Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/3dcf7b-1703-459f-ac0b-756a08a4adda/1/y-lwmA1WXMdK2ylKpox7BvUTKJA.mft
File: y-lwmA1WXMdK2ylKpox7BvUTKJA.mft (raw, json)
Hash identifier: uvZmOWHdxuXL8+nvweJ+22HRXUIH+pI3QuqvB3N35pQ=
Subject key identifier: B9:22:AB:48:4D:55:D5:E0:37:37:08:4B:9F:40:52:DE:BD:08:98:4C
Authority key identifier: CB:E9:70:98:0D:56:5C:C7:4A:DB:29:4A:A6:8C:7B:06:F5:13:28:90
Certificate issuer: /CN=cbe970980d565cc74adb294aa68c7b06f5132890
Certificate serial: 0196797B477DCAB85C978E34BCAA206F6953
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y-lwmA1WXMdK2ylKpox7BvUTKJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/3dcf7b-1703-459f-ac0b-756a08a4adda/1/y-lwmA1WXMdK2ylKpox7BvUTKJA.mft
Manifest number: 081C
Signing time: Sun 27 Apr 2025 23:00:44 +0000
Manifest this update: Sun 27 Apr 2025 23:00:44 +0000
Manifest next update: Mon 28 Apr 2025 23:00:44 +0000
Files and hashes: 1: w3_nPHf7a07mKfqvAI84MjCWgdc.roa (hash: zETLR/82/cCeh7r1wtGHL+Bc+UNE2hnrIZTGYx5oKPQ=)
2: y-lwmA1WXMdK2ylKpox7BvUTKJA.crl (hash: kT1R6B1b19mWRDVG35pXdlwPridrVtH+fCHywO5InG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/3dcf7b-1703-459f-ac0b-756a08a4adda/1/y-lwmA1WXMdK2ylKpox7BvUTKJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/3dcf7b-1703-459f-ac0b-756a08a4adda/1/y-lwmA1WXMdK2ylKpox7BvUTKJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/y-lwmA1WXMdK2ylKpox7BvUTKJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:7b:47:7d:ca:b8:5c:97:8e:34:bc:aa:20:6f:69:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbe970980d565cc74adb294aa68c7b06f5132890
Validity
Not Before: Apr 27 23:00:44 2025 GMT
Not After : Apr 28 23:00:44 2025 GMT
Subject: CN=b922ab484d55d5e03737084b9f4052debd08984c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b2:d4:5e:b3:ba:80:61:e7:4a:c2:3e:b8:de:
99:96:0a:02:38:76:87:9a:0a:df:da:99:6c:0b:06:
29:5a:0b:45:7b:3f:53:4d:7b:34:db:e7:49:ec:1f:
54:01:d1:a5:b2:a5:8d:55:e3:b2:ab:78:89:9b:b5:
37:e9:6b:34:dd:6d:b3:af:9e:24:fe:d9:c7:fc:e7:
7a:8c:66:05:eb:d7:42:52:8a:3b:a2:8d:61:ed:95:
b8:a0:97:5d:d7:92:e3:f3:66:37:c2:18:05:d7:c2:
cb:46:3f:e4:26:c2:09:07:73:34:10:08:0f:31:90:
5c:10:8d:21:9b:f4:b0:ae:ac:8c:b0:63:65:2b:de:
42:77:8f:ed:32:1a:87:79:5a:ed:ed:b4:d6:50:83:
47:d1:78:e9:bf:dd:06:d2:2e:9c:61:3f:89:9e:2d:
da:5c:3e:f7:ac:11:c0:84:09:7d:4b:cc:98:33:66:
0e:7d:f7:d0:81:7c:c6:df:45:70:7a:ac:81:be:3a:
65:c5:75:b8:33:22:b3:d6:5c:56:d0:c4:6a:c1:6a:
d1:90:d7:f6:c9:41:8c:c3:f9:35:30:bf:14:ef:87:
f4:52:98:54:60:3c:41:80:0f:96:1d:91:ad:0b:a1:
5b:c2:e4:0f:a7:01:f4:3c:df:8a:f2:b5:be:81:0a:
96:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:22:AB:48:4D:55:D5:E0:37:37:08:4B:9F:40:52:DE:BD:08:98:4C
X509v3 Authority Key Identifier:
keyid:CB:E9:70:98:0D:56:5C:C7:4A:DB:29:4A:A6:8C:7B:06:F5:13:28:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y-lwmA1WXMdK2ylKpox7BvUTKJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3dcf7b-1703-459f-ac0b-756a08a4adda/1/y-lwmA1WXMdK2ylKpox7BvUTKJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3dcf7b-1703-459f-ac0b-756a08a4adda/1/y-lwmA1WXMdK2ylKpox7BvUTKJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:92:b3:2d:e5:87:83:04:39:0a:40:ce:72:62:77:64:a4:cb:
ae:83:e8:c1:64:95:ad:8d:99:90:f0:31:6e:bf:0d:30:0a:f9:
47:85:6f:90:4c:72:3e:97:12:0a:8d:22:58:00:e2:fc:97:5a:
ff:2d:f0:4b:4c:e4:1d:16:6b:e1:bd:50:e6:bd:1e:08:44:22:
1b:9f:37:fd:1a:7a:5f:15:92:06:23:f4:a9:81:d9:a9:3e:7e:
eb:d8:49:68:c4:84:9b:71:10:ab:1d:0c:99:32:4b:a4:1b:60:
3b:b6:ff:c2:92:85:70:5c:03:20:8f:65:e8:89:2d:d9:e6:ca:
28:5c:32:71:da:a0:3a:0f:5b:67:90:03:9b:0e:eb:91:b0:92:
34:7f:77:45:7d:d2:72:ee:9e:3d:35:53:89:53:79:71:66:65:
a1:e8:33:ea:a6:3f:a3:18:d7:88:4a:58:e1:e0:ad:62:3f:33:
ab:a9:bf:27:d0:cd:fc:99:bc:d6:79:2d:de:78:1f:aa:61:c7:
e2:e5:73:19:de:63:80:99:27:ea:9d:62:fc:7c:a2:d4:12:7f:
76:b8:04:a6:e1:83:1a:f0:dc:18:07:95:38:80:c3:2a:52:29:
08:96:a6:1a:a0:1d:0b:72:21:cc:d5:9b:4d:c0:85:3b:a3:b5:
7b:58:77:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ5e0d9yrhcl440vKogb2lTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiZTk3MDk4MGQ1NjVjYzc0YWRiMjk0YWE2OGM3YjA2ZjUx
MzI4OTAwHhcNMjUwNDI3MjMwMDQ0WhcNMjUwNDI4MjMwMDQ0WjAzMTEwLwYDVQQD
EyhiOTIyYWI0ODRkNTVkNWUwMzczNzA4NGI5ZjQwNTJkZWJkMDg5ODRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA37LUXrO6gGHnSsI+uN6ZlgoCOHaH
mgrf2plsCwYpWgtFez9TTXs02+dJ7B9UAdGlsqWNVeOyq3iJm7U36Ws03W2zr54k
/tnH/Od6jGYF69dCUoo7oo1h7ZW4oJdd15Lj82Y3whgF18LLRj/kJsIJB3M0EAgP
MZBcEI0hm/SwrqyMsGNlK95Cd4/tMhqHeVrt7bTWUINH0Xjpv90G0i6cYT+Jni3a
XD73rBHAhAl9S8yYM2YOfffQgXzG30VweqyBvjplxXW4MyKz1lxW0MRqwWrRkNf2
yUGMw/k1ML8U74f0UphUYDxBgA+WHZGtC6FbwuQPpwH0PN+K8rW+gQqWnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLkiq0hNVdXgNzcIS59AUt69CJhMMB8GA1UdIwQY
MBaAFMvpcJgNVlzHStspSqaMewb1EyiQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveS1sd21BMVdYTWRLMnlsS3BveDdCdlVUS0pBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8zZGNmN2ItMTcwMy00NTlmLWFjMGIt
NzU2YTA4YTRhZGRhLzEveS1sd21BMVdYTWRLMnlsS3BveDdCdlVUS0pBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS8zZGNmN2ItMTcwMy00NTlmLWFjMGItNzU2YTA4YTRhZGRh
LzEveS1sd21BMVdYTWRLMnlsS3BveDdCdlVUS0pBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAspKzLeWH
gwQ5CkDOcmJ3ZKTLroPowWSVrY2ZkPAxbr8NMAr5R4VvkExyPpcSCo0iWADi/Jda
/y3wS0zkHRZr4b1Q5r0eCEQiG583/Rp6XxWSBiP0qYHZqT5+69hJaMSEm3EQqx0M
mTJLpBtgO7b/wpKFcFwDII9l6Ikt2ebKKFwycdqgOg9bZ5ADmw7rkbCSNH93RX3S
cu6ePTVTiVN5cWZloegz6qY/oxjXiEpY4eCtYj8zq6m/J9DN/Jm81nkt3ngfqmHH
4uVzGd5jgJkn6p1i/Hyi1BJ/drgEpuGDGvDcGAeVOIDDKlIpCJamGqAdC3IhzNWb
TcCFO6O1e1h39Q==
-----END CERTIFICATE-----
Generated at Mon Apr 28 01:58:46 2025 by rpki-client