Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft
File: ylIg5T5PgcoljM_qGHKAKA9fYho.mft (raw, json)
Hash identifier: 4ardJm90CG7RcTK78o3kkwKdbNOaXhqG6smRI4B/Dqo=
Subject key identifier: 2D:C1:B8:44:75:36:69:CA:BC:2A:32:00:91:46:E9:AB:E4:A4:87:EE
Authority key identifier: CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A
Certificate issuer: /CN=ca5220e53e4f81ca258ccfea187280280f5f621a
Certificate serial: 01968090269BC5EAB649088F8AB7D80ADA9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft
Manifest number: 1512
Signing time: Tue 29 Apr 2025 08:00:52 +0000
Manifest this update: Tue 29 Apr 2025 08:00:52 +0000
Manifest next update: Wed 30 Apr 2025 08:00:52 +0000
Files and hashes: 1: HnblzgjRhv7ohFCku2dgX5Jr7vw.roa (hash: o9K0gGCxUA0R4sGgN9lj9M6IzHoNtSXBjdq46DJlaa4=)
2: dem0uBwT7g7YZDZIQsS-aXVQdOI.roa (hash: XISttqO419C7SgkgSmOfFJd6GmXYZpUuMQWw/YZudzA=)
3: ylIg5T5PgcoljM_qGHKAKA9fYho.crl (hash: KSY05aI3ZDnwQfSuyWoLHuQlY26hG7ePro8FWytQA3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 08:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:90:26:9b:c5:ea:b6:49:08:8f:8a:b7:d8:0a:da:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5220e53e4f81ca258ccfea187280280f5f621a
Validity
Not Before: Apr 29 08:00:52 2025 GMT
Not After : Apr 30 08:00:52 2025 GMT
Subject: CN=2dc1b844753669cabc2a32009146e9abe4a487ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:cb:61:d3:2b:cb:a2:35:48:f6:93:3f:b2:57:
89:ce:1c:02:b2:c1:49:8e:d4:5e:42:40:e0:ed:60:
be:88:4a:7c:f8:4b:e2:5a:bd:37:84:26:88:9a:7a:
58:cb:bf:98:86:1b:aa:8f:45:2b:27:e7:51:92:12:
8e:71:59:cf:8b:6c:46:90:5b:f6:f9:be:68:cb:22:
93:19:42:0e:72:a8:9e:cd:9e:2a:99:19:43:3c:e2:
b4:a2:2f:3a:63:3b:ec:cd:7a:2f:f3:6d:6d:a3:c6:
10:bc:d9:7b:83:62:20:dc:1b:d3:a8:48:e4:d3:0d:
d2:b0:3b:4f:56:d1:18:0e:be:84:4b:a8:4a:aa:cd:
28:8d:7a:4a:81:52:a2:ab:58:53:51:de:3a:90:56:
9d:a5:c3:57:55:d4:d3:8a:34:4e:08:a6:50:6f:2e:
ea:53:b7:8e:62:99:ad:91:d1:e6:22:a0:a0:8e:e1:
38:02:22:6c:85:b4:0a:30:3c:2a:cc:23:cf:c6:ab:
1a:ab:7d:f3:a2:f8:79:a5:0c:7a:e9:32:27:6d:5d:
2b:e4:13:6b:c7:88:02:7d:66:f1:bf:4c:10:bc:0a:
e3:98:4f:36:5b:25:51:40:cc:a5:6b:64:86:53:8f:
86:ca:3f:99:0e:a9:90:61:36:47:de:42:fe:81:1c:
14:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:C1:B8:44:75:36:69:CA:BC:2A:32:00:91:46:E9:AB:E4:A4:87:EE
X509v3 Authority Key Identifier:
keyid:CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:db:26:22:39:cc:3c:56:d4:d7:4d:0a:8e:2b:d7:9e:2f:e3:
93:87:e3:a5:38:fc:db:c7:60:91:53:f8:bd:db:96:d3:a8:73:
3c:0a:59:1b:de:11:89:4f:62:d9:32:b0:83:7e:59:ce:54:04:
c1:34:39:e8:0c:0e:68:4c:f1:f4:88:92:59:29:95:5a:17:26:
5e:79:72:5e:6e:26:07:3f:23:f8:01:cb:7d:12:be:76:1a:7f:
e8:5e:76:c9:78:54:76:56:33:a2:ac:87:51:79:8c:47:d2:71:
a2:09:e0:c4:3b:13:94:c1:01:ae:fe:37:42:6a:a4:d2:f0:cf:
0a:31:8e:35:95:f7:4e:81:07:92:79:36:2c:d1:27:68:0b:07:
74:7d:2a:fd:3a:c2:54:ed:18:88:b4:2b:fe:04:d9:6f:f9:5f:
28:af:22:1b:ea:0d:88:b8:13:55:f6:89:12:1a:5c:3d:f5:d1:
52:27:a5:06:49:04:35:59:76:b2:e2:a9:8e:37:8a:37:53:f1:
18:5b:08:19:c6:c1:8a:3c:28:44:e0:fd:bd:3c:3a:f3:14:58:
40:a5:0a:2d:93:e3:d0:b9:27:1d:6b:9e:ab:a5:22:50:8a:7a:
32:d2:af:d0:e4:30:d9:71:a0:70:7a:43:47:1a:02:55:93:21:
e4:f9:3c:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaAkCabxeq2SQiPirfYCtqaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNTIyMGU1M2U0ZjgxY2EyNThjY2ZlYTE4NzI4MDI4MGY1
ZjYyMWEwHhcNMjUwNDI5MDgwMDUyWhcNMjUwNDMwMDgwMDUyWjAzMTEwLwYDVQQD
EygyZGMxYjg0NDc1MzY2OWNhYmMyYTMyMDA5MTQ2ZTlhYmU0YTQ4N2VlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2sth0yvLojVI9pM/sleJzhwCssFJ
jtReQkDg7WC+iEp8+EviWr03hCaImnpYy7+Yhhuqj0UrJ+dRkhKOcVnPi2xGkFv2
+b5oyyKTGUIOcqiezZ4qmRlDPOK0oi86YzvszXov821to8YQvNl7g2Ig3BvTqEjk
0w3SsDtPVtEYDr6ES6hKqs0ojXpKgVKiq1hTUd46kFadpcNXVdTTijROCKZQby7q
U7eOYpmtkdHmIqCgjuE4AiJshbQKMDwqzCPPxqsaq33zovh5pQx66TInbV0r5BNr
x4gCfWbxv0wQvArjmE82WyVRQMyla2SGU4+Gyj+ZDqmQYTZH3kL+gRwUpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC3BuER1NmnKvCoyAJFG6avkpIfuMB8GA1UdIwQY
MBaAFMpSIOU+T4HKJYzP6hhygCgPX2IaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWxJZzVUNVBnY29sak1fcUdIS0FLQTlmWWhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny80MjQ5NDctMWM2YS00OGU5LWIyODkt
ZjIzYzVhNTMxODIzLzEveWxJZzVUNVBnY29sak1fcUdIS0FLQTlmWWhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny80MjQ5NDctMWM2YS00OGU5LWIyODktZjIzYzVhNTMxODIz
LzEveWxJZzVUNVBnY29sak1fcUdIS0FLQTlmWWhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP9smIjnM
PFbU100KjivXni/jk4fjpTj828dgkVP4vduW06hzPApZG94RiU9i2TKwg35ZzlQE
wTQ56AwOaEzx9IiSWSmVWhcmXnlyXm4mBz8j+AHLfRK+dhp/6F52yXhUdlYzoqyH
UXmMR9JxogngxDsTlMEBrv43Qmqk0vDPCjGONZX3ToEHknk2LNEnaAsHdH0q/TrC
VO0YiLQr/gTZb/lfKK8iG+oNiLgTVfaJEhpcPfXRUielBkkENVl2suKpjjeKN1Px
GFsIGcbBijwoROD9vTw68xRYQKUKLZPj0LknHWueq6UiUIp6MtKv0OQw2XGgcHpD
RxoCVZMh5Pk8nA==
-----END CERTIFICATE-----
Generated at Tue Apr 29 13:30:58 2025 by rpki-client