Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
File: yjzk270E4HrOGTf4ChWvc5m4Aw4.mft (raw, json)
Hash identifier: xwNErumkBoHdt9JbXfSn7SLNnDn6EjkDkmO0aEKRPbI=
Subject key identifier: EB:BD:2E:48:BA:D4:59:99:ED:7E:53:63:CE:E0:E5:7C:FD:9A:20:07
Authority key identifier: CA:3C:E4:DB:BD:04:E0:7A:CE:19:37:F8:0A:15:AF:73:99:B8:03:0E
Certificate issuer: /CN=ca3ce4dbbd04e07ace1937f80a15af7399b8030e
Certificate serial: 0196753047E872AE3D1DB01E12C3B748BAE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
Manifest number: 04A5
Signing time: Sun 27 Apr 2025 03:00:20 +0000
Manifest this update: Sun 27 Apr 2025 03:00:20 +0000
Manifest next update: Mon 28 Apr 2025 03:00:20 +0000
Files and hashes: 1: yjzk270E4HrOGTf4ChWvc5m4Aw4.crl (hash: RRLwljWgCMnVeUC7zmS8od6mGwdlqiXyjOQpzKGi/eM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 03:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:30:47:e8:72:ae:3d:1d:b0:1e:12:c3:b7:48:ba:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3ce4dbbd04e07ace1937f80a15af7399b8030e
Validity
Not Before: Apr 27 03:00:20 2025 GMT
Not After : Apr 28 03:00:20 2025 GMT
Subject: CN=ebbd2e48bad45999ed7e5363cee0e57cfd9a2007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:31:0f:e0:25:b3:c6:9e:47:a0:4e:66:f6:ad:
44:cb:55:57:82:ef:19:fd:09:02:04:a2:17:a6:3d:
1c:59:4c:18:6d:ce:8b:1a:e0:00:ff:cb:8b:74:f6:
12:10:dc:4e:6e:b6:d3:73:88:88:d1:d8:87:d9:c7:
86:48:94:9d:2d:2c:af:30:ef:c9:28:33:64:8c:be:
62:43:9a:69:78:a7:a4:ec:25:0e:41:b4:29:c2:d9:
14:85:43:5e:ff:08:8a:a7:10:5e:6e:b7:0c:c4:a5:
5d:fc:d4:7e:22:b9:7f:33:f0:c1:03:2b:5a:64:6c:
01:b4:42:8b:4f:39:db:20:41:4e:d8:1c:f0:11:08:
87:38:bc:7b:b1:03:d3:fc:95:f1:c7:b1:b2:da:ba:
95:47:50:1c:aa:24:fa:1b:6c:09:57:ca:53:f4:a8:
21:74:e0:2a:e3:a7:4d:d1:c0:83:11:5b:43:f5:06:
ea:4c:d7:11:ea:6a:cf:54:54:87:a9:7a:a5:0b:84:
2f:5e:90:58:4c:68:09:5f:6e:59:05:7c:73:48:63:
11:08:72:7e:86:39:18:94:89:d3:9e:63:ee:6a:78:
5a:f2:81:57:92:1c:df:f1:36:6a:e6:2b:a7:6b:ef:
53:80:e4:06:99:f0:a3:16:b3:73:a0:f8:b5:12:7a:
2c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:BD:2E:48:BA:D4:59:99:ED:7E:53:63:CE:E0:E5:7C:FD:9A:20:07
X509v3 Authority Key Identifier:
keyid:CA:3C:E4:DB:BD:04:E0:7A:CE:19:37:F8:0A:15:AF:73:99:B8:03:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:e0:76:e2:b0:bf:bc:4e:02:7e:04:08:bf:4e:cb:b4:25:7e:
dd:dc:74:73:83:13:00:0a:10:9b:a4:34:45:5a:82:60:a1:e6:
0e:4e:84:6c:a6:68:e4:62:f0:a9:0c:2b:51:fa:97:b8:9f:d4:
99:97:b6:75:c1:13:8a:3b:12:44:3a:7c:5f:84:54:c5:48:ee:
82:6c:c1:a9:94:2f:9e:6c:c7:af:12:e6:f1:1a:d3:0a:9e:03:
09:9d:b4:5c:c1:c6:55:65:c8:7f:85:66:41:d2:08:ae:fa:d5:
cb:2d:b5:d5:64:65:e9:ab:b9:d8:5d:c0:28:0b:d9:7e:47:43:
43:03:f0:a1:75:41:d0:0a:5d:e1:40:62:8f:17:93:92:8f:a1:
65:e4:39:e3:b2:fe:9b:32:bf:a1:09:e3:61:6f:d7:ca:27:3f:
94:a6:32:79:73:f1:1a:a5:1f:21:9b:d5:52:15:88:0b:2f:4c:
d8:9d:9c:52:7f:57:71:42:14:75:72:35:df:0d:c7:b1:d2:ba:
65:78:5e:f8:24:03:a5:f8:ee:08:09:34:9a:78:97:c2:76:ce:
f9:17:7c:82:54:88:bd:e0:58:7a:15:c5:42:69:f6:36:d1:de:
3a:1b:4e:f8:3f:a9:aa:65:cd:0e:0b:e8:a9:65:2e:d0:b0:a2:
1c:e6:34:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ1MEfocq49HbAeEsO3SLroMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhM2NlNGRiYmQwNGUwN2FjZTE5MzdmODBhMTVhZjczOTli
ODAzMGUwHhcNMjUwNDI3MDMwMDIwWhcNMjUwNDI4MDMwMDIwWjAzMTEwLwYDVQQD
EyhlYmJkMmU0OGJhZDQ1OTk5ZWQ3ZTUzNjNjZWUwZTU3Y2ZkOWEyMDA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxjEP4CWzxp5HoE5m9q1Ey1VXgu8Z
/QkCBKIXpj0cWUwYbc6LGuAA/8uLdPYSENxObrbTc4iI0diH2ceGSJSdLSyvMO/J
KDNkjL5iQ5ppeKek7CUOQbQpwtkUhUNe/wiKpxBebrcMxKVd/NR+Irl/M/DBAyta
ZGwBtEKLTznbIEFO2BzwEQiHOLx7sQPT/JXxx7Gy2rqVR1AcqiT6G2wJV8pT9Kgh
dOAq46dN0cCDEVtD9QbqTNcR6mrPVFSHqXqlC4QvXpBYTGgJX25ZBXxzSGMRCHJ+
hjkYlInTnmPuanha8oFXkhzf8TZq5iuna+9TgOQGmfCjFrNzoPi1EnosUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOu9Lki61FmZ7X5TY87g5Xz9miAHMB8GA1UdIwQY
MBaAFMo85Nu9BOB6zhk3+AoVr3OZuAMOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWp6azI3MEU0SHJPR1RmNENoV3ZjNW00QXc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9hNWQ5YTMtYzQ1NC00YjdlLTgwMGQt
NjE3Y2QzZGYzOTViLzEveWp6azI3MEU0SHJPR1RmNENoV3ZjNW00QXc0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS9hNWQ5YTMtYzQ1NC00YjdlLTgwMGQtNjE3Y2QzZGYzOTVi
LzEveWp6azI3MEU0SHJPR1RmNENoV3ZjNW00QXc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAauB24rC/
vE4CfgQIv07LtCV+3dx0c4MTAAoQm6Q0RVqCYKHmDk6EbKZo5GLwqQwrUfqXuJ/U
mZe2dcETijsSRDp8X4RUxUjugmzBqZQvnmzHrxLm8RrTCp4DCZ20XMHGVWXIf4Vm
QdIIrvrVyy211WRl6au52F3AKAvZfkdDQwPwoXVB0Apd4UBijxeTko+hZeQ547L+
mzK/oQnjYW/Xyic/lKYyeXPxGqUfIZvVUhWICy9M2J2cUn9XcUIUdXI13w3HsdK6
ZXhe+CQDpfjuCAk0mniXwnbO+Rd8glSIveBYehXFQmn2NtHeOhtO+D+pqmXNDgvo
qWUu0LCiHOY0xg==
-----END CERTIFICATE-----
Generated at Sun Apr 27 13:27:07 2025 by rpki-client