Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
File: ypAPHhHi0l0LIxatbgEmhIOayB4.mft (raw, json)
Hash identifier: mtjxfY6PBYe+/Ujd6tv1wXA6tbAZeucuDeJLvghSCLQ=
Subject key identifier: 46:8B:34:6C:72:47:6B:ED:73:B5:EC:33:57:12:45:5B:1D:BD:38:5E
Authority key identifier: CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
Certificate issuer: /CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Certificate serial: 0196AAD519F61E8C0653DF50E7CB9B47AA5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
Manifest number: 152B
Signing time: Wed 07 May 2025 13:00:14 +0000
Manifest this update: Wed 07 May 2025 13:00:14 +0000
Manifest next update: Thu 08 May 2025 13:00:14 +0000
Files and hashes: 1: UvHXXFoVL7W8kRf_CmjRtC48uH4.roa (hash: E8q/i3b6Anio6852XqG98vgAFVWa9Xn560kQh/u0aSY=)
2: ypAPHhHi0l0LIxatbgEmhIOayB4.crl (hash: gHtlUq3uxAjUQCPTl+FL79y99WA//Ava/RtFSCMeVcs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 13:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:aa:d5:19:f6:1e:8c:06:53:df:50:e7:cb:9b:47:aa:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Validity
Not Before: May 7 13:00:14 2025 GMT
Not After : May 8 13:00:14 2025 GMT
Subject: CN=468b346c72476bed73b5ec335712455b1dbd385e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:46:15:52:73:50:4b:e3:66:34:0c:11:2b:b8:
1b:8c:c8:0c:5b:89:c6:4a:fe:b9:da:52:c8:83:fe:
55:41:d3:aa:e1:07:49:de:af:f9:1c:a5:34:0b:e9:
a5:0e:ac:b7:60:08:29:7a:ab:bc:30:e3:1b:0b:50:
f7:75:e5:7e:eb:59:5f:f9:cd:a5:1a:be:af:bd:fe:
dc:3e:83:8c:6f:df:87:2e:07:b3:11:6e:f2:c8:cf:
85:81:b4:b3:96:23:0b:72:73:d3:ac:6f:3f:67:4a:
56:2b:21:27:7c:b7:88:76:a5:f3:a1:64:9d:ad:04:
4a:ee:e4:dc:d4:03:d3:dd:70:74:47:b0:d0:cb:b2:
1c:3e:27:7f:0e:46:d3:f7:68:76:38:a3:2f:0e:20:
cb:ee:32:67:9d:83:84:e6:39:b3:5c:76:e9:be:44:
28:3e:89:83:9d:ff:48:aa:c7:cf:e7:79:2a:b7:18:
68:4a:43:ec:b3:21:06:07:71:93:0a:df:7e:9c:6f:
c7:be:3f:65:ee:56:51:c8:2f:bd:20:48:dc:bc:53:
b2:16:6a:ea:d4:80:4f:20:73:98:0d:c5:f2:2f:51:
a8:f0:19:3e:a6:16:11:74:ed:8f:dd:a3:7d:03:d0:
44:51:0f:66:12:95:a1:b2:74:ce:8c:19:97:c6:dd:
06:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:8B:34:6C:72:47:6B:ED:73:B5:EC:33:57:12:45:5B:1D:BD:38:5E
X509v3 Authority Key Identifier:
keyid:CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:8c:18:13:42:60:ef:3f:b9:75:12:7a:0f:16:d3:9e:ab:34:
6b:ed:ae:5d:2c:8d:c4:0b:4a:da:81:ec:a5:a6:d8:45:34:01:
e5:0a:01:20:b8:ed:36:97:b9:a5:f6:26:8e:49:3c:e6:7c:2c:
aa:9e:f4:0b:6f:5c:16:d2:e7:df:35:5f:54:c3:ac:1a:ac:9d:
b6:b8:da:6c:e6:17:5d:72:54:a6:97:ae:de:60:12:6c:80:c5:
19:52:e7:c5:53:9d:e9:e5:ee:6a:a6:c4:11:34:50:76:87:03:
cb:f0:ef:34:64:fb:d0:23:8b:13:9d:84:3d:16:f0:35:ca:49:
8d:c1:82:c1:92:18:b3:e1:3d:ca:52:00:4c:42:09:a9:b0:b4:
65:b2:b4:01:52:44:95:66:90:f3:22:b3:ad:cf:c3:6f:2b:62:
f4:1a:2a:67:0c:9d:99:b7:8d:47:2c:31:f6:cb:2b:cc:4d:7c:
dd:f3:8e:56:6c:d2:9c:68:fe:e9:19:5e:5c:cd:8e:05:d8:b9:
be:c3:12:e4:c6:d5:3e:09:c2:3a:55:13:f9:5c:6e:07:a9:cd:
b4:dd:e0:2e:79:9b:ef:c4:12:96:a0:60:9c:a6:72:24:f9:22:
83:9f:27:65:0a:af:0d:28:5f:b6:28:4e:c2:f6:29:1d:22:55:
1f:09:0a:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaq1Rn2HowGU99Q58ubR6pcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhOTAwZjFlMTFlMmQyNWQwYjIzMTZhZDZlMDEyNjg0ODM5
YWM4MWUwHhcNMjUwNTA3MTMwMDE0WhcNMjUwNTA4MTMwMDE0WjAzMTEwLwYDVQQD
Eyg0NjhiMzQ2YzcyNDc2YmVkNzNiNWVjMzM1NzEyNDU1YjFkYmQzODVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApEYVUnNQS+NmNAwRK7gbjMgMW4nG
Sv652lLIg/5VQdOq4QdJ3q/5HKU0C+mlDqy3YAgpequ8MOMbC1D3deV+61lf+c2l
Gr6vvf7cPoOMb9+HLgezEW7yyM+FgbSzliMLcnPTrG8/Z0pWKyEnfLeIdqXzoWSd
rQRK7uTc1APT3XB0R7DQy7IcPid/DkbT92h2OKMvDiDL7jJnnYOE5jmzXHbpvkQo
PomDnf9IqsfP53kqtxhoSkPssyEGB3GTCt9+nG/Hvj9l7lZRyC+9IEjcvFOyFmrq
1IBPIHOYDcXyL1Go8Bk+phYRdO2P3aN9A9BEUQ9mEpWhsnTOjBmXxt0G2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEaLNGxyR2vtc7XsM1cSRVsdvTheMB8GA1UdIwQY
MBaAFMqQDx4R4tJdCyMWrW4BJoSDmsgeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXBBUEhoSGkwbDBMSXhhdGJnRW1oSU9heUI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9mNjk2OWMtM2E2ZS00YmVjLTk3NDIt
ZWNlODdjNmEwMzE4LzEveXBBUEhoSGkwbDBMSXhhdGJnRW1oSU9heUI0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS9mNjk2OWMtM2E2ZS00YmVjLTk3NDItZWNlODdjNmEwMzE4
LzEveXBBUEhoSGkwbDBMSXhhdGJnRW1oSU9heUI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ4wYE0Jg
7z+5dRJ6DxbTnqs0a+2uXSyNxAtK2oHspabYRTQB5QoBILjtNpe5pfYmjkk85nws
qp70C29cFtLn3zVfVMOsGqydtrjabOYXXXJUppeu3mASbIDFGVLnxVOd6eXuaqbE
ETRQdocDy/DvNGT70COLE52EPRbwNcpJjcGCwZIYs+E9ylIATEIJqbC0ZbK0AVJE
lWaQ8yKzrc/Dbyti9BoqZwydmbeNRywx9ssrzE183fOOVmzSnGj+6RleXM2OBdi5
vsMS5MbVPgnCOlUT+VxuB6nNtN3gLnmb78QSlqBgnKZyJPkig58nZQqvDShftihO
wvYpHSJVHwkKHA==
-----END CERTIFICATE-----
Generated at Wed May 7 16:38:42 2025 by rpki-client