Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
File: y34FPHGZWsyb8TM_55w9W_1ulk4.mft (raw, json)
Hash identifier: 4aYHYMChNM8VX2Xd9SKD8He7v1M/geLgk+2OeulCOzM=
Subject key identifier: B4:7B:35:4A:00:F6:BF:68:53:2E:0D:EB:E0:DF:D3:29:75:13:04:BC
Authority key identifier: CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
Certificate issuer: /CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Certificate serial: 01967D20A7677A5D5540BCB041C680891040
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
Manifest number: 0B81
Signing time: Mon 28 Apr 2025 16:00:14 +0000
Manifest this update: Mon 28 Apr 2025 16:00:14 +0000
Manifest next update: Tue 29 Apr 2025 16:00:14 +0000
Files and hashes: 1: OY3T_xG0jFJ_6yc5NmhmVJsNZOM.roa (hash: af8mlEBnTxkbr73XYFoiiYy6suBahBU1dHobCDHfy/U=)
2: y34FPHGZWsyb8TM_55w9W_1ulk4.crl (hash: vygpvWNjij7ni39cSyz6UdzZxGLcPh+nfrkAiLEAYM4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:20:a7:67:7a:5d:55:40:bc:b0:41:c6:80:89:10:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Validity
Not Before: Apr 28 16:00:14 2025 GMT
Not After : Apr 29 16:00:14 2025 GMT
Subject: CN=b47b354a00f6bf68532e0debe0dfd329751304bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6e:5e:c8:e5:0d:7b:d0:50:70:93:22:97:91:
2c:dc:a0:fd:14:d6:db:a4:76:7c:ab:da:8c:d3:c3:
c5:38:8b:47:56:52:2e:d6:77:d4:a7:fb:e7:45:87:
74:18:b1:5c:dc:fb:1b:e3:95:3e:19:7f:45:ff:1a:
8d:90:3d:e3:59:a1:17:c2:6f:05:87:de:69:f1:ce:
e6:01:e2:db:ce:7a:92:31:30:fa:5c:68:4f:21:9b:
5b:77:a8:a7:bd:80:a4:ac:09:19:0e:d5:71:45:b6:
b1:dd:88:46:69:fe:db:55:be:3c:fa:bf:b3:52:c5:
b1:1b:bd:43:90:f0:1f:a0:23:63:f2:99:70:36:fe:
bd:a4:d4:c4:b9:f9:b1:d5:04:53:07:42:7f:0e:48:
20:15:1b:3f:f0:ac:60:25:2e:2c:53:32:75:e2:51:
5a:8a:8e:30:9d:2f:2c:c8:bd:3c:b5:e2:29:f2:5d:
42:11:51:a4:b7:87:89:60:ca:6a:c3:60:88:6a:d4:
ea:80:40:e6:06:2f:03:07:ae:4f:51:34:0c:7c:fa:
b9:a2:96:ff:80:ab:c7:ef:c6:ab:c4:85:c3:d7:e2:
ad:6d:44:71:f9:c5:8b:f4:a6:bb:90:00:7a:ba:75:
e8:e6:9b:08:92:ce:96:ba:08:8e:0e:4a:e8:2b:8d:
c1:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:7B:35:4A:00:F6:BF:68:53:2E:0D:EB:E0:DF:D3:29:75:13:04:BC
X509v3 Authority Key Identifier:
keyid:CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:d3:81:85:e0:91:5b:ca:fd:12:a5:cc:a8:c7:a3:7d:ba:7e:
fc:22:7d:3d:3f:77:55:a2:93:46:a4:29:f7:cb:29:1f:80:f7:
8f:07:21:a9:a4:9c:38:0a:37:c6:5c:5c:0c:05:8e:c4:ea:26:
07:b6:d2:f1:20:76:f3:21:95:04:52:0c:7b:f0:a0:10:52:5e:
75:48:00:a1:7f:cd:8c:7a:d0:36:f4:43:b1:bf:37:dd:73:60:
a8:94:ce:56:bc:20:8a:a5:f9:81:fe:f9:ce:99:a8:d1:b0:62:
c2:cc:a5:a6:64:ec:e9:61:fe:06:4d:46:4e:28:b6:03:b2:59:
00:6a:c6:ac:ff:8b:76:0b:ac:c0:72:6b:e0:cc:c5:35:5d:82:
c7:75:ef:e1:1f:80:93:64:1c:da:8e:78:79:dc:26:4e:c9:95:
81:55:50:77:ce:47:97:c1:c1:db:96:b5:1f:46:c1:6e:80:7e:
02:ec:f0:57:e5:03:3c:32:0c:d9:45:ed:b0:37:ea:50:ee:2e:
4f:d3:d5:81:5a:2e:c0:1e:c9:cc:df:0a:fe:03:0b:87:6f:58:
04:e4:c8:0b:24:39:61:b6:15:c4:72:17:e8:b7:bd:9b:41:bb:
c1:4a:a8:80:a3:de:18:d9:1c:07:40:a3:a6:4c:50:e3:c7:86:
48:48:08:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ9IKdnel1VQLywQcaAiRBAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiN2UwNTNjNzE5OTVhY2M5YmYxMzMzZmU3OWMzZDViZmQ2
ZTk2NGUwHhcNMjUwNDI4MTYwMDE0WhcNMjUwNDI5MTYwMDE0WjAzMTEwLwYDVQQD
EyhiNDdiMzU0YTAwZjZiZjY4NTMyZTBkZWJlMGRmZDMyOTc1MTMwNGJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAom5eyOUNe9BQcJMil5Es3KD9FNbb
pHZ8q9qM08PFOItHVlIu1nfUp/vnRYd0GLFc3Psb45U+GX9F/xqNkD3jWaEXwm8F
h95p8c7mAeLbznqSMTD6XGhPIZtbd6invYCkrAkZDtVxRbax3YhGaf7bVb48+r+z
UsWxG71DkPAfoCNj8plwNv69pNTEufmx1QRTB0J/DkggFRs/8KxgJS4sUzJ14lFa
io4wnS8syL08teIp8l1CEVGkt4eJYMpqw2CIatTqgEDmBi8DB65PUTQMfPq5opb/
gKvH78arxIXD1+KtbURx+cWL9Ka7kAB6unXo5psIks6WugiODkroK43BTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLR7NUoA9r9oUy4N6+Df0yl1EwS8MB8GA1UdIwQY
MBaAFMt+BTxxmVrMm/EzP+ecPVv9bpZOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTM0RlBIR1pXc3liOFRNXzU1dzlXXzF1bGs0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS83OGFhZDEtZDYxZi00MTZlLWFmNGMt
OTM2MzdkNDE2OGJkLzEveTM0RlBIR1pXc3liOFRNXzU1dzlXXzF1bGs0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS83OGFhZDEtZDYxZi00MTZlLWFmNGMtOTM2MzdkNDE2OGJk
LzEveTM0RlBIR1pXc3liOFRNXzU1dzlXXzF1bGs0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAidOBheCR
W8r9EqXMqMejfbp+/CJ9PT93VaKTRqQp98spH4D3jwchqaScOAo3xlxcDAWOxOom
B7bS8SB28yGVBFIMe/CgEFJedUgAoX/NjHrQNvRDsb833XNgqJTOVrwgiqX5gf75
zpmo0bBiwsylpmTs6WH+Bk1GTii2A7JZAGrGrP+LdguswHJr4MzFNV2Cx3Xv4R+A
k2Qc2o54edwmTsmVgVVQd85Hl8HB25a1H0bBboB+AuzwV+UDPDIM2UXtsDfqUO4u
T9PVgVouwB7JzN8K/gMLh29YBOTICyQ5YbYVxHIX6Le9m0G7wUqogKPeGNkcB0Cj
pkxQ48eGSEgIdg==
-----END CERTIFICATE-----
Generated at Mon Apr 28 19:18:15 2025 by rpki-client