Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
File: YHZWuPfoG1FJtIYPgSex1OO0h9w.mft (raw, json)
Hash identifier: yUc8yMmp/lFg3i0KMUFYru/Y9fxBsFsclpI7x2RtMGo=
Subject key identifier: 00:62:6F:40:7E:7E:07:DD:F5:C3:68:61:3C:67:F4:F5:BE:B3:7C:82
Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Certificate serial: 01967E33DF928A50207DD8887D0B4829FD28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
Manifest number: 0B24
Signing time: Mon 28 Apr 2025 21:00:50 +0000
Manifest this update: Mon 28 Apr 2025 21:00:50 +0000
Manifest next update: Tue 29 Apr 2025 21:00:50 +0000
Files and hashes: 1: 7-uxb2sVoc0kcAT2m9SP5qVnZ8E.roa (hash: acdZUKxa+ye22RHZ+hlpmz4eeOUGVIjJiD1cAB8HEbo=)
2: YHZWuPfoG1FJtIYPgSex1OO0h9w.crl (hash: 4zaFR6LQY76uBjaILoSnUN1onhhx6YXzySWayhGeDAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:33:df:92:8a:50:20:7d:d8:88:7d:0b:48:29:fd:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Validity
Not Before: Apr 28 21:00:50 2025 GMT
Not After : Apr 29 21:00:50 2025 GMT
Subject: CN=00626f407e7e07ddf5c368613c67f4f5beb37c82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:6d:55:4c:8d:79:e8:2c:60:87:b6:99:5e:ab:
34:01:fe:74:0f:5e:82:c7:b6:1f:c4:0f:9e:a2:dd:
d2:12:17:22:13:52:f7:bf:fc:bd:0c:a8:ab:d0:de:
b6:4e:b8:b9:96:42:39:1e:72:2d:61:00:8d:f3:66:
03:99:fe:a7:4d:72:d4:da:01:01:88:53:e8:a3:a9:
2a:d9:22:b7:3f:c6:6d:5f:31:90:70:a1:49:8c:1a:
ef:a6:84:2c:12:a1:00:ac:e7:a3:48:6c:58:3e:72:
87:25:37:d6:33:f2:d8:8b:47:db:ea:69:19:7b:6f:
e3:b1:f8:9e:57:6d:ea:87:c5:bf:a6:8b:3c:61:4b:
fa:46:d8:46:a0:3f:52:40:d4:aa:f5:c7:14:73:e0:
14:bd:b8:8a:9f:19:8c:82:b6:f6:0b:00:c0:2b:e8:
da:49:a2:21:68:b4:f6:61:ac:c3:01:77:34:e4:a6:
10:6e:c2:ae:13:25:d6:af:15:9a:54:55:87:aa:99:
aa:3e:ed:84:28:e7:75:cf:cd:13:2d:11:f1:27:47:
f0:54:e2:33:0d:ea:e7:c8:51:03:d2:53:c0:53:55:
16:86:b9:14:03:70:b0:7a:72:99:71:16:17:b9:c0:
07:2e:1b:be:ae:54:fd:b1:b6:1c:82:7a:71:1a:e3:
16:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:62:6F:40:7E:7E:07:DD:F5:C3:68:61:3C:67:F4:F5:BE:B3:7C:82
X509v3 Authority Key Identifier:
keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:f5:aa:15:87:e3:c2:18:85:22:30:27:c3:2e:d8:4e:9b:a0:
c6:29:75:16:1a:80:28:08:36:0a:8f:f4:eb:a7:7e:f8:f8:6d:
c0:37:0a:ae:dc:94:27:c4:25:69:1d:95:74:3f:6a:d1:be:44:
45:5f:28:33:10:4f:32:bd:3a:96:e5:ab:ea:ca:00:26:78:61:
23:9e:64:aa:69:1b:c6:a9:32:db:87:7d:17:96:90:18:1a:84:
18:8b:5f:65:26:2d:bd:f1:de:3a:ab:36:fd:bb:f9:a5:47:e2:
67:97:b2:47:53:0d:f0:e9:2c:b5:dc:a4:67:6d:5f:96:f7:ad:
58:bf:dc:9b:41:f7:57:93:19:e8:50:e2:7b:63:85:e8:2c:69:
14:93:2b:a2:b2:ac:b3:a2:1d:34:bd:cd:49:cf:60:5f:50:61:
37:b7:72:d8:8a:ee:e8:ae:c3:13:5f:12:3c:ec:8a:6c:81:d4:
f0:20:11:be:2e:2a:ab:91:b9:0f:89:c7:3d:29:2a:dd:86:8a:
d8:5c:cc:ef:4b:64:c1:6d:e3:b7:e6:48:37:6c:40:db:b9:70:
c2:3b:f1:93:cf:d9:c5:42:7d:6c:fd:bb:9c:58:b1:b8:5f:cc:
14:56:87:55:7d:7f:62:2b:02:77:a1:4a:ee:b5:7f:03:78:d4:
d1:82:13:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ+M9+SilAgfdiIfQtIKf0oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNzY1NmI4ZjdlODFiNTE0OWI0ODYwZjgxMjdiMWQ0ZTNi
NDg3ZGMwHhcNMjUwNDI4MjEwMDUwWhcNMjUwNDI5MjEwMDUwWjAzMTEwLwYDVQQD
EygwMDYyNmY0MDdlN2UwN2RkZjVjMzY4NjEzYzY3ZjRmNWJlYjM3YzgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6m1VTI156Cxgh7aZXqs0Af50D16C
x7YfxA+eot3SEhciE1L3v/y9DKir0N62Tri5lkI5HnItYQCN82YDmf6nTXLU2gEB
iFPoo6kq2SK3P8ZtXzGQcKFJjBrvpoQsEqEArOejSGxYPnKHJTfWM/LYi0fb6mkZ
e2/jsfieV23qh8W/pos8YUv6RthGoD9SQNSq9ccUc+AUvbiKnxmMgrb2CwDAK+ja
SaIhaLT2YazDAXc05KYQbsKuEyXWrxWaVFWHqpmqPu2EKOd1z80TLRHxJ0fwVOIz
DernyFED0lPAU1UWhrkUA3CwenKZcRYXucAHLhu+rlT9sbYcgnpxGuMWQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFABib0B+fgfd9cNoYTxn9PW+s3yCMB8GA1UdIwQY
MBaAFGB2Vrj36BtRSbSGD4EnsdTjtIfcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUhaV3VQZm9HMUZKdElZUGdTZXgxT08waDl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9jZWU1NWQtOTg1YS00ZTM2LThlMzkt
ODJiYzhhMzE4MGM2LzEvWUhaV3VQZm9HMUZKdElZUGdTZXgxT08waDl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9jZWU1NWQtOTg1YS00ZTM2LThlMzktODJiYzhhMzE4MGM2
LzEvWUhaV3VQZm9HMUZKdElZUGdTZXgxT08waDl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApPWqFYfj
whiFIjAnwy7YTpugxil1FhqAKAg2Co/066d++PhtwDcKrtyUJ8QlaR2VdD9q0b5E
RV8oMxBPMr06luWr6soAJnhhI55kqmkbxqky24d9F5aQGBqEGItfZSYtvfHeOqs2
/bv5pUfiZ5eyR1MN8OkstdykZ21flvetWL/cm0H3V5MZ6FDie2OF6CxpFJMrorKs
s6IdNL3NSc9gX1BhN7dy2Iru6K7DE18SPOyKbIHU8CARvi4qq5G5D4nHPSkq3YaK
2FzM70tkwW3jt+ZIN2xA27lwwjvxk8/ZxUJ9bP27nFixuF/MFFaHVX1/YisCd6FK
7rV/A3jU0YITlg==
-----END CERTIFICATE-----
Generated at Tue Apr 29 00:34:03 2025 by rpki-client