Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
File: RyyyiCCZANGvGpmLsDnsdX5JPdU.mft (raw, json)
Hash identifier: 5TIdofZ7CI2/s8wIUyuiyZkPEbisC7CasE8NEXgR7aA=
Subject key identifier: B8:B5:23:E8:CA:BB:92:9F:E7:6B:E6:73:4F:55:0D:B2:5E:2B:12:98
Authority key identifier: 47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
Certificate issuer: /CN=472cb288209900d1af1a998bb039ec757e493dd5
Certificate serial: 0196A954AE516A5DC58FB6B5DCA9391E71EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
Manifest number: 0752
Signing time: Wed 07 May 2025 06:00:21 +0000
Manifest this update: Wed 07 May 2025 06:00:21 +0000
Manifest next update: Thu 08 May 2025 06:00:21 +0000
Files and hashes: 1: RyyyiCCZANGvGpmLsDnsdX5JPdU.crl (hash: GgDizaxJBqu+kWXP6fN9Dqka5Z3iZpSchZo7OwtcIfc=)
2: S3dIMaIh62_y7HmBxhlxOM_ScHc.roa (hash: wYfLcBDYpc1piz/XiUHEld94m4pY4RAv7rF1GCt4/I0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:54:ae:51:6a:5d:c5:8f:b6:b5:dc:a9:39:1e:71:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=472cb288209900d1af1a998bb039ec757e493dd5
Validity
Not Before: May 7 06:00:21 2025 GMT
Not After : May 8 06:00:21 2025 GMT
Subject: CN=b8b523e8cabb929fe76be6734f550db25e2b1298
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:31:1a:57:65:89:24:6a:ca:93:41:2a:a0:fc:
08:84:a5:0b:9d:20:e8:76:ec:81:a3:41:cd:1d:38:
da:04:a6:94:1a:b9:b7:90:ba:6a:cd:24:9a:21:6c:
9a:28:69:e1:f8:a8:de:91:c2:a8:ad:3b:2e:b2:b0:
ec:12:07:11:fe:ac:dd:bc:93:aa:db:f6:6c:9c:b6:
85:65:f6:08:d9:ba:bc:d2:69:86:d5:83:11:e6:67:
84:6b:f6:0b:a9:22:f1:96:14:a5:b4:6b:1e:8f:c5:
bb:bc:38:0a:eb:44:df:50:79:c5:3e:b3:6a:60:52:
99:90:9e:83:d8:bf:e1:66:66:11:b5:41:50:c5:81:
77:8f:87:22:45:fa:c9:cc:8e:61:a3:b7:75:67:06:
d1:61:1f:38:30:ad:76:01:f3:fd:40:da:ad:0e:a8:
8e:3b:7d:a5:6b:69:13:32:54:ce:67:84:19:25:55:
77:97:8b:97:7f:d9:ab:5c:35:9d:5f:1a:24:c1:a6:
bf:58:b1:fb:28:e0:5c:fa:61:1c:e8:d8:df:80:eb:
35:55:6a:f2:75:8b:fd:dd:38:9f:f0:2d:eb:4d:55:
c4:c4:60:fa:15:cb:8f:d3:01:35:ae:86:d0:01:46:
58:39:82:69:e3:82:b7:25:2c:82:76:2e:a2:49:d1:
61:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:B5:23:E8:CA:BB:92:9F:E7:6B:E6:73:4F:55:0D:B2:5E:2B:12:98
X509v3 Authority Key Identifier:
keyid:47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:91:ee:fc:b9:7b:78:0d:e7:3f:4c:be:87:c0:be:28:ee:e0:
af:c6:cb:06:ab:4e:79:1d:7f:88:d2:12:b3:6c:d5:7e:02:26:
fd:9e:2a:17:ca:30:fb:1e:8b:16:00:72:66:3b:fb:f9:89:03:
96:bf:3b:88:e2:b4:ee:f0:66:4b:c2:22:0e:5a:9d:e4:f0:b0:
72:cd:e3:65:01:64:8f:5a:db:e0:b6:9e:e9:19:11:2d:e4:a5:
f0:72:f4:c2:6a:13:9d:7f:c2:6d:ef:10:36:8a:13:78:1b:e6:
8c:a6:95:7e:73:d9:6d:5f:86:2e:9b:5a:7d:ad:a3:6c:ec:9b:
2d:a8:58:38:9b:00:e6:d7:7b:14:4c:fa:4c:58:c5:d8:19:15:
d6:74:7e:ea:43:73:42:86:af:a2:1e:45:37:54:43:e4:37:c5:
a2:16:36:01:a1:02:8b:95:31:df:58:57:e3:36:41:bf:78:f6:
f2:99:17:08:5e:09:cc:89:85:a3:1f:9f:73:f8:8c:07:6f:d1:
d1:31:86:ba:59:9f:68:d5:78:70:b6:65:08:77:84:d8:a1:61:
50:0f:bb:93:2c:52:92:67:b9:af:0f:b0:bf:55:1a:a0:bb:b3:
42:c1:73:42:d6:96:f0:24:df:14:8b:ca:15:af:3e:d1:ef:5b:
d1:92:46:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZapVK5Ral3Fj7a13Kk5HnHuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3MmNiMjg4MjA5OTAwZDFhZjFhOTk4YmIwMzllYzc1N2U0
OTNkZDUwHhcNMjUwNTA3MDYwMDIxWhcNMjUwNTA4MDYwMDIxWjAzMTEwLwYDVQQD
EyhiOGI1MjNlOGNhYmI5MjlmZTc2YmU2NzM0ZjU1MGRiMjVlMmIxMjk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzEaV2WJJGrKk0EqoPwIhKULnSDo
duyBo0HNHTjaBKaUGrm3kLpqzSSaIWyaKGnh+KjekcKorTsusrDsEgcR/qzdvJOq
2/ZsnLaFZfYI2bq80mmG1YMR5meEa/YLqSLxlhSltGsej8W7vDgK60TfUHnFPrNq
YFKZkJ6D2L/hZmYRtUFQxYF3j4ciRfrJzI5ho7d1ZwbRYR84MK12AfP9QNqtDqiO
O32la2kTMlTOZ4QZJVV3l4uXf9mrXDWdXxokwaa/WLH7KOBc+mEc6NjfgOs1VWry
dYv93Tif8C3rTVXExGD6FcuP0wE1robQAUZYOYJp44K3JSyCdi6iSdFhOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLi1I+jKu5Kf52vmc09VDbJeKxKYMB8GA1UdIwQY
MBaAFEcssoggmQDRrxqZi7A57HV+ST3VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUnl5eWlDQ1pBTkd2R3BtTHNEbnNkWDVKUGRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9mOWI2YjktYjc4Ny00ZTI4LWIwYmYt
YWE5MDJkYmFlOTI4LzEvUnl5eWlDQ1pBTkd2R3BtTHNEbnNkWDVKUGRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy9mOWI2YjktYjc4Ny00ZTI4LWIwYmYtYWE5MDJkYmFlOTI4
LzEvUnl5eWlDQ1pBTkd2R3BtTHNEbnNkWDVKUGRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXpHu/Ll7
eA3nP0y+h8C+KO7gr8bLBqtOeR1/iNISs2zVfgIm/Z4qF8ow+x6LFgByZjv7+YkD
lr87iOK07vBmS8IiDlqd5PCwcs3jZQFkj1rb4Lae6RkRLeSl8HL0wmoTnX/Cbe8Q
NooTeBvmjKaVfnPZbV+GLptafa2jbOybLahYOJsA5td7FEz6TFjF2BkV1nR+6kNz
Qoavoh5FN1RD5DfFohY2AaECi5Ux31hX4zZBv3j28pkXCF4JzImFox+fc/iMB2/R
0TGGulmfaNV4cLZlCHeE2KFhUA+7kyxSkme5rw+wv1UaoLuzQsFzQtaW8CTfFIvK
Fa8+0e9b0ZJGvg==
-----END CERTIFICATE-----
Generated at Wed May 7 08:18:56 2025 by rpki-client