Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
File: ylmb3Bz8eujML7oV_NgMoRc3hGc.mft (raw, json)
Hash identifier: sVGVfjzHqPMX3SIrpvqRA0OJMeAqtmwunlz3N/P9Id4=
Subject key identifier: C1:27:F5:47:6B:7A:0D:01:0F:F7:41:FB:07:54:B1:67:58:61:DC:2F
Authority key identifier: CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
Certificate issuer: /CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Certificate serial: 0196778CF261FE21AB64142FF9CB1B2325CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
Manifest number: 0127
Signing time: Sun 27 Apr 2025 14:00:47 +0000
Manifest this update: Sun 27 Apr 2025 14:00:47 +0000
Manifest next update: Mon 28 Apr 2025 14:00:47 +0000
Files and hashes: 1: ylmb3Bz8eujML7oV_NgMoRc3hGc.crl (hash: 8CSO8r8c2xYnZG/9Y03+trq4UWkUKQ56h18INSdeni0=)
2: zIZvUw6LEttnk9GqCkFL8S-ncbM.roa (hash: g5dRThI/Wu6nM24igsF8Y2hQEgVjjdxUN3aRLJWGc3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:8c:f2:61:fe:21:ab:64:14:2f:f9:cb:1b:23:25:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Validity
Not Before: Apr 27 14:00:47 2025 GMT
Not After : Apr 28 14:00:47 2025 GMT
Subject: CN=c127f5476b7a0d010ff741fb0754b1675861dc2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f0:26:76:5d:b1:8d:6d:28:1c:79:b3:e6:dd:
a2:ce:18:5c:19:17:58:bf:9d:f0:24:3c:d5:1c:1f:
bb:06:01:9d:a7:33:b7:bb:f7:a8:4f:fa:e4:e2:0c:
0f:93:a3:90:cd:13:1a:34:a2:e3:83:bd:59:7e:8d:
46:f7:d1:05:45:92:5b:c8:b7:68:c4:1b:c1:84:ed:
55:47:ba:72:19:4c:fa:e5:46:15:e8:00:bb:6e:b8:
83:96:70:4e:bf:97:ef:b3:22:8c:60:00:28:22:ed:
da:24:3e:ab:67:be:e1:fe:f2:ac:2b:0c:b8:34:bc:
be:fb:e5:83:09:91:8e:32:2b:55:cc:ef:30:e9:e4:
2d:b7:0c:a0:05:01:ae:fc:2b:db:32:93:b1:c4:1a:
f2:da:4b:11:c2:af:c9:ae:d5:56:66:55:14:f1:27:
a9:6f:be:e8:be:cb:fb:48:c0:a2:3a:f1:8c:3b:30:
2f:e2:1c:04:1c:37:63:b6:e2:94:92:1d:a4:bd:12:
49:5d:b5:3b:13:8c:86:b2:ee:20:5f:1d:2a:a9:06:
05:76:ba:07:ba:c6:66:45:91:ae:98:85:5a:5e:fa:
ca:4e:93:f9:97:5a:35:26:85:9d:7d:59:1d:65:e7:
69:35:df:3c:5d:dc:f7:37:ea:f3:0f:78:24:d3:b4:
e7:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:27:F5:47:6B:7A:0D:01:0F:F7:41:FB:07:54:B1:67:58:61:DC:2F
X509v3 Authority Key Identifier:
keyid:CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:7c:ed:c4:f2:0e:68:a3:1f:5d:c2:a7:10:74:d3:6c:3d:27:
2f:19:0a:83:9f:95:f1:6a:be:86:7b:05:73:8a:95:16:e7:75:
eb:e6:83:46:06:12:97:f0:28:78:e8:1b:5b:2c:63:fc:6f:03:
c6:bf:3c:8d:46:27:d2:7e:d7:1a:63:d8:1a:4d:89:48:d2:30:
2e:c2:9f:d4:cb:2f:b1:24:2c:95:c9:60:ec:b1:ac:6f:81:c8:
d3:23:84:28:87:58:97:e1:67:8f:4e:ae:e9:a8:64:2c:d4:8a:
f8:ec:f4:20:e9:16:b3:66:7e:6f:fa:33:62:e1:93:8b:e6:28:
1f:88:eb:69:db:0e:dd:96:7d:81:0c:97:37:f4:af:fb:6b:82:
7b:58:00:90:20:df:2e:24:55:87:0f:6a:91:18:d4:b4:76:3d:
7f:b0:e5:bc:ce:c9:80:4d:7f:22:22:f0:af:de:0e:46:18:82:
79:e2:cb:83:28:be:28:a5:c8:0e:2c:f2:c1:c8:5f:27:92:51:
c2:f8:e9:5e:15:2d:6f:6f:5a:f2:c8:f1:59:33:b6:dd:59:6c:
ee:cf:83:6d:d8:0c:a4:8a:20:f7:4e:50:19:a6:4e:83:e9:16:
47:8b:73:28:90:59:26:47:2a:2a:d5:85:d9:b6:06:cb:62:e4:
e8:21:9d:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ3jPJh/iGrZBQv+csbIyXNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNTk5YmRjMWNmYzdhZThjYzJmYmExNWZjZDgwY2ExMTcz
Nzg0NjcwHhcNMjUwNDI3MTQwMDQ3WhcNMjUwNDI4MTQwMDQ3WjAzMTEwLwYDVQQD
EyhjMTI3ZjU0NzZiN2EwZDAxMGZmNzQxZmIwNzU0YjE2NzU4NjFkYzJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPAmdl2xjW0oHHmz5t2izhhcGRdY
v53wJDzVHB+7BgGdpzO3u/eoT/rk4gwPk6OQzRMaNKLjg71Zfo1G99EFRZJbyLdo
xBvBhO1VR7pyGUz65UYV6AC7briDlnBOv5fvsyKMYAAoIu3aJD6rZ77h/vKsKwy4
NLy+++WDCZGOMitVzO8w6eQttwygBQGu/CvbMpOxxBry2ksRwq/JrtVWZlUU8Sep
b77ovsv7SMCiOvGMOzAv4hwEHDdjtuKUkh2kvRJJXbU7E4yGsu4gXx0qqQYFdroH
usZmRZGumIVaXvrKTpP5l1o1JoWdfVkdZedpNd88Xdz3N+rzD3gk07Tn/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMEn9Udreg0BD/dB+wdUsWdYYdwvMB8GA1UdIwQY
MBaAFMpZm9wc/HrozC+6FfzYDKEXN4RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWxtYjNCejhldWpNTDdvVl9OZ01vUmMzaEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8xY2VjYjgtOTdkOS00NzNmLWIwMDQt
Y2M5MTI3NDZlNDdlLzEveWxtYjNCejhldWpNTDdvVl9OZ01vUmMzaEdjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi8xY2VjYjgtOTdkOS00NzNmLWIwMDQtY2M5MTI3NDZlNDdl
LzEveWxtYjNCejhldWpNTDdvVl9OZ01vUmMzaEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKHztxPIO
aKMfXcKnEHTTbD0nLxkKg5+V8Wq+hnsFc4qVFud16+aDRgYSl/AoeOgbWyxj/G8D
xr88jUYn0n7XGmPYGk2JSNIwLsKf1MsvsSQslclg7LGsb4HI0yOEKIdYl+Fnj06u
6ahkLNSK+Oz0IOkWs2Z+b/ozYuGTi+YoH4jradsO3ZZ9gQyXN/Sv+2uCe1gAkCDf
LiRVhw9qkRjUtHY9f7DlvM7JgE1/IiLwr94ORhiCeeLLgyi+KKXIDizywchfJ5JR
wvjpXhUtb29a8sjxWTO23Vls7s+DbdgMpIog905QGaZOg+kWR4tzKJBZJkcqKtWF
2bYGy2Lk6CGdLw==
-----END CERTIFICATE-----
Generated at Sun Apr 27 17:45:30 2025 by rpki-client