Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
File: YGhXxDyh3wTLaaSgqshim98ydWs.mft (raw, json)
Hash identifier: bIMC5LkwDYZ2heTPfuvjQwdq/BTfKz5q9oqtkqXPhDM=
Subject key identifier: 14:81:80:EF:C2:F1:E6:3D:A5:6A:E6:DE:F2:AE:07:75:29:99:A5:C8
Authority key identifier: 60:68:57:C4:3C:A1:DF:04:CB:69:A4:A0:AA:C8:62:9B:DF:32:75:6B
Certificate issuer: /CN=606857c43ca1df04cb69a4a0aac8629bdf32756b
Certificate serial: 01967AFB55AC7658E7489C97F6BC99148E0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGhXxDyh3wTLaaSgqshim98ydWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
Manifest number: 11C8
Signing time: Mon 28 Apr 2025 06:00:13 +0000
Manifest this update: Mon 28 Apr 2025 06:00:13 +0000
Manifest next update: Tue 29 Apr 2025 06:00:13 +0000
Files and hashes: 1: XuX7uT8cb5cVhdOXna_jZRuc6JE.roa (hash: 6nSukjm2iQoWm9SssGRSJpva0KahTxgtp11M/o63UVs=)
2: YGhXxDyh3wTLaaSgqshim98ydWs.crl (hash: P9NWi7Lv10h6cFyZhbYNNhI7jU9B2GPPjGQZyJCK4ec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGhXxDyh3wTLaaSgqshim98ydWs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 06:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:fb:55:ac:76:58:e7:48:9c:97:f6:bc:99:14:8e:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606857c43ca1df04cb69a4a0aac8629bdf32756b
Validity
Not Before: Apr 28 06:00:13 2025 GMT
Not After : Apr 29 06:00:13 2025 GMT
Subject: CN=148180efc2f1e63da56ae6def2ae07752999a5c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:15:04:59:b5:a6:f4:bb:45:54:fd:4c:b0:11:
30:7b:17:f0:95:d1:51:40:a9:7d:bb:5c:89:51:d5:
81:2d:00:97:06:ef:ce:99:7c:ab:bd:cc:15:66:8d:
a4:eb:f7:58:b5:03:e5:ae:25:f1:a7:17:f5:49:c0:
b1:ef:00:2d:e5:c4:59:2d:b1:4b:22:e1:6b:b8:fe:
40:6e:fd:b3:79:ad:a8:9f:98:3c:5c:ce:6a:62:2c:
08:fa:0b:8e:b3:ce:41:0a:42:ab:de:10:1e:99:f2:
8a:c3:24:09:d9:45:cb:c0:ee:89:2a:ec:fd:fe:36:
d5:fb:8a:a0:13:43:ca:ca:7a:fd:51:21:f1:fa:5e:
b3:9c:09:7f:95:0c:9e:97:1e:0c:71:f8:2f:3f:12:
42:3a:8a:f5:2e:83:17:68:2c:12:2d:ce:a3:98:e5:
da:45:20:cf:6b:c6:54:da:60:67:6d:2c:67:a8:5c:
76:63:e2:02:a0:41:69:c4:5a:3d:21:f5:cc:d9:94:
3d:c1:68:d1:d6:ca:d4:ad:31:de:74:98:31:5d:94:
5d:f1:89:9f:50:60:f0:83:fe:35:3c:fe:54:94:79:
b5:d0:cb:0d:c0:68:45:b9:3b:a2:67:76:ce:6f:35:
5d:24:41:17:29:c9:bd:e1:59:de:3a:32:ff:5a:04:
28:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:81:80:EF:C2:F1:E6:3D:A5:6A:E6:DE:F2:AE:07:75:29:99:A5:C8
X509v3 Authority Key Identifier:
keyid:60:68:57:C4:3C:A1:DF:04:CB:69:A4:A0:AA:C8:62:9B:DF:32:75:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGhXxDyh3wTLaaSgqshim98ydWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:3b:65:70:6b:99:b4:3c:1d:45:33:04:fa:7f:89:bc:a1:37:
2f:78:c6:d1:7a:23:89:7f:94:07:7a:c3:bf:12:5f:83:99:ee:
1b:df:c5:dc:2f:35:e4:62:29:ee:6d:bb:ef:d3:f9:e2:1a:4e:
2a:3d:1b:1d:af:7b:6d:3f:f8:5d:5e:1d:ff:f7:3b:d6:c6:b0:
69:7f:1c:63:a3:07:90:18:a8:3f:72:14:1b:8d:7d:44:39:ca:
79:d2:ea:df:b7:84:b4:64:97:b8:12:5c:fb:ee:3e:c0:83:c9:
7c:d5:80:60:c2:54:88:b8:76:41:5f:79:ac:70:a1:78:85:16:
a5:c2:ba:5f:dc:00:99:66:92:48:47:df:2b:9a:ef:de:de:f9:
43:96:97:41:51:15:ea:9e:f8:43:c0:97:53:6d:fd:f6:a5:b7:
08:74:01:63:c5:ab:33:62:b2:ee:74:3b:61:5b:be:04:d1:e0:
bc:98:30:84:ee:cf:3c:02:82:c5:bb:33:b3:ab:2c:b5:64:54:
1d:ff:d4:ce:c5:1c:af:b4:55:19:5e:13:5a:21:f8:b2:46:7b:
2a:bc:1e:a4:1c:18:e7:e7:68:86:4b:34:5a:fc:33:f2:2c:a9:
f8:5c:50:61:89:1b:8a:e3:08:ec:8c:49:07:39:78:19:25:75:
c6:e5:a4:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ6+1WsdljnSJyX9ryZFI4LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjg1N2M0M2NhMWRmMDRjYjY5YTRhMGFhYzg2MjliZGYz
Mjc1NmIwHhcNMjUwNDI4MDYwMDEzWhcNMjUwNDI5MDYwMDEzWjAzMTEwLwYDVQQD
EygxNDgxODBlZmMyZjFlNjNkYTU2YWU2ZGVmMmFlMDc3NTI5OTlhNWM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1BUEWbWm9LtFVP1MsBEwexfwldFR
QKl9u1yJUdWBLQCXBu/OmXyrvcwVZo2k6/dYtQPlriXxpxf1ScCx7wAt5cRZLbFL
IuFruP5Abv2zea2on5g8XM5qYiwI+guOs85BCkKr3hAemfKKwyQJ2UXLwO6JKuz9
/jbV+4qgE0PKynr9USHx+l6znAl/lQyelx4McfgvPxJCOor1LoMXaCwSLc6jmOXa
RSDPa8ZU2mBnbSxnqFx2Y+ICoEFpxFo9IfXM2ZQ9wWjR1srUrTHedJgxXZRd8Ymf
UGDwg/41PP5UlHm10MsNwGhFuTuiZ3bObzVdJEEXKcm94VneOjL/WgQoIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBSBgO/C8eY9pWrm3vKuB3UpmaXIMB8GA1UdIwQY
MBaAFGBoV8Q8od8Ey2mkoKrIYpvfMnVrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdoWHhEeWgzd1RMYWFTZ3FzaGltOTh5ZFdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi85NWQ3ZGMtMGM4Yi00OTQxLWI5YzEt
ZDQ3MTBkMDIyMzM2LzEvWUdoWHhEeWgzd1RMYWFTZ3FzaGltOTh5ZFdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi85NWQ3ZGMtMGM4Yi00OTQxLWI5YzEtZDQ3MTBkMDIyMzM2
LzEvWUdoWHhEeWgzd1RMYWFTZ3FzaGltOTh5ZFdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAijtlcGuZ
tDwdRTME+n+JvKE3L3jG0XojiX+UB3rDvxJfg5nuG9/F3C815GIp7m2779P54hpO
Kj0bHa97bT/4XV4d//c71sawaX8cY6MHkBioP3IUG419RDnKedLq37eEtGSXuBJc
++4+wIPJfNWAYMJUiLh2QV95rHCheIUWpcK6X9wAmWaSSEffK5rv3t75Q5aXQVEV
6p74Q8CXU2399qW3CHQBY8WrM2Ky7nQ7YVu+BNHgvJgwhO7PPAKCxbszs6sstWRU
Hf/UzsUcr7RVGV4TWiH4skZ7KrwepBwY5+dohks0Wvwz8iyp+FxQYYkbiuMI7IxJ
Bzl4GSV1xuWkjQ==
-----END CERTIFICATE-----
Generated at Mon Apr 28 13:52:30 2025 by rpki-client