Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
File: YDM81vG1nAtoLh2jiSN-2j6dqRg.mft (raw, json)
Hash identifier: v5qppMa+xFnlboLNmiNDrb+qnPRUPMUlFcL05Wo8B0A=
Subject key identifier: DD:75:F4:F3:63:E0:6D:A5:80:E5:F5:AC:12:6B:A2:D4:4C:EB:73:F1
Authority key identifier: 60:33:3C:D6:F1:B5:9C:0B:68:2E:1D:A3:89:23:7E:DA:3E:9D:A9:18
Certificate issuer: /CN=60333cd6f1b59c0b682e1da389237eda3e9da918
Certificate serial: 01976F2CB5252C77B54EAA07789D4071B344
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
Manifest number: 0C72
Signing time: Sat 14 Jun 2025 16:01:30 +0000
Manifest this update: Sat 14 Jun 2025 16:01:30 +0000
Manifest next update: Sun 15 Jun 2025 16:01:30 +0000
Files and hashes: 1: YDM81vG1nAtoLh2jiSN-2j6dqRg.crl (hash: 7LRzaUyPPdbhlushXZxVmiXZVPrjQ6tfdHd5VVdqA+M=)
2: YvGTICIQPtclpMrYwq9cvhdFKOI.roa (hash: VRRExLjeFp73/0IARjKER20GFoe2YDaIzWUGvE6p51I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 16:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2c:b5:25:2c:77:b5:4e:aa:07:78:9d:40:71:b3:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60333cd6f1b59c0b682e1da389237eda3e9da918
Validity
Not Before: Jun 14 16:01:30 2025 GMT
Not After : Jun 15 16:01:30 2025 GMT
Subject: CN=dd75f4f363e06da580e5f5ac126ba2d44ceb73f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:43:e9:f8:b0:f6:aa:5d:0d:57:e1:03:67:b0:
e3:66:93:8b:70:62:e2:b4:f8:04:9d:f8:d3:5d:13:
6b:b6:26:d2:6d:6f:d7:5d:cb:e7:ff:14:ee:12:21:
df:07:27:4d:f2:57:fe:4d:c8:8d:bc:25:18:17:9d:
4c:c7:95:23:c5:05:b4:2b:09:e9:8d:c6:8f:fe:94:
97:42:db:fc:82:0e:0b:74:c3:22:df:4e:e7:63:88:
ac:0d:8a:9e:a0:08:32:ba:15:85:8f:64:38:25:2f:
2f:c2:64:50:4e:c1:a0:41:05:fd:6d:69:57:26:50:
df:5d:8a:18:2c:e5:68:99:4b:60:bf:21:17:d5:b8:
92:1c:c5:f1:66:a0:c0:80:bf:70:12:52:a4:31:7c:
ac:3e:08:64:57:81:25:09:21:60:c5:15:bc:e1:d5:
4e:55:0d:7a:e1:3b:24:8d:c0:54:c2:fd:1e:ae:d5:
43:41:c2:53:22:90:b2:92:fd:c2:d8:fb:b6:61:56:
d3:a7:c7:fa:7c:b6:78:85:68:a5:cc:f5:09:07:a3:
52:a0:7f:57:1a:79:90:3d:1f:ec:b8:dc:5a:50:fd:
4f:30:e9:dd:05:63:b9:02:d0:f3:89:0c:fc:17:4b:
77:31:42:a8:ab:36:45:b3:8f:73:49:a8:df:df:46:
74:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:75:F4:F3:63:E0:6D:A5:80:E5:F5:AC:12:6B:A2:D4:4C:EB:73:F1
X509v3 Authority Key Identifier:
keyid:60:33:3C:D6:F1:B5:9C:0B:68:2E:1D:A3:89:23:7E:DA:3E:9D:A9:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:8a:0b:36:56:cd:7c:0f:1e:f3:cc:bf:18:28:fd:32:16:01:
a5:89:d9:4f:5b:01:7f:39:c0:a7:c2:07:9d:92:65:db:d6:5a:
18:af:bb:b1:07:f4:a3:7d:11:1c:e0:3b:ae:ee:86:6d:91:98:
b0:01:79:80:0b:d2:ca:6f:07:5d:98:ea:44:b2:3a:dd:51:b7:
53:e3:2a:b0:56:21:99:88:cf:17:0a:9f:58:c7:ce:e8:1c:92:
a6:41:43:28:17:e6:12:94:3b:85:bb:02:e2:e8:d7:24:99:5e:
02:20:06:cf:f3:8e:74:93:31:a0:8a:f4:3a:42:1f:d9:82:8b:
82:30:6c:5e:69:9f:f7:37:4d:92:42:7f:fb:3a:0c:51:49:7b:
cd:80:64:a9:ae:95:b9:45:84:90:e3:ce:9c:84:bf:04:32:87:
82:2a:76:4a:86:ac:db:1c:3b:4b:d7:65:24:24:ea:92:78:2a:
fa:01:b5:28:bd:1e:7f:a9:be:21:eb:8f:b2:6e:4f:f9:fc:8b:
e6:89:69:b2:ce:2e:55:71:d5:98:05:13:84:d4:73:4a:39:68:
a7:79:a3:b9:df:33:fe:21:47:37:39:a0:c6:1d:9a:89:a9:03:
8c:c6:68:67:e2:cc:a3:3d:06:55:09:28:cc:e4:49:43:18:00:
cf:54:7b:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdvLLUlLHe1TqoHeJ1AcbNEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwMzMzY2Q2ZjFiNTljMGI2ODJlMWRhMzg5MjM3ZWRhM2U5
ZGE5MTgwHhcNMjUwNjE0MTYwMTMwWhcNMjUwNjE1MTYwMTMwWjAzMTEwLwYDVQQD
EyhkZDc1ZjRmMzYzZTA2ZGE1ODBlNWY1YWMxMjZiYTJkNDRjZWI3M2YxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA00Pp+LD2ql0NV+EDZ7DjZpOLcGLi
tPgEnfjTXRNrtibSbW/XXcvn/xTuEiHfBydN8lf+TciNvCUYF51Mx5UjxQW0Kwnp
jcaP/pSXQtv8gg4LdMMi307nY4isDYqeoAgyuhWFj2Q4JS8vwmRQTsGgQQX9bWlX
JlDfXYoYLOVomUtgvyEX1biSHMXxZqDAgL9wElKkMXysPghkV4ElCSFgxRW84dVO
VQ164TskjcBUwv0ertVDQcJTIpCykv3C2Pu2YVbTp8f6fLZ4hWilzPUJB6NSoH9X
GnmQPR/suNxaUP1PMOndBWO5AtDziQz8F0t3MUKoqzZFs49zSajf30Z0/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN119PNj4G2lgOX1rBJrotRM63PxMB8GA1UdIwQY
MBaAFGAzPNbxtZwLaC4do4kjfto+nakYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWURNODF2RzFuQXRvTGgyamlTTi0yajZkcVJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC80MjIyYjItYzc5Yy00ZDVlLTk5ZDct
Y2RiMjgxYTJiM2E4LzEvWURNODF2RzFuQXRvTGgyamlTTi0yajZkcVJnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC80MjIyYjItYzc5Yy00ZDVlLTk5ZDctY2RiMjgxYTJiM2E4
LzEvWURNODF2RzFuQXRvTGgyamlTTi0yajZkcVJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVIoLNlbN
fA8e88y/GCj9MhYBpYnZT1sBfznAp8IHnZJl29ZaGK+7sQf0o30RHOA7ru6GbZGY
sAF5gAvSym8HXZjqRLI63VG3U+MqsFYhmYjPFwqfWMfO6BySpkFDKBfmEpQ7hbsC
4ujXJJleAiAGz/OOdJMxoIr0OkIf2YKLgjBsXmmf9zdNkkJ/+zoMUUl7zYBkqa6V
uUWEkOPOnIS/BDKHgip2Soas2xw7S9dlJCTqkngq+gG1KL0ef6m+IeuPsm5P+fyL
5olpss4uVXHVmAUThNRzSjlop3mjud8z/iFHNzmgxh2aiakDjMZoZ+LMoz0GVQko
zORJQxgAz1R7Lw==
-----END CERTIFICATE-----
Generated at Sat Jun 14 23:43:13 2025 by rpki-client