Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
File: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft (raw, json)
Hash identifier: bPBBjNdtcquGyATm2QTY9ibPei/o5M6lb8ZbWLB+XLM=
Subject key identifier: 8F:92:16:6E:8B:3C:AF:F0:A9:E5:5B:0D:D4:58:98:D1:2C:5E:45:0F
Authority key identifier: CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
Certificate issuer: /CN=ca434d399d93a19d8a8108456c5575096c2ae588
Certificate serial: 0196843563ABE144E0EAA14DAA92522DFC30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
Manifest number: 0537
Signing time: Wed 30 Apr 2025 01:00:13 +0000
Manifest this update: Wed 30 Apr 2025 01:00:13 +0000
Manifest next update: Thu 01 May 2025 01:00:13 +0000
Files and hashes: 1: 6KeHOxxWviP0lluNL5sOXVdQY7c.roa (hash: kUeVBsIsjzs7OuA1c4/VFEC1ddAvMO/ONIYaR+/BuFA=)
2: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl (hash: BDRpynAE5ljjqWHEcAe8uybdoNqjJquH9myjLUnx8Ko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:35:63:ab:e1:44:e0:ea:a1:4d:aa:92:52:2d:fc:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca434d399d93a19d8a8108456c5575096c2ae588
Validity
Not Before: Apr 30 01:00:13 2025 GMT
Not After : May 1 01:00:13 2025 GMT
Subject: CN=8f92166e8b3caff0a9e55b0dd45898d12c5e450f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2f:77:fe:0f:0d:d5:9e:93:84:27:18:17:9d:
8e:0e:8d:94:1a:89:00:4d:74:73:1d:03:83:78:ca:
23:a1:11:62:f4:84:af:71:7d:8d:a9:a5:2a:1d:e6:
6e:80:1d:b1:fb:99:a2:dc:0f:22:e3:21:d7:16:d2:
2e:5c:9a:94:ae:d3:0d:b7:9d:84:ad:c2:7e:28:da:
be:cd:34:bf:25:d8:bb:5f:00:7f:51:ff:fc:96:aa:
ca:67:fd:71:80:27:72:5d:12:07:06:6a:5e:c7:eb:
b1:52:5f:ca:af:c3:b3:07:f9:7a:1f:27:88:b2:b2:
3d:c2:6e:8d:38:6a:a1:8e:1d:bc:be:05:e1:4a:d8:
bd:e3:62:e4:6d:64:8e:51:52:4c:20:e6:69:a9:fb:
e4:77:18:00:b4:70:c2:84:b4:de:7c:6a:a3:43:bb:
86:ba:93:ff:b9:30:07:f1:8d:90:3a:87:87:b7:a9:
a6:d0:80:cd:b1:9a:1b:70:74:75:10:1e:f3:a6:cd:
47:16:57:4c:b7:b1:27:3a:cb:20:b8:00:e0:15:2c:
c2:b3:df:cd:a2:7c:38:5f:3f:4f:7a:f2:a5:f7:6b:
ad:05:29:fd:05:c0:6f:3b:63:e3:3b:a5:36:fc:47:
5c:45:95:ab:af:a0:b2:0d:ef:60:42:f9:fc:22:e1:
bf:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:92:16:6E:8B:3C:AF:F0:A9:E5:5B:0D:D4:58:98:D1:2C:5E:45:0F
X509v3 Authority Key Identifier:
keyid:CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:82:99:59:bc:b8:0d:c5:94:27:34:1d:a8:d1:9e:a8:a0:dd:
1f:d6:37:4b:42:0e:73:37:87:58:c1:6c:df:9c:b0:5a:a4:e8:
88:71:68:1c:bd:5f:3e:5d:59:52:8b:43:d7:a9:da:06:0d:c2:
04:ca:4b:67:64:a5:ff:1e:78:0c:a6:6c:e6:dc:94:28:8d:41:
ae:c5:8a:8e:6b:da:35:08:13:c9:48:a2:6f:09:81:39:b1:ab:
6c:5d:2c:54:38:b6:7e:12:d1:6d:6a:8f:d2:62:8b:66:ee:ef:
82:4b:a9:a5:1e:6c:21:56:b8:c9:9a:2b:19:df:ca:e6:b0:16:
a7:c5:ec:8b:12:31:6a:13:9b:7c:ef:1f:a0:9c:c4:d7:8f:be:
3e:9f:5a:57:81:80:a9:7a:89:f0:a8:cf:8f:c9:f1:ff:9c:43:
48:bb:43:46:3e:93:f3:f7:45:e9:72:df:56:fd:25:46:f4:ae:
f3:79:77:7d:3f:36:eb:7a:e5:c1:1b:b9:46:18:ef:91:f4:3f:
88:dc:ce:da:d0:c8:3f:a2:02:d5:f0:e4:61:74:54:ad:49:88:
92:41:56:a6:31:14:64:00:9d:80:70:d5:b5:5b:2a:3c:2e:8e:
fc:59:93:9b:cc:ea:23:dc:6a:2b:15:63:ad:c2:c7:b3:2e:2d:
15:ef:42:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaENWOr4UTg6qFNqpJSLfwwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNDM0ZDM5OWQ5M2ExOWQ4YTgxMDg0NTZjNTU3NTA5NmMy
YWU1ODgwHhcNMjUwNDMwMDEwMDEzWhcNMjUwNTAxMDEwMDEzWjAzMTEwLwYDVQQD
Eyg4ZjkyMTY2ZThiM2NhZmYwYTllNTViMGRkNDU4OThkMTJjNWU0NTBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuy93/g8N1Z6ThCcYF52ODo2UGokA
TXRzHQODeMojoRFi9ISvcX2NqaUqHeZugB2x+5mi3A8i4yHXFtIuXJqUrtMNt52E
rcJ+KNq+zTS/Jdi7XwB/Uf/8lqrKZ/1xgCdyXRIHBmpex+uxUl/Kr8OzB/l6HyeI
srI9wm6NOGqhjh28vgXhSti942LkbWSOUVJMIOZpqfvkdxgAtHDChLTefGqjQ7uG
upP/uTAH8Y2QOoeHt6mm0IDNsZobcHR1EB7zps1HFldMt7EnOssguADgFSzCs9/N
onw4Xz9PevKl92utBSn9BcBvO2PjO6U2/EdcRZWrr6CyDe9gQvn8IuG/8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI+SFm6LPK/wqeVbDdRYmNEsXkUPMB8GA1UdIwQY
MBaAFMpDTTmdk6GdioEIRWxVdQlsKuWIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWtOTk9aMlRvWjJLZ1FoRmJGVjFDV3dxNVlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC82YWVjNmEtMzY4My00MDVhLTllNjEt
ZGIyMzY4MjcxOTEzLzEveWtOTk9aMlRvWjJLZ1FoRmJGVjFDV3dxNVlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC82YWVjNmEtMzY4My00MDVhLTllNjEtZGIyMzY4MjcxOTEz
LzEveWtOTk9aMlRvWjJLZ1FoRmJGVjFDV3dxNVlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS4KZWby4
DcWUJzQdqNGeqKDdH9Y3S0IOczeHWMFs35ywWqToiHFoHL1fPl1ZUotD16naBg3C
BMpLZ2Sl/x54DKZs5tyUKI1BrsWKjmvaNQgTyUiibwmBObGrbF0sVDi2fhLRbWqP
0mKLZu7vgkuppR5sIVa4yZorGd/K5rAWp8XsixIxahObfO8foJzE14++Pp9aV4GA
qXqJ8KjPj8nx/5xDSLtDRj6T8/dF6XLfVv0lRvSu83l3fT8263rlwRu5RhjvkfQ/
iNzO2tDIP6IC1fDkYXRUrUmIkkFWpjEUZACdgHDVtVsqPC6O/FmTm8zqI9xqKxVj
rcLHsy4tFe9Cuw==
-----END CERTIFICATE-----
Generated at Wed Apr 30 04:49:03 2025 by rpki-client