Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
File: yd_q7KItLSYYtDPPAKsUS9i4Db0.mft (raw, json)
Hash identifier: NTNuSdVIlgbRQIPOpl3sCZVQVsT77+e/RzdxLShBbz8=
Subject key identifier: 61:73:47:1D:EF:D5:27:7A:BF:A6:42:90:0D:CF:EF:C4:71:AB:EC:03
Authority key identifier: C9:DF:EA:EC:A2:2D:2D:26:18:B4:33:CF:00:AB:14:4B:D8:B8:0D:BD
Certificate issuer: /CN=c9dfeaeca22d2d2618b433cf00ab144bd8b80dbd
Certificate serial: 0196A8E71EAAF13BF795B7D3D015A6F37132
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
Manifest number: 065D
Signing time: Wed 07 May 2025 04:00:40 +0000
Manifest this update: Wed 07 May 2025 04:00:40 +0000
Manifest next update: Thu 08 May 2025 04:00:40 +0000
Files and hashes: 1: YSlfWP3DY80Smx0TIqkuPzTOoec.roa (hash: zxri6NDPBUgI6E9l7vT1svBXNo7QAt30+iiVihETiFE=)
2: yd_q7KItLSYYtDPPAKsUS9i4Db0.crl (hash: Uu0+L7H+qptWbgTVV/R3tVAohkZLOk4Fax2MVuOSNtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a8:e7:1e:aa:f1:3b:f7:95:b7:d3:d0:15:a6:f3:71:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9dfeaeca22d2d2618b433cf00ab144bd8b80dbd
Validity
Not Before: May 7 04:00:40 2025 GMT
Not After : May 8 04:00:40 2025 GMT
Subject: CN=6173471defd5277abfa642900dcfefc471abec03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:58:73:2e:70:49:be:fa:9f:fb:4c:8f:56:38:
a9:dc:cd:d9:8d:fb:56:08:21:f7:9e:d2:64:8c:37:
28:80:b0:2d:f0:c2:00:d0:38:41:7f:be:49:e2:60:
83:04:42:c5:26:da:b3:93:04:68:55:77:cd:5e:fa:
bc:80:08:4d:be:86:01:f7:fa:75:85:c4:80:31:7f:
5c:63:a5:99:0f:54:c8:10:d8:14:a7:ae:e7:57:ed:
00:7f:4e:51:32:03:7f:a5:ec:1f:e3:8c:65:c1:4e:
d9:13:71:d0:82:ca:d3:94:cb:1e:c4:87:a9:02:01:
67:0d:bf:0d:ac:22:09:a9:99:ca:3f:23:05:83:de:
ae:c8:3f:5a:05:74:d1:3f:d2:27:46:1a:56:f7:3b:
75:d1:d1:03:50:fa:38:54:11:3d:51:8f:9c:f2:da:
8b:c3:c4:bb:5f:88:1c:24:fc:cc:43:22:87:c2:8c:
3a:b8:ed:d6:c0:a8:76:06:52:9b:ae:d2:7b:fb:1f:
fe:00:cc:e4:c5:ec:a5:0d:e4:88:fe:a1:80:23:9e:
cc:30:f0:62:4c:60:5f:9c:4c:75:20:7b:1d:b5:be:
e0:37:38:95:b6:2f:31:15:e8:fd:22:56:08:f3:9d:
d3:da:ce:1c:34:ed:64:57:b8:48:ee:97:83:33:79:
b0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:73:47:1D:EF:D5:27:7A:BF:A6:42:90:0D:CF:EF:C4:71:AB:EC:03
X509v3 Authority Key Identifier:
keyid:C9:DF:EA:EC:A2:2D:2D:26:18:B4:33:CF:00:AB:14:4B:D8:B8:0D:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:f7:c2:b4:26:9d:30:9e:7d:c0:e5:8f:0c:df:be:2b:25:1f:
15:7c:18:42:9f:37:c6:d4:aa:9a:ea:b6:c0:18:7a:98:ea:7c:
f3:b5:f7:40:99:b0:d8:8c:1d:0f:12:82:d1:c8:4e:6f:1c:86:
8d:0e:7b:65:a3:ae:c6:e5:c6:8a:f1:cb:0f:0a:9d:62:5e:bf:
37:7c:e1:80:47:0c:fb:30:03:db:a3:84:86:d4:35:d8:da:bc:
25:2a:49:36:f5:48:9f:1b:bf:ac:a3:ab:fc:77:b1:98:5e:2f:
d8:e8:54:6c:97:6d:13:1b:c2:73:41:dd:91:33:ff:c3:7a:2f:
e2:3d:5e:0a:10:94:77:8a:82:d5:75:ab:55:a4:4c:da:92:cb:
ac:3f:ea:15:46:dd:98:d6:f6:7e:7d:16:84:42:f8:29:39:10:
b6:e8:01:f2:c2:21:f8:2b:7a:21:16:d5:6f:cd:fb:ac:73:e3:
64:f8:46:57:5e:33:ab:18:ca:e3:5b:f2:34:52:1a:32:91:36:
2a:62:3d:1f:8e:0d:b6:27:90:c9:7d:23:71:f7:51:1b:60:c3:
44:fd:1d:2a:2e:3d:f0:3d:3f:51:35:31:97:ed:f8:7d:e3:36:
26:34:96:2b:88:79:49:b9:f0:1e:e5:4f:ef:b7:57:62:2d:75:
80:96:68:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZao5x6q8Tv3lbfT0BWm83EyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZGZlYWVjYTIyZDJkMjYxOGI0MzNjZjAwYWIxNDRiZDhi
ODBkYmQwHhcNMjUwNTA3MDQwMDQwWhcNMjUwNTA4MDQwMDQwWjAzMTEwLwYDVQQD
Eyg2MTczNDcxZGVmZDUyNzdhYmZhNjQyOTAwZGNmZWZjNDcxYWJlYzAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnVhzLnBJvvqf+0yPVjip3M3ZjftW
CCH3ntJkjDcogLAt8MIA0DhBf75J4mCDBELFJtqzkwRoVXfNXvq8gAhNvoYB9/p1
hcSAMX9cY6WZD1TIENgUp67nV+0Af05RMgN/pewf44xlwU7ZE3HQgsrTlMsexIep
AgFnDb8NrCIJqZnKPyMFg96uyD9aBXTRP9InRhpW9zt10dEDUPo4VBE9UY+c8tqL
w8S7X4gcJPzMQyKHwow6uO3WwKh2BlKbrtJ7+x/+AMzkxeylDeSI/qGAI57MMPBi
TGBfnEx1IHsdtb7gNziVti8xFej9IlYI853T2s4cNO1kV7hI7peDM3mwdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGFzRx3v1Sd6v6ZCkA3P78Rxq+wDMB8GA1UdIwQY
MBaAFMnf6uyiLS0mGLQzzwCrFEvYuA29MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRfcTdLSXRMU1lZdERQUEFLc1VTOWk0RGIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi85NTdiMTUtZDVkYy00M2U1LTgwOWMt
YmMzNjJkMzc2OGJkLzEveWRfcTdLSXRMU1lZdERQUEFLc1VTOWk0RGIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi85NTdiMTUtZDVkYy00M2U1LTgwOWMtYmMzNjJkMzc2OGJk
LzEveWRfcTdLSXRMU1lZdERQUEFLc1VTOWk0RGIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhffCtCad
MJ59wOWPDN++KyUfFXwYQp83xtSqmuq2wBh6mOp887X3QJmw2IwdDxKC0chObxyG
jQ57ZaOuxuXGivHLDwqdYl6/N3zhgEcM+zAD26OEhtQ12Nq8JSpJNvVInxu/rKOr
/HexmF4v2OhUbJdtExvCc0HdkTP/w3ov4j1eChCUd4qC1XWrVaRM2pLLrD/qFUbd
mNb2fn0WhEL4KTkQtugB8sIh+Ct6IRbVb837rHPjZPhGV14zqxjK41vyNFIaMpE2
KmI9H44NtieQyX0jcfdRG2DDRP0dKi498D0/UTUxl+34feM2JjSWK4h5SbnwHuVP
77dXYi11gJZoFg==
-----END CERTIFICATE-----
Generated at Wed May 7 12:10:41 2025 by rpki-client