Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
File: YAG5U8a-H5GDHWilwBFcIODNf5o.mft (raw, json)
Hash identifier: tp2gr0xZqd/VWPzQQbW3HbUGDkH6YcnVXEMX3grmI24=
Subject key identifier: BD:89:C5:60:8B:82:CB:BA:2C:15:F8:E1:2A:26:4D:47:2B:63:6D:8D
Authority key identifier: 60:01:B9:53:C6:BE:1F:91:83:1D:68:A5:C0:11:5C:20:E0:CD:7F:9A
Certificate issuer: /CN=6001b953c6be1f91831d68a5c0115c20e0cd7f9a
Certificate serial: 0196775598945B0D6333D851DC0EF4963B0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
Manifest number: 04F3
Signing time: Sun 27 Apr 2025 13:00:20 +0000
Manifest this update: Sun 27 Apr 2025 13:00:20 +0000
Manifest next update: Mon 28 Apr 2025 13:00:20 +0000
Files and hashes: 1: QQlxlfhA9BwLpxAQMkShfHqNuQ8.roa (hash: J1jtN5BQZROl/8dEYO5qeCL3b90fBYd6l0TNzemkVxs=)
2: YAG5U8a-H5GDHWilwBFcIODNf5o.crl (hash: qbOgNXxznrhLqJmyGmdq/tO5g6OSbIN7YUXvzrPmZEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 13:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:55:98:94:5b:0d:63:33:d8:51:dc:0e:f4:96:3b:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6001b953c6be1f91831d68a5c0115c20e0cd7f9a
Validity
Not Before: Apr 27 13:00:20 2025 GMT
Not After : Apr 28 13:00:20 2025 GMT
Subject: CN=bd89c5608b82cbba2c15f8e12a264d472b636d8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:59:c6:79:59:ff:05:e3:9e:94:4d:e4:b3:fd:
b1:4e:da:9c:85:59:7d:5f:38:7d:f2:b5:cc:39:f1:
30:b5:7c:77:1e:98:22:fb:56:ea:f9:24:43:64:f6:
a9:f4:1b:9c:5d:ff:98:b7:05:be:e7:4c:bd:19:6f:
9d:ea:80:b1:ef:79:45:d0:28:f0:3f:15:80:ab:14:
2d:5c:82:e3:86:ef:02:0f:a4:74:8b:36:ef:29:90:
f8:a3:da:ba:1f:a6:56:57:95:a9:cf:0e:de:ac:33:
af:24:92:dd:cb:54:33:e8:65:ca:3a:02:11:8c:72:
30:83:5d:ac:21:40:3f:e5:15:13:04:a1:d8:08:14:
02:2b:dc:55:0b:6b:6e:5c:67:03:2a:84:52:0b:94:
18:7a:69:45:11:82:d4:fc:30:2e:e2:95:e6:a5:2d:
50:ff:60:53:58:ca:0d:40:10:d8:ae:49:83:4a:1d:
88:d9:13:5b:e8:9d:98:00:30:54:f3:88:ec:ab:25:
cd:f3:35:a3:0f:74:39:a5:91:8e:7f:76:4f:f2:75:
2d:a2:ce:b9:99:e8:ec:2f:e2:23:bc:78:73:65:4b:
21:aa:58:db:70:60:32:89:9b:da:59:22:9b:14:a2:
82:9c:f9:96:17:99:5a:e6:a4:5d:1f:cd:af:21:e7:
07:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:89:C5:60:8B:82:CB:BA:2C:15:F8:E1:2A:26:4D:47:2B:63:6D:8D
X509v3 Authority Key Identifier:
keyid:60:01:B9:53:C6:BE:1F:91:83:1D:68:A5:C0:11:5C:20:E0:CD:7F:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:0b:9c:01:5c:2d:00:73:be:b8:67:50:b6:8c:a6:7e:c9:3c:
3d:3c:61:3b:97:be:c8:da:56:c5:9e:7f:8d:7c:77:6f:02:52:
fa:76:d7:ef:3e:b2:2f:34:9a:68:e5:04:6c:c9:01:26:66:75:
dc:d9:58:b9:bd:2b:c5:28:ac:ad:f4:f9:c6:3f:5a:f6:61:3e:
60:f7:70:e5:68:d8:1c:0b:83:34:89:02:04:1f:a3:d7:df:fb:
98:59:d5:66:ef:43:ad:ce:16:f8:83:55:2d:69:88:ea:bb:73:
93:7e:12:75:93:f1:68:0b:62:7a:31:d4:83:c3:fa:b3:10:34:
5b:f2:36:ff:d7:fd:47:da:53:65:b5:04:38:31:4f:01:98:15:
03:3e:49:38:56:5e:b3:45:82:af:99:56:74:1f:6b:98:89:a8:
d7:05:c1:e7:91:37:d3:ec:d2:0b:d4:19:77:ad:e0:7d:fb:29:
17:6e:6c:4c:40:c7:37:cf:3e:f3:77:8a:e2:3a:68:a8:83:fc:
43:4e:86:e3:03:49:f7:a8:47:ab:c4:f1:64:30:3d:38:18:4b:
33:73:52:e2:1b:36:37:b8:9c:c2:07:d4:bf:d5:60:e2:4d:e9:
f2:9a:7f:b5:ad:11:28:98:15:17:57:4a:70:c9:df:9e:00:a0:
0c:c9:c4:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ3VZiUWw1jM9hR3A70ljsLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwMDFiOTUzYzZiZTFmOTE4MzFkNjhhNWMwMTE1YzIwZTBj
ZDdmOWEwHhcNMjUwNDI3MTMwMDIwWhcNMjUwNDI4MTMwMDIwWjAzMTEwLwYDVQQD
EyhiZDg5YzU2MDhiODJjYmJhMmMxNWY4ZTEyYTI2NGQ0NzJiNjM2ZDhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVnGeVn/BeOelE3ks/2xTtqchVl9
Xzh98rXMOfEwtXx3Hpgi+1bq+SRDZPap9BucXf+YtwW+50y9GW+d6oCx73lF0Cjw
PxWAqxQtXILjhu8CD6R0izbvKZD4o9q6H6ZWV5Wpzw7erDOvJJLdy1Qz6GXKOgIR
jHIwg12sIUA/5RUTBKHYCBQCK9xVC2tuXGcDKoRSC5QYemlFEYLU/DAu4pXmpS1Q
/2BTWMoNQBDYrkmDSh2I2RNb6J2YADBU84jsqyXN8zWjD3Q5pZGOf3ZP8nUtos65
mejsL+IjvHhzZUshqljbcGAyiZvaWSKbFKKCnPmWF5la5qRdH82vIecHIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL2JxWCLgsu6LBX44SomTUcrY22NMB8GA1UdIwQY
MBaAFGABuVPGvh+Rgx1opcARXCDgzX+aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUFHNVU4YS1INUdESFdpbHdCRmNJT0ROZjVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi8yMTNiZTYtZWNiOS00MzAwLTgzNDYt
YTY0NzY3NWY0NmI2LzEvWUFHNVU4YS1INUdESFdpbHdCRmNJT0ROZjVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi8yMTNiZTYtZWNiOS00MzAwLTgzNDYtYTY0NzY3NWY0NmI2
LzEvWUFHNVU4YS1INUdESFdpbHdCRmNJT0ROZjVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbQucAVwt
AHO+uGdQtoymfsk8PTxhO5e+yNpWxZ5/jXx3bwJS+nbX7z6yLzSaaOUEbMkBJmZ1
3NlYub0rxSisrfT5xj9a9mE+YPdw5WjYHAuDNIkCBB+j19/7mFnVZu9Drc4W+INV
LWmI6rtzk34SdZPxaAtiejHUg8P6sxA0W/I2/9f9R9pTZbUEODFPAZgVAz5JOFZe
s0WCr5lWdB9rmImo1wXB55E30+zSC9QZd63gffspF25sTEDHN88+83eK4jpoqIP8
Q06G4wNJ96hHq8TxZDA9OBhLM3NS4hs2N7icwgfUv9Vg4k3p8pp/ta0RKJgVF1dK
cMnfngCgDMnEUw==
-----END CERTIFICATE-----
Generated at Sun Apr 27 23:24:37 2025 by rpki-client