Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
File: lYj7Sw-weytS4w2SGYmPKM-8mi0.mft (raw, json)
Hash identifier: z09A35NgQ8tGQYT+XIZiXOFaJvcfZ+/SMr5W/B/+gP4=
Subject key identifier: 47:EF:E5:90:B0:48:CD:BF:43:77:A8:FA:71:38:0B:41:21:C0:25:37
Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Certificate serial: 01969D50ACDD5A7865E569DE89CD47431C68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
Manifest number: 12A0
Signing time: Sun 04 May 2025 22:00:32 +0000
Manifest this update: Sun 04 May 2025 22:00:32 +0000
Manifest next update: Mon 05 May 2025 22:00:32 +0000
Files and hashes: 1: cpaYv-AQ-t9zhgKKXsvKBzFcSaQ.roa (hash: QH8X2hDISDdQVFPt9W1N705nATkeCHCrQhlKJMRWx8A=)
2: lYj7Sw-weytS4w2SGYmPKM-8mi0.crl (hash: V+5CaYf978zyraWJz5sOc+0FR15MwfU9OOShERjW9IU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:50:ac:dd:5a:78:65:e5:69:de:89:cd:47:43:1c:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Validity
Not Before: May 4 22:00:32 2025 GMT
Not After : May 5 22:00:32 2025 GMT
Subject: CN=47efe590b048cdbf4377a8fa71380b4121c02537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:02:f6:f3:dc:dd:fa:46:68:c0:7e:d6:dd:32:
b6:bf:11:d5:a6:33:e9:b2:63:91:57:86:2f:26:62:
2b:1b:fd:a1:b4:89:ce:d0:0f:81:b3:50:f5:b0:40:
aa:5d:b8:df:b7:82:0d:b7:ee:43:5b:54:4e:da:bb:
ae:7b:34:bf:46:fc:82:7e:78:4c:2f:88:81:56:bf:
05:f4:e3:87:13:14:05:3c:0d:f6:93:a0:a2:55:40:
41:41:75:26:d6:87:fb:c0:03:64:01:48:1b:38:11:
50:ca:7e:af:1a:fb:66:b0:36:2f:a2:42:d8:70:68:
52:9b:9e:62:f4:80:c5:7d:df:a0:c6:89:99:ee:ed:
20:17:97:31:7d:ad:04:7e:7a:ea:7e:7a:64:0d:0d:
40:04:90:dc:07:e9:b3:56:b8:db:ad:70:aa:ba:76:
07:f5:4f:79:c4:8e:2c:4d:b2:8f:91:15:79:1b:be:
3d:47:75:08:71:d4:89:3f:7d:f0:af:86:91:fa:c5:
fb:15:ce:2e:e6:7a:42:56:94:c9:43:83:97:65:7c:
6d:60:5c:69:2e:23:9a:74:25:df:a2:7a:69:d2:0f:
b1:2b:c0:00:ae:29:69:33:36:51:e9:ed:5a:55:aa:
3b:a9:a2:2e:50:ea:c7:7e:ee:af:a3:15:8e:f8:57:
59:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:EF:E5:90:B0:48:CD:BF:43:77:A8:FA:71:38:0B:41:21:C0:25:37
X509v3 Authority Key Identifier:
keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:4d:05:7d:c5:9e:ab:2c:7c:56:d4:c7:bd:6c:5a:83:d5:84:
c7:84:9b:65:0e:96:26:b8:b3:31:b0:56:1f:5e:2f:94:42:44:
20:39:cf:11:6c:6d:05:4a:64:d0:37:a7:eb:8b:e8:6e:9a:55:
e3:33:e6:f3:bd:19:3b:ff:06:00:d1:ac:42:54:2d:8f:d7:25:
83:1f:d4:20:31:7a:b1:6b:39:74:85:ae:b5:0c:bc:73:39:9d:
e5:77:a7:54:78:4e:fc:b3:47:0f:4f:d6:37:9c:e1:f7:55:c7:
0c:42:71:88:4f:9d:39:1c:a5:e0:dd:7f:05:94:88:e8:56:4c:
f9:d9:76:e8:d4:15:28:7d:32:bc:f7:55:81:6c:bf:d6:df:2c:
90:1d:6d:1d:8d:0c:d6:98:5f:33:75:4b:5f:37:42:f8:f7:2d:
2c:0f:36:70:8f:fd:9f:7d:1c:37:58:a9:9a:40:a4:ce:b3:a6:
38:1f:2d:c0:02:a8:39:39:55:e2:8c:bf:2e:5e:57:87:8e:53:
1e:ca:6e:b1:9e:46:8e:31:05:64:35:ab:29:8b:35:33:16:b6:
0c:44:0a:86:78:b2:97:57:1f:00:90:f5:9d:3d:52:09:15:d6:
53:e7:6f:a4:6a:5f:62:b7:58:2f:48:3d:8d:7d:28:3c:7d:9b:
6f:63:b2:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZadUKzdWnhl5Wneic1HQxxoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1ODhmYjRiMGZiMDdiMmI1MmUzMGQ5MjE5ODk4ZjI4Y2Zi
YzlhMmQwHhcNMjUwNTA0MjIwMDMyWhcNMjUwNTA1MjIwMDMyWjAzMTEwLwYDVQQD
Eyg0N2VmZTU5MGIwNDhjZGJmNDM3N2E4ZmE3MTM4MGI0MTIxYzAyNTM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5QL289zd+kZowH7W3TK2vxHVpjPp
smORV4YvJmIrG/2htInO0A+Bs1D1sECqXbjft4INt+5DW1RO2ruuezS/RvyCfnhM
L4iBVr8F9OOHExQFPA32k6CiVUBBQXUm1of7wANkAUgbOBFQyn6vGvtmsDYvokLY
cGhSm55i9IDFfd+gxomZ7u0gF5cxfa0EfnrqfnpkDQ1ABJDcB+mzVrjbrXCqunYH
9U95xI4sTbKPkRV5G749R3UIcdSJP33wr4aR+sX7Fc4u5npCVpTJQ4OXZXxtYFxp
LiOadCXfonpp0g+xK8AArilpMzZR6e1aVao7qaIuUOrHfu6voxWO+FdZdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEfv5ZCwSM2/Q3eo+nE4C0EhwCU3MB8GA1UdIwQY
MBaAFJWI+0sPsHsrUuMNkhmJjyjPvJotMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFlqN1N3LXdleXRTNHcyU0dZbVBLTS04bWkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9mYjg1ZDMtNjY2MC00MzBlLTlhYzct
ODZkMmMzMTFkYjE3LzEvbFlqN1N3LXdleXRTNHcyU0dZbVBLTS04bWkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy9mYjg1ZDMtNjY2MC00MzBlLTlhYzctODZkMmMzMTFkYjE3
LzEvbFlqN1N3LXdleXRTNHcyU0dZbVBLTS04bWkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjk0FfcWe
qyx8VtTHvWxag9WEx4SbZQ6WJrizMbBWH14vlEJEIDnPEWxtBUpk0Den64vobppV
4zPm870ZO/8GANGsQlQtj9clgx/UIDF6sWs5dIWutQy8czmd5XenVHhO/LNHD0/W
N5zh91XHDEJxiE+dORyl4N1/BZSI6FZM+dl26NQVKH0yvPdVgWy/1t8skB1tHY0M
1phfM3VLXzdC+PctLA82cI/9n30cN1ipmkCkzrOmOB8twAKoOTlV4oy/Ll5Xh45T
HspusZ5GjjEFZDWrKYs1Mxa2DEQKhniyl1cfAJD1nT1SCRXWU+dvpGpfYrdYL0g9
jX0oPH2bb2OySQ==
-----END CERTIFICATE-----
Generated at Mon May 5 06:06:25 2025 by rpki-client