Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
File: PsY-XbBDXC0-dKayitPZww1qjO4.mft (raw, json)
Hash identifier: YF/C/UjqtVuDL87Exavkaje6au3xc6L+BO5pwtlbJhQ=
Subject key identifier: F8:19:D9:8D:AC:D6:6A:1F:6B:3C:A0:36:92:4E:91:84:2E:03:46:F1
Authority key identifier: 3E:C6:3E:5D:B0:43:5C:2D:3E:74:A6:B2:8A:D3:D9:C3:0D:6A:8C:EE
Certificate issuer: /CN=3ec63e5db0435c2d3e74a6b28ad3d9c30d6a8cee
Certificate serial: 0196C502CC8FC67CD8CCE9091D4302F83004
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
Manifest number: 0D47
Signing time: Mon 12 May 2025 15:00:17 +0000
Manifest this update: Mon 12 May 2025 15:00:17 +0000
Manifest next update: Tue 13 May 2025 15:00:17 +0000
Files and hashes: 1: GSEh8gIZdCBsRKOnb9fKkFOFuZk.roa (hash: u2uTEL6Ts0fKYl8Es1LELd2Ambr6iVn6vwhJ7qDD50c=)
2: PsY-XbBDXC0-dKayitPZww1qjO4.crl (hash: 5W0dde4kE/Um5tHwUZZbKu66c+uxGoC7ZVYPe78xF1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:02:cc:8f:c6:7c:d8:cc:e9:09:1d:43:02:f8:30:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec63e5db0435c2d3e74a6b28ad3d9c30d6a8cee
Validity
Not Before: May 12 15:00:17 2025 GMT
Not After : May 13 15:00:17 2025 GMT
Subject: CN=f819d98dacd66a1f6b3ca036924e91842e0346f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ad:32:6e:34:02:ac:88:97:08:e5:b7:f8:69:
70:a5:cf:0c:06:7e:04:f5:27:12:2e:41:08:b3:a5:
de:31:bc:e8:be:a1:fb:dd:19:fb:0c:fd:33:4e:7f:
e4:13:1c:21:63:33:5c:b3:3b:da:b1:f0:f4:45:e6:
a8:b7:43:ac:24:57:3a:5a:fe:1c:83:a9:95:ed:88:
81:9b:a7:e9:60:64:ac:dc:ed:e1:63:9f:d3:ee:c3:
ca:5e:f9:b5:8b:5f:74:26:fd:7d:36:2e:a4:ee:7d:
c9:cb:61:79:71:3d:dd:70:52:fa:02:af:39:7d:da:
4f:e9:e5:08:5c:d2:55:a4:7b:90:cf:38:ae:d7:e6:
bc:d4:77:71:0b:c3:64:07:fe:2d:11:a6:e7:58:d7:
cb:ee:6c:da:b2:fa:82:5b:28:8d:6f:95:db:8c:be:
5e:a7:ea:68:e0:8b:3a:b8:2e:f6:c5:60:56:95:42:
76:b7:ea:02:7f:fd:2f:7c:4e:ff:58:ad:af:93:97:
c3:50:87:8b:9d:57:a8:a3:c6:fa:93:39:cc:d8:03:
55:6d:f5:6f:6c:8b:86:08:09:d6:ca:b5:b3:11:90:
1f:61:83:aa:cc:0b:fd:47:40:73:dd:d2:13:50:68:
59:ab:9c:00:de:94:69:e9:20:8b:61:aa:6c:29:6b:
5a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:19:D9:8D:AC:D6:6A:1F:6B:3C:A0:36:92:4E:91:84:2E:03:46:F1
X509v3 Authority Key Identifier:
keyid:3E:C6:3E:5D:B0:43:5C:2D:3E:74:A6:B2:8A:D3:D9:C3:0D:6A:8C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:4e:97:4e:89:0f:2e:b7:ab:fd:9d:1f:33:34:9a:40:1a:74:
55:58:e7:b3:a1:0e:6a:ac:ca:91:c7:c6:8a:93:fe:ef:1d:13:
34:15:65:e6:59:03:50:b9:45:1e:17:5f:3d:0c:4b:49:93:8a:
e7:c5:3f:df:6f:c3:de:e2:7e:2a:f0:ec:85:26:31:19:3b:67:
2e:ab:61:3e:2c:e2:c1:d7:14:56:46:30:d2:0d:67:e1:df:85:
03:2a:a9:be:a1:bc:00:33:f4:8b:c6:6a:92:35:30:64:12:88:
e8:ac:64:72:85:6b:5b:6d:0b:32:2c:c5:2d:28:88:f4:3d:c1:
f7:02:1f:7d:93:46:1e:72:c2:69:ce:45:3c:d4:a6:dc:8b:b2:
b7:88:b4:0b:19:8d:42:71:ff:69:2f:7b:8a:33:1b:61:a3:5a:
86:ef:8a:26:71:7b:36:3c:8f:ef:ef:07:40:ee:6c:c6:04:34:
67:14:b1:5c:78:7c:3c:98:86:e2:1a:06:78:50:2c:6b:43:e5:
27:db:fb:95:4d:19:08:e6:b7:43:4b:8b:d1:27:1b:75:7c:4c:
10:69:a2:49:77:4f:ff:f8:cb:3e:db:76:3d:b4:b2:ab:9a:d9:
4f:a4:01:2d:99:63:82:36:d2:33:66:e7:47:40:7c:5d:c3:f1:
3b:78:58:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbFAsyPxnzYzOkJHUMC+DAEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlYzYzZTVkYjA0MzVjMmQzZTc0YTZiMjhhZDNkOWMzMGQ2
YThjZWUwHhcNMjUwNTEyMTUwMDE3WhcNMjUwNTEzMTUwMDE3WjAzMTEwLwYDVQQD
EyhmODE5ZDk4ZGFjZDY2YTFmNmIzY2EwMzY5MjRlOTE4NDJlMDM0NmYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4q0ybjQCrIiXCOW3+Glwpc8MBn4E
9ScSLkEIs6XeMbzovqH73Rn7DP0zTn/kExwhYzNcszvasfD0Reaot0OsJFc6Wv4c
g6mV7YiBm6fpYGSs3O3hY5/T7sPKXvm1i190Jv19Ni6k7n3Jy2F5cT3dcFL6Aq85
fdpP6eUIXNJVpHuQzziu1+a81HdxC8NkB/4tEabnWNfL7mzasvqCWyiNb5XbjL5e
p+po4Is6uC72xWBWlUJ2t+oCf/0vfE7/WK2vk5fDUIeLnVeoo8b6kznM2ANVbfVv
bIuGCAnWyrWzEZAfYYOqzAv9R0Bz3dITUGhZq5wA3pRp6SCLYapsKWtauwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPgZ2Y2s1mofazygNpJOkYQuA0bxMB8GA1UdIwQY
MBaAFD7GPl2wQ1wtPnSmsorT2cMNaozuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHNZLVhiQkRYQzAtZEtheWl0UFp3dzFxak80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS80NmQ5NDMtOGNiZC00MWEyLWI5ZjIt
NTIwNThmOGE5YTFhLzEvUHNZLVhiQkRYQzAtZEtheWl0UFp3dzFxak80Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS80NmQ5NDMtOGNiZC00MWEyLWI5ZjItNTIwNThmOGE5YTFh
LzEvUHNZLVhiQkRYQzAtZEtheWl0UFp3dzFxak80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd06XTokP
Lrer/Z0fMzSaQBp0VVjns6EOaqzKkcfGipP+7x0TNBVl5lkDULlFHhdfPQxLSZOK
58U/32/D3uJ+KvDshSYxGTtnLqthPiziwdcUVkYw0g1n4d+FAyqpvqG8ADP0i8Zq
kjUwZBKI6KxkcoVrW20LMizFLSiI9D3B9wIffZNGHnLCac5FPNSm3Iuyt4i0CxmN
QnH/aS97ijMbYaNahu+KJnF7NjyP7+8HQO5sxgQ0ZxSxXHh8PJiG4hoGeFAsa0Pl
J9v7lU0ZCOa3Q0uL0ScbdXxMEGmiSXdP//jLPtt2PbSyq5rZT6QBLZljgjbSM2bn
R0B8XcPxO3hYIA==
-----END CERTIFICATE-----
Generated at Mon May 12 17:59:34 2025 by rpki-client