18:1f:7b:45:79:
98:20:63:3a:a3:63:b9:40:08:6d:08:03:aa:e9:42:
15:b5:58:5b:38:de:af:5d:cf:8f:ca:40:68:d2:ee:
10:bb:9d:1e:54:40:9e:48:62:4a:3c:1e:73:fe:a5:
e5:94:a3:42:b2:34:5e:45:3e:0f:af:e4:ee:de:2a:
e0:d2:e5:20:df:02:95:39:93:a0:7c:f2:0d:50:43:
a0:83:aa:16:22:57:78:e8:e8:32:4a:a6:69:fd:bf:
b7:42:07:ec:f7:d3:f1:68:4b:1d:e8:1e:19:ef:c7:
68:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:B2:12:07:C2:31:C2:00:7E:91:5F:3E:71:89:13:28:2C:79:71:74
X509v3 Authority Key Identifier:
keyid:62:6D:24:D6:BF:35:39:63:FE:5A:FA:25:B0:A5:96:67:15:2A:86:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ym0k1r81OWP-WvolsKWWZxUqhtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:05:78:49:28:f1:1f:3a:d9:52:63:68:f9:ac:30:05:5e:05:
81:49:15:8f:83:6b:eb:21:88:b4:31:1f:93:b1:5e:a6:14:21:
2e:5e:76:1c:08:4a:e8:a3:11:78:94:1a:c0:b9:10:64:28:b8:
e9:a2:22:02:16:21:24:87:55:e8:36:31:e9:dc:b7:ff:d7:22:
2f:d8:69:7b:a6:c4:3d:b0:ac:e5:88:f3:fd:48:79:d8:d9:0f:
32:91:d1:15:0c:38:09:65:5f:30:47:ec:3c:26:26:ec:a5:ed:
70:ae:9b:a6:75:37:f2:49:a9:33:bb:e2:ff:42:9c:a7:f6:0d:
1e:81:81:1e:60:d3:6a:92:d4:dc:13:de:c1:c4:4a:b9:81:fa:
e7:36:82:45:e5:4d:54:db:4c:4c:08:e5:98:7f:e6:74:2e:e2:
01:23:fb:73:03:3d:5e:cb:28:58:d0:00:4f:79:a5:1e:0f:23:
ae:6e:18:6f:02:35:f3:94:56:09:2d:c6:ec:1b:13:e1:7d:c3:
d9:ea:f4:67:26:07:ce:37:3d:c6:cd:55:a9:9a:de:50:b5:6a:
cb:37:e3:40:9d:97:20:ac:e1:e8:be:d2:9f:83:18:e0:9e:0b:
0a:94:52:70:e9:9a:e1:6f:52:a8:b6:38:39:3e:9d:8c:fa:0e:
18:d3:e1:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZYpnGux06j9jm/tKCVbNTnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyNmQyNGQ2YmYzNTM5NjNmZTVhZmEyNWIwYTU5NjY3MTUy
YTg2ZDAwHhcNMjUwNDIxMTQwMDI1WhcNMjUwNDIyMTQwMDI1WjAzMTEwLwYDVQQD
Eyg4ZGIyMTIwN2MyMzFjMjAwN2U5MTVmM2U3MTg5MTMyODJjNzk3MTc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5jovc0bRaqB43SUBr9Jc7tHx59E
3/5SzhTg9cacmAhT/PI+r9RBiu4c2/JPo5pX9kjhnMxwZxu6MEn8VBW83/nPO6WW
9e1EXEH9VFn3nGox11F0XMA385R4Q6K+tUzRW9RMyFBtMcAXeUbN4GKw7Xiz20aB
Jm20gJKIuGfqYfeBlYHoyZKXB48cvbcYGrLcGB97RXmYIGM6o2O5QAhtCAOq6UIV
tVhbON6vXc+PykBo0u4Qu50eVECeSGJKPB5z/qXllKNCsjReRT4Pr+Tu3irg0uUg
3wKVOZOgfPINUEOgg6oWIld46OgySqZp/b+3Qgfs99PxaEsd6B4Z78doEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI2yEgfCMcIAfpFfPnGJEygseXF0MB8GA1UdIwQY
MBaAFGJtJNa/NTlj/lr6JbCllmcVKobQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWW0wazFyODFPV1AtV3ZvbHNLV1daeFVxaHRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC82MzQzMmEtZTVkOS00NmUyLTljMDEt
YWM4MDliYmFlNzM3LzEvWW0wazFyODFPV1AtV3ZvbHNLV1daeFVxaHRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC82MzQzMmEtZTVkOS00NmUyLTljMDEtYWM4MDliYmFlNzM3
LzEvWW0wazFyODFPV1AtV3ZvbHNLV1daeFVxaHRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIgV4SSjx
HzrZUmNo+awwBV4FgUkVj4Nr6yGItDEfk7FephQhLl52HAhK6KMReJQawLkQZCi4
6aIiAhYhJIdV6DYx6dy3/9ciL9hpe6bEPbCs5Yjz/Uh52NkPMpHRFQw4CWVfMEfs
PCYm7KXtcK6bpnU38kmpM7vi/0Kcp/YNHoGBHmDTapLU3BPewcRKuYH65zaCReVN
VNtMTAjlmH/mdC7iASP7cwM9XssoWNAAT3mlHg8jrm4YbwI185RWCS3G7BsT4X3D
2er0ZyYHzjc9xs1VqZreULVqyzfjQJ2XIKzh6L7Sn4MY4J4LCpRScOma4W9SqLY4
OT6djPoOGNPh2Q==
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:32:07 2025 by rpki-client