Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
File: yoFg7-OfGjB3_dL68ipkgEtUE4I.mft (raw, json)
Hash identifier: 5E+ZwXo/QVfikHWqO/yMYHmcqKdmmQRriZnn2u5WTJA=
Subject key identifier: B8:FF:D2:71:80:62:45:69:8B:A0:A0:94:93:4B:0F:88:47:80:78:9A
Authority key identifier: CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
Certificate issuer: /CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Certificate serial: 01969D51344FA84A410ACD581C1B2C2AE5C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
Manifest number: 11C3
Signing time: Sun 04 May 2025 22:01:06 +0000
Manifest this update: Sun 04 May 2025 22:01:06 +0000
Manifest next update: Mon 05 May 2025 22:01:06 +0000
Files and hashes: 1: h-rZd3ShfaYedaYA6tLbzrX_MkU.roa (hash: 6iJffUIazxHr4GTAEcidCyRV9SNB9d9va8nX06PMskE=)
2: yoFg7-OfGjB3_dL68ipkgEtUE4I.crl (hash: HTBghj/yPBXYpl+L+mcHVjsd2lPWCjZTL2mP0aOLauY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:51:34:4f:a8:4a:41:0a:cd:58:1c:1b:2c:2a:e5:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Validity
Not Before: May 4 22:01:06 2025 GMT
Not After : May 5 22:01:06 2025 GMT
Subject: CN=b8ffd271806245698ba0a094934b0f884780789a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e0:93:c3:50:b1:28:fa:0e:6d:25:97:18:eb:
b0:29:28:67:34:46:ec:ee:14:39:d2:a7:23:d9:30:
de:33:4f:cf:af:66:72:88:5f:a3:3e:fd:fa:a5:ed:
5f:2b:c5:97:3f:a3:5b:43:63:2f:25:b7:6b:78:63:
36:c6:ce:9b:8d:ed:76:45:c4:d0:5e:4e:e0:92:32:
36:cd:fb:e1:78:1a:2f:a6:ee:cb:01:0d:1e:bf:f7:
2d:a3:20:3a:4d:83:29:dc:48:c7:64:ac:bf:9f:02:
57:18:37:e7:36:d5:53:b0:df:ff:28:a9:92:4b:1f:
f6:4a:a6:6d:7d:66:b9:36:1e:cc:54:00:bd:1f:31:
dc:94:5c:ff:25:14:04:96:5f:bf:d0:73:96:c4:ea:
42:6c:39:6c:95:1f:a3:54:bc:5e:00:c3:4b:78:7f:
98:d5:b2:de:20:b3:e9:99:b6:d9:27:84:a3:4f:f5:
67:a8:fe:47:9f:d1:81:73:1c:f6:ed:22:b8:e8:3d:
5f:0f:6e:cf:8b:d9:1d:53:d2:f7:ca:43:12:ce:7f:
69:37:08:06:be:6f:b8:e0:97:c3:2a:9f:27:ec:88:
85:60:7f:87:28:e1:d3:02:78:4f:a1:fb:b8:46:75:
e9:b0:20:25:17:f6:0e:90:8b:ce:a8:15:af:a2:0a:
ef:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:FF:D2:71:80:62:45:69:8B:A0:A0:94:93:4B:0F:88:47:80:78:9A
X509v3 Authority Key Identifier:
keyid:CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:f2:2f:b0:0f:06:71:98:30:66:22:4c:f8:f6:48:6d:f0:e2:
6f:79:ec:47:1f:4a:3d:5c:fb:98:dc:0f:b4:f6:52:89:b2:f5:
2d:aa:d4:34:4d:97:ef:84:45:3f:0c:ea:f3:a0:18:dc:be:2a:
b4:92:e6:ef:1a:66:a9:e7:63:be:93:e6:75:25:1e:af:5d:ce:
f4:26:dc:1d:3f:b3:36:01:ab:95:fe:b6:5e:44:64:49:12:e1:
34:ce:7c:70:e3:07:c1:de:a9:1b:9b:68:19:59:69:b5:f2:41:
15:32:8b:7d:7a:26:9d:ae:c5:ee:e8:a7:13:1f:54:c9:93:df:
eb:5f:2b:d0:80:39:58:22:bb:27:07:ea:75:13:83:1d:34:18:
79:b9:a0:34:57:39:ab:d6:9c:38:a8:0a:ff:f6:e7:f4:24:c6:
08:bd:36:fd:92:1e:af:06:6d:de:d8:5f:af:21:48:d6:5c:23:
79:32:3d:ce:36:d6:8b:3c:5b:55:ad:47:05:0a:54:8f:20:b8:
29:b7:c8:60:63:36:e4:b6:5b:fc:1a:7a:3d:99:88:8c:01:77:
34:e7:9b:7f:e3:94:0a:2f:0f:60:f8:ad:b6:03:da:f4:b2:b2:
ad:2f:9a:93:15:6d:e0:53:03:ec:09:3e:ec:79:9c:da:02:2c:
70:13:36:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZadUTRPqEpBCs1YHBssKuXJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhODE2MGVmZTM5ZjFhMzA3N2ZkZDJmYWYyMmE2NDgwNGI1
NDEzODIwHhcNMjUwNTA0MjIwMTA2WhcNMjUwNTA1MjIwMTA2WjAzMTEwLwYDVQQD
EyhiOGZmZDI3MTgwNjI0NTY5OGJhMGEwOTQ5MzRiMGY4ODQ3ODA3ODlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuOCTw1CxKPoObSWXGOuwKShnNEbs
7hQ50qcj2TDeM0/Pr2ZyiF+jPv36pe1fK8WXP6NbQ2MvJbdreGM2xs6bje12RcTQ
Xk7gkjI2zfvheBovpu7LAQ0ev/ctoyA6TYMp3EjHZKy/nwJXGDfnNtVTsN//KKmS
Sx/2SqZtfWa5Nh7MVAC9HzHclFz/JRQEll+/0HOWxOpCbDlslR+jVLxeAMNLeH+Y
1bLeILPpmbbZJ4SjT/VnqP5Hn9GBcxz27SK46D1fD27Pi9kdU9L3ykMSzn9pNwgG
vm+44JfDKp8n7IiFYH+HKOHTAnhPofu4RnXpsCAlF/YOkIvOqBWvogrvoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLj/0nGAYkVpi6CglJNLD4hHgHiaMB8GA1UdIwQY
MBaAFMqBYO/jnxowd/3S+vIqZIBLVBOCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveW9GZzctT2ZHakIzX2RMNjhpcGtnRXRVRTRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9kMjUwMTUtN2QyNC00YWQ1LWEyYzEt
YWM0ZTI4YzJjNWI2LzEveW9GZzctT2ZHakIzX2RMNjhpcGtnRXRVRTRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9kMjUwMTUtN2QyNC00YWQ1LWEyYzEtYWM0ZTI4YzJjNWI2
LzEveW9GZzctT2ZHakIzX2RMNjhpcGtnRXRVRTRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxfIvsA8G
cZgwZiJM+PZIbfDib3nsRx9KPVz7mNwPtPZSibL1LarUNE2X74RFPwzq86AY3L4q
tJLm7xpmqedjvpPmdSUer13O9CbcHT+zNgGrlf62XkRkSRLhNM58cOMHwd6pG5to
GVlptfJBFTKLfXomna7F7uinEx9UyZPf618r0IA5WCK7JwfqdRODHTQYebmgNFc5
q9acOKgK//bn9CTGCL02/ZIerwZt3thfryFI1lwjeTI9zjbWizxbVa1HBQpUjyC4
KbfIYGM25LZb/Bp6PZmIjAF3NOebf+OUCi8PYPittgPa9LKyrS+akxVt4FMD7Ak+
7Hmc2gIscBM2kA==
-----END CERTIFICATE-----
Generated at Mon May 5 06:20:57 2025 by rpki-client