Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
File: Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft (raw, json)
Hash identifier: KGhJ9M07CjIG6hkrdWWtwaY3DLtAFHDhYB08j0SoWzs=
Subject key identifier: 7A:06:47:2E:62:A7:1C:25:8D:4B:09:5C:4A:02:61:58:54:0A:42:3F
Authority key identifier: 63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
Certificate issuer: /CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Certificate serial: 0196741E6B3F2747C5C3DD86105B335C0719
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
Manifest number: 023A
Signing time: Sat 26 Apr 2025 22:01:12 +0000
Manifest this update: Sat 26 Apr 2025 22:01:12 +0000
Manifest next update: Sun 27 Apr 2025 22:01:12 +0000
Files and hashes: 1: Qzda_dpxvv_9oCqZ0rKtNjYGFYA.roa (hash: yhmVIZybj8mBYPvdFgcuCe4v8sYhgAuDZKiw+Hdv0f4=)
2: Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl (hash: duO2YBs5E3sCdAXefeqcci7cR/gcdSQcmLZzNupwsZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:1e:6b:3f:27:47:c5:c3:dd:86:10:5b:33:5c:07:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Validity
Not Before: Apr 26 22:01:12 2025 GMT
Not After : Apr 27 22:01:12 2025 GMT
Subject: CN=7a06472e62a71c258d4b095c4a026158540a423f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:09:66:35:d4:8c:a0:12:a0:0d:32:b4:2c:66:
13:c9:36:48:06:f2:78:a4:a0:17:14:00:24:d1:ce:
40:0d:ce:d3:03:b5:e7:19:20:f8:f7:26:b5:13:68:
eb:c8:94:cd:41:19:94:db:78:79:53:ba:fa:c6:0c:
65:0e:ea:d5:27:b8:4d:52:46:d3:24:9a:d1:bb:89:
85:b6:42:b8:8d:c3:87:dc:e1:8f:ab:d4:19:70:5e:
37:e5:9d:6f:1e:01:ed:f8:db:86:b0:c0:f0:10:de:
fa:e2:19:76:21:3d:f8:60:fb:43:18:0b:88:7c:f6:
e4:e5:3d:d9:9b:49:74:cd:76:79:d6:40:f7:25:f5:
64:8b:8d:f5:46:fa:53:55:42:e1:cc:c4:29:3e:87:
1e:52:da:6c:bb:03:cb:83:eb:ce:0d:f5:44:28:55:
4a:d2:21:4e:6c:1b:38:47:69:be:ae:a5:33:f9:6a:
f3:92:dd:95:43:7c:75:3b:a1:99:8a:91:2d:5a:35:
a2:50:3d:84:8a:d8:4f:1f:4d:dc:15:c5:a1:14:de:
d5:d9:9a:0c:41:7d:38:7c:19:40:3a:13:eb:5e:df:
86:1e:76:04:15:3d:33:2d:be:2b:62:1f:b7:47:18:
04:ee:fc:0c:5e:bd:ae:84:51:a7:ce:c8:68:6c:86:
06:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:06:47:2E:62:A7:1C:25:8D:4B:09:5C:4A:02:61:58:54:0A:42:3F
X509v3 Authority Key Identifier:
keyid:63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:df:a9:d7:e4:00:0a:27:6a:b2:0d:a4:9f:58:d2:f1:a1:e8:
5b:91:23:65:18:93:40:cb:76:d3:1b:0d:e8:df:7c:6f:55:39:
51:ac:32:3d:e0:69:be:43:71:ac:88:aa:a3:d2:50:c0:65:e0:
f8:67:d0:a6:34:81:73:a3:d9:f0:dd:7a:33:22:7c:b6:2e:a0:
50:83:df:f2:6f:fb:8e:74:c2:10:74:16:86:f7:3c:1b:1c:a1:
56:e6:3e:fb:7a:99:a7:2b:6f:e9:2c:35:dd:71:e3:d1:6c:1a:
0f:be:db:7e:77:6c:ee:00:67:71:94:85:bf:ae:c1:37:35:0a:
8b:5b:6d:da:f1:4e:8a:a2:f4:05:a1:57:82:2b:f2:a8:59:22:
60:39:d3:47:32:75:b5:f0:f6:69:12:85:a1:b8:e9:f0:b1:49:
c6:07:d4:2d:b2:94:55:1e:19:d1:b3:5f:2d:9e:3c:4e:e4:05:
22:6f:3c:fb:8c:09:d0:52:c1:0a:ab:ce:0a:e3:b8:88:e4:80:
63:79:af:07:3e:ec:51:79:57:f4:fa:28:10:8c:3e:7b:49:b7:
8d:d8:95:61:ac:3b:d6:3f:38:ee:eb:c8:99:cc:93:a4:12:28:
28:30:e1:39:6f:dc:88:e5:2c:51:02:61:b1:83:c5:6a:b3:02:
7f:08:09:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ0Hms/J0fFw92GEFszXAcZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzNjQyYzFjYTNkMzhjN2UxNWU2ODdlMGQ5NDg1Yzc4MjY5
MzhjMTAwHhcNMjUwNDI2MjIwMTEyWhcNMjUwNDI3MjIwMTEyWjAzMTEwLwYDVQQD
Eyg3YTA2NDcyZTYyYTcxYzI1OGQ0YjA5NWM0YTAyNjE1ODU0MGE0MjNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnwlmNdSMoBKgDTK0LGYTyTZIBvJ4
pKAXFAAk0c5ADc7TA7XnGSD49ya1E2jryJTNQRmU23h5U7r6xgxlDurVJ7hNUkbT
JJrRu4mFtkK4jcOH3OGPq9QZcF435Z1vHgHt+NuGsMDwEN764hl2IT34YPtDGAuI
fPbk5T3Zm0l0zXZ51kD3JfVki431RvpTVULhzMQpPoceUtpsuwPLg+vODfVEKFVK
0iFObBs4R2m+rqUz+Wrzkt2VQ3x1O6GZipEtWjWiUD2EithPH03cFcWhFN7V2ZoM
QX04fBlAOhPrXt+GHnYEFT0zLb4rYh+3RxgE7vwMXr2uhFGnzshobIYGfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHoGRy5ipxwljUsJXEoCYVhUCkI/MB8GA1UdIwQY
MBaAFGNkLByj04x+FeaH4NlIXHgmk4wQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWTJRc0hLUFRqSDRWNW9mZzJVaGNlQ2FUakJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS80ZjU5MDMtZmY5Zi00ZWM2LTg2YzAt
MDdiMGVhNzVjMjRiLzEvWTJRc0hLUFRqSDRWNW9mZzJVaGNlQ2FUakJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS80ZjU5MDMtZmY5Zi00ZWM2LTg2YzAtMDdiMGVhNzVjMjRi
LzEvWTJRc0hLUFRqSDRWNW9mZzJVaGNlQ2FUakJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABt+p1+QA
Cidqsg2kn1jS8aHoW5EjZRiTQMt20xsN6N98b1U5UawyPeBpvkNxrIiqo9JQwGXg
+GfQpjSBc6PZ8N16MyJ8ti6gUIPf8m/7jnTCEHQWhvc8GxyhVuY++3qZpytv6Sw1
3XHj0WwaD77bfnds7gBncZSFv67BNzUKi1tt2vFOiqL0BaFXgivyqFkiYDnTRzJ1
tfD2aRKFobjp8LFJxgfULbKUVR4Z0bNfLZ48TuQFIm88+4wJ0FLBCqvOCuO4iOSA
Y3mvBz7sUXlX9PooEIw+e0m3jdiVYaw71j847uvImcyTpBIoKDDhOW/ciOUsUQJh
sYPFarMCfwgJvg==
-----END CERTIFICATE-----
Generated at Sun Apr 27 05:34:17 2025 by rpki-client