Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
File: yuDyZX221YxEden7gXNW4u3SzA8.mft (raw, json)
Hash identifier: AYsJK0jw806au1m3JM46azOiDFztN5jMqq+8pp/h8qk=
Subject key identifier: 67:75:35:D8:BA:B8:A2:CC:BE:D7:42:19:31:11:F0:EB:CD:96:4B:EF
Authority key identifier: CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F
Certificate issuer: /CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f
Certificate serial: 0196B25897B63C99C8D9CD222FF22983EC1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
Manifest number: 110A
Signing time: Fri 09 May 2025 00:01:12 +0000
Manifest this update: Fri 09 May 2025 00:01:12 +0000
Manifest next update: Sat 10 May 2025 00:01:12 +0000
Files and hashes: 1: yuDyZX221YxEden7gXNW4u3SzA8.crl (hash: VcOd8DHRW7Bzgu5jz83YAe+EoGyAC6NnnHRBNJVv95Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b2:58:97:b6:3c:99:c8:d9:cd:22:2f:f2:29:83:ec:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f
Validity
Not Before: May 9 00:01:12 2025 GMT
Not After : May 10 00:01:12 2025 GMT
Subject: CN=677535d8bab8a2ccbed742193111f0ebcd964bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:70:f9:f7:88:5b:5e:70:d3:44:a0:10:9f:ce:
93:8f:73:64:59:ef:a9:ea:0b:69:e4:68:af:ab:4f:
47:09:8d:3c:d9:f3:ab:6b:e2:2d:3c:8b:cf:7f:b5:
04:12:d1:09:e9:c9:76:9d:8f:69:23:1e:2c:0f:66:
27:f9:dd:49:44:c0:57:34:30:b4:ac:1d:26:4b:25:
73:8c:14:35:6b:e9:20:11:a8:8a:55:b0:a5:dd:cd:
fe:5d:a1:68:3a:5e:2f:f9:3c:27:ea:56:26:eb:5e:
ea:a2:83:cf:16:11:1c:f3:fa:39:8c:3f:36:aa:5f:
16:5e:ac:54:e4:20:34:fa:59:e7:fa:ad:cb:46:29:
c6:f2:8e:fd:f8:ba:8d:c4:7e:8d:24:9c:d0:0b:bd:
31:65:41:4b:f4:ea:8c:ab:4d:a9:5b:75:0c:df:c7:
3f:8c:f3:f5:9b:c1:19:0f:6f:34:b7:5f:e0:51:6e:
39:af:62:14:c5:72:e5:89:13:6a:aa:a4:ac:24:6d:
36:fd:86:26:63:ea:41:19:45:b4:45:49:22:22:6c:
c3:05:e9:be:85:d3:ab:a6:ef:29:f0:3a:45:6c:14:
7a:56:00:5d:af:42:e9:12:82:12:cc:63:a1:e4:f0:
2f:35:bd:b4:e2:da:d2:65:89:f9:56:b6:8a:0f:e4:
61:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:75:35:D8:BA:B8:A2:CC:BE:D7:42:19:31:11:F0:EB:CD:96:4B:EF
X509v3 Authority Key Identifier:
keyid:CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:58:16:d9:d9:9b:a3:2c:5e:40:af:4a:b4:54:f8:8c:23:d6:
15:d6:bb:eb:a8:b7:f8:af:e2:45:26:ed:f2:f5:71:5f:ff:d4:
ab:6f:d9:37:1d:1e:4f:da:ea:9e:56:75:15:dc:ba:34:43:2c:
be:14:f6:ac:f0:b5:13:1b:c2:d5:fa:56:50:a0:d0:02:7c:5a:
ca:11:80:7b:4e:7d:9c:72:90:f6:bc:5d:9b:77:6d:9e:bd:49:
00:97:2a:49:c5:85:b2:8c:07:01:41:8f:46:f7:81:6e:79:c0:
eb:c9:b1:d2:a4:2e:51:a8:1e:58:13:19:ee:eb:77:7a:20:40:
e2:d8:ac:20:31:a0:fd:1f:6b:2d:b9:82:f0:6e:b0:2d:80:4b:
b6:e7:8d:4f:4e:f1:1e:28:38:d7:b7:32:1e:33:c2:60:c3:cb:
d5:2b:0b:d6:91:84:2c:d8:13:ce:7c:26:74:22:5e:ba:29:7b:
1b:ea:3d:87:92:d9:78:85:85:2a:b1:6f:6b:f7:c3:89:18:f9:
46:26:6d:98:d6:1d:44:89:4e:fd:2c:1c:45:28:3d:34:72:87:
1b:9c:01:5c:c7:7f:1f:46:e3:af:27:85:5d:cf:c5:34:b6:a6:
e5:ef:66:77:c4:5c:3f:aa:4e:6c:bc:b4:e3:8a:65:29:6b:db:
ce:1d:50:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZayWJe2PJnI2c0iL/Ipg+weMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhZTBmMjY1N2RiNmQ1OGM0NDc1ZTlmYjgxNzM1NmUyZWRk
MmNjMGYwHhcNMjUwNTA5MDAwMTEyWhcNMjUwNTEwMDAwMTEyWjAzMTEwLwYDVQQD
Eyg2Nzc1MzVkOGJhYjhhMmNjYmVkNzQyMTkzMTExZjBlYmNkOTY0YmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5nD594hbXnDTRKAQn86Tj3NkWe+p
6gtp5Givq09HCY082fOra+ItPIvPf7UEEtEJ6cl2nY9pIx4sD2Yn+d1JRMBXNDC0
rB0mSyVzjBQ1a+kgEaiKVbCl3c3+XaFoOl4v+Twn6lYm617qooPPFhEc8/o5jD82
ql8WXqxU5CA0+lnn+q3LRinG8o79+LqNxH6NJJzQC70xZUFL9OqMq02pW3UM38c/
jPP1m8EZD280t1/gUW45r2IUxXLliRNqqqSsJG02/YYmY+pBGUW0RUkiImzDBem+
hdOrpu8p8DpFbBR6VgBdr0LpEoISzGOh5PAvNb204trSZYn5VraKD+RhXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGd1Ndi6uKLMvtdCGTER8OvNlkvvMB8GA1UdIwQY
MBaAFMrg8mV9ttWMRHXp+4FzVuLt0swPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXVEeVpYMjIxWXhFZGVuN2dYTlc0dTNTekE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny8wMzdmZjEtNjliOS00NGI0LThjMGUt
YTE5YTNiZWIxNWIyLzEveXVEeVpYMjIxWXhFZGVuN2dYTlc0dTNTekE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny8wMzdmZjEtNjliOS00NGI0LThjMGUtYTE5YTNiZWIxNWIy
LzEveXVEeVpYMjIxWXhFZGVuN2dYTlc0dTNTekE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcFgW2dmb
oyxeQK9KtFT4jCPWFda766i3+K/iRSbt8vVxX//Uq2/ZNx0eT9rqnlZ1Fdy6NEMs
vhT2rPC1ExvC1fpWUKDQAnxayhGAe059nHKQ9rxdm3dtnr1JAJcqScWFsowHAUGP
RveBbnnA68mx0qQuUageWBMZ7ut3eiBA4tisIDGg/R9rLbmC8G6wLYBLtueNT07x
Hig417cyHjPCYMPL1SsL1pGELNgTznwmdCJeuil7G+o9h5LZeIWFKrFva/fDiRj5
RiZtmNYdRIlO/SwcRSg9NHKHG5wBXMd/H0bjryeFXc/FNLam5e9md8RcP6pObLy0
44plKWvbzh1Qgg==
-----END CERTIFICATE-----
Generated at Fri May 9 03:17:27 2025 by rpki-client