Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
File: ypQrJwZ2HCunUyiXg-35heM48Xc.mft (raw, json)
Hash identifier: clkVwpcALSJ8yx8ha7DWZeus0+NBFFpfB/BqxPajvGA=
Subject key identifier: 74:7F:BA:93:75:F5:C1:D7:42:C1:24:F0:82:78:84:C8:F5:A1:A6:A9
Authority key identifier: CA:94:2B:27:06:76:1C:2B:A7:53:28:97:83:ED:F9:85:E3:38:F1:77
Certificate issuer: /CN=ca942b2706761c2ba753289783edf985e338f177
Certificate serial: 0196C45E7CA6CA04EBB80B12B1CE7A03FDCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypQrJwZ2HCunUyiXg-35heM48Xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
Manifest number: 0AC5
Signing time: Mon 12 May 2025 12:00:48 +0000
Manifest this update: Mon 12 May 2025 12:00:48 +0000
Manifest next update: Tue 13 May 2025 12:00:48 +0000
Files and hashes: 1: eiXFhQbxCQpcEPNruQeHmSAD-Z0.roa (hash: MfMam3uqTveTnOv++uzEyTkwTSJ0lTcdAkWlcL+odNo=)
2: ypQrJwZ2HCunUyiXg-35heM48Xc.crl (hash: DdBQzGkqlUhKc/CRLdji5h4gjfsYLdpimQTs5ZRdugw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ypQrJwZ2HCunUyiXg-35heM48Xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 12:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:5e:7c:a6:ca:04:eb:b8:0b:12:b1:ce:7a:03:fd:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca942b2706761c2ba753289783edf985e338f177
Validity
Not Before: May 12 12:00:48 2025 GMT
Not After : May 13 12:00:48 2025 GMT
Subject: CN=747fba9375f5c1d742c124f0827884c8f5a1a6a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4d:0f:bd:2e:7a:fc:cc:29:de:e5:0f:01:f3:
c9:d3:f2:86:76:31:40:c0:87:93:bf:5c:04:f4:2a:
bb:2d:05:e5:28:fb:65:8d:33:93:85:57:55:1d:ee:
ab:27:4e:ad:4c:c4:e3:13:20:f1:00:f9:c6:da:7f:
b7:d8:a0:6d:68:d4:06:e2:c5:e7:9f:bb:75:ee:c3:
2d:c0:05:3c:30:69:0c:ad:f3:31:fe:6b:70:ed:e8:
87:00:0c:35:73:97:61:9c:0b:a7:e1:17:d2:58:b9:
35:f0:f4:89:ec:2d:e1:63:96:f2:1f:12:a2:50:bf:
06:2c:08:63:86:92:37:f3:70:5d:5e:c9:a3:38:ce:
07:91:90:7e:78:8b:91:3c:f9:45:fd:d6:3a:63:9d:
f6:c9:7b:b5:99:35:7d:9c:46:c1:1d:f8:82:d5:b1:
8f:30:b0:a7:64:53:f8:d4:d0:0d:7e:25:2f:2e:02:
61:47:93:ec:65:d5:b2:45:82:55:47:1c:b2:b3:70:
8a:b5:9a:94:8c:61:e0:68:a3:c4:a3:22:cf:98:8f:
07:87:ef:a4:8a:2d:ce:01:bb:00:0a:ee:a7:b3:d7:
2c:55:60:17:4b:d1:e0:fc:6b:c6:f0:9b:f7:53:4b:
db:8e:41:7f:ee:c4:c9:34:89:95:06:09:63:3f:03:
75:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:7F:BA:93:75:F5:C1:D7:42:C1:24:F0:82:78:84:C8:F5:A1:A6:A9
X509v3 Authority Key Identifier:
keyid:CA:94:2B:27:06:76:1C:2B:A7:53:28:97:83:ED:F9:85:E3:38:F1:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypQrJwZ2HCunUyiXg-35heM48Xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:61:72:36:08:c4:03:1b:88:79:f9:e6:39:4f:e3:57:fe:e7:
82:ff:eb:aa:7b:51:ff:48:a0:30:7d:68:86:61:25:32:d7:7b:
5e:9e:5f:e0:3d:e6:c1:77:c5:10:ca:11:ed:39:85:b9:03:5b:
15:38:5a:d1:39:08:ff:fe:1e:1a:27:24:03:1a:0f:85:c1:10:
b3:25:16:2c:13:ec:14:e8:e8:66:15:26:ca:c4:71:3e:5d:d0:
16:9b:c9:66:be:82:d1:b2:33:fa:56:99:9c:05:e6:fc:05:c6:
fe:9a:dd:1b:9c:f7:e6:12:2b:54:48:b2:b8:83:8a:89:9b:26:
8e:3d:e1:57:8a:b8:02:4a:6d:b2:cd:5e:34:fc:63:94:11:61:
51:dc:47:75:f1:43:a6:df:16:4d:1b:14:c1:7f:c2:56:fd:2f:
cb:1a:1f:28:70:e2:55:98:85:00:0e:91:8f:71:d7:fb:25:e3:
d5:ea:23:1b:ca:bd:fe:0d:50:15:0e:8f:7d:2f:5d:19:56:57:
f1:08:b1:08:21:a0:e8:56:0f:bc:27:9c:66:17:c3:20:a2:77:
fa:88:2e:cf:7e:31:40:81:7e:02:90:fd:4c:68:95:70:10:92:
cb:62:1f:95:46:83:12:75:88:cf:87:99:c8:03:be:7f:36:7c:
62:d4:aa:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbEXnymygTruAsSsc56A/3KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhOTQyYjI3MDY3NjFjMmJhNzUzMjg5NzgzZWRmOTg1ZTMz
OGYxNzcwHhcNMjUwNTEyMTIwMDQ4WhcNMjUwNTEzMTIwMDQ4WjAzMTEwLwYDVQQD
Eyg3NDdmYmE5Mzc1ZjVjMWQ3NDJjMTI0ZjA4Mjc4ODRjOGY1YTFhNmE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtk0PvS56/Mwp3uUPAfPJ0/KGdjFA
wIeTv1wE9Cq7LQXlKPtljTOThVdVHe6rJ06tTMTjEyDxAPnG2n+32KBtaNQG4sXn
n7t17sMtwAU8MGkMrfMx/mtw7eiHAAw1c5dhnAun4RfSWLk18PSJ7C3hY5byHxKi
UL8GLAhjhpI383BdXsmjOM4HkZB+eIuRPPlF/dY6Y532yXu1mTV9nEbBHfiC1bGP
MLCnZFP41NANfiUvLgJhR5PsZdWyRYJVRxyys3CKtZqUjGHgaKPEoyLPmI8Hh++k
ii3OAbsACu6ns9csVWAXS9Hg/GvG8Jv3U0vbjkF/7sTJNImVBgljPwN17QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHR/upN19cHXQsEk8IJ4hMj1oaapMB8GA1UdIwQY
MBaAFMqUKycGdhwrp1Mol4Pt+YXjOPF3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXBRckp3WjJIQ3VuVXlpWGctMzVoZU00OFhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9iOGMxM2QtZTdkMy00YWE5LWE5MTEt
ZWQ2NDgwNTk3N2YwLzEveXBRckp3WjJIQ3VuVXlpWGctMzVoZU00OFhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9iOGMxM2QtZTdkMy00YWE5LWE5MTEtZWQ2NDgwNTk3N2Yw
LzEveXBRckp3WjJIQ3VuVXlpWGctMzVoZU00OFhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlmFyNgjE
AxuIefnmOU/jV/7ngv/rqntR/0igMH1ohmElMtd7Xp5f4D3mwXfFEMoR7TmFuQNb
FTha0TkI//4eGickAxoPhcEQsyUWLBPsFOjoZhUmysRxPl3QFpvJZr6C0bIz+laZ
nAXm/AXG/prdG5z35hIrVEiyuIOKiZsmjj3hV4q4Akptss1eNPxjlBFhUdxHdfFD
pt8WTRsUwX/CVv0vyxofKHDiVZiFAA6Rj3HX+yXj1eojG8q9/g1QFQ6PfS9dGVZX
8QixCCGg6FYPvCecZhfDIKJ3+oguz34xQIF+ApD9TGiVcBCSy2IflUaDEnWIz4eZ
yAO+fzZ8YtSqRw==
-----END CERTIFICATE-----
Generated at Mon May 12 20:26:50 2025 by rpki-client