Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
File: yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft (raw, json)
Hash identifier: 5jpNXwLz+NU309QuqBioPTR2SVakS5bjqUNfYAFJlTE=
Subject key identifier: 77:2B:1B:63:8E:4B:27:64:9C:30:23:A5:AC:6B:93:84:0A:A5:E4:72
Authority key identifier: C8:DA:89:FB:15:2D:43:C6:3E:3D:A2:FD:6A:0B:0D:FB:22:A0:65:81
Certificate issuer: /CN=c8da89fb152d43c63e3da2fd6a0b0dfb22a06581
Certificate serial: 01976C2AEC2B8F1ACD68AF7036FEBF3C2566
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
Manifest number: 0D5C
Signing time: Sat 14 Jun 2025 02:00:41 +0000
Manifest this update: Sat 14 Jun 2025 02:00:41 +0000
Manifest next update: Sun 15 Jun 2025 02:00:41 +0000
Files and hashes: 1: yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl (hash: 8wCQAV0M6kbPc8ALiVVP4n+PlCQrPQWa3c9d0+6qUio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:ec:2b:8f:1a:cd:68:af:70:36:fe:bf:3c:25:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8da89fb152d43c63e3da2fd6a0b0dfb22a06581
Validity
Not Before: Jun 14 02:00:41 2025 GMT
Not After : Jun 15 02:00:41 2025 GMT
Subject: CN=772b1b638e4b27649c3023a5ac6b93840aa5e472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2e:5e:6e:28:33:d5:be:ad:e2:ca:b0:f0:02:
2f:ef:ff:be:28:28:d8:bd:63:6c:fd:89:8f:34:95:
6b:a4:20:4f:20:9a:e0:dc:06:6d:7f:ff:88:2e:e1:
9b:92:5f:73:a5:07:fa:59:27:12:4e:9f:3e:83:3f:
02:53:e0:6c:c0:be:08:c9:b7:78:ab:31:92:c9:67:
66:d6:1d:42:42:5e:6e:73:3f:ad:9b:f3:67:a7:71:
41:da:6c:51:ea:ce:91:59:2a:d6:30:99:ee:e3:a3:
26:81:07:42:53:89:20:1a:ef:0d:55:14:eb:2b:70:
d1:17:b1:27:28:46:bd:3a:66:fb:00:cf:e2:39:d6:
1f:a7:29:c8:a8:8b:ba:5d:b8:cd:14:e2:73:1e:a2:
2e:e4:cc:5c:f6:f1:81:aa:4e:8e:05:c9:9b:61:82:
64:0c:5c:7c:48:70:18:97:da:01:31:5d:43:1d:b1:
61:7e:4b:71:e8:08:ab:c5:7a:22:5c:6a:e6:1f:6e:
b2:39:f5:86:b2:94:d6:d2:68:f3:e3:71:8a:b0:79:
df:63:c8:96:9f:fa:6a:d2:dd:b1:5f:b8:45:93:b1:
e1:9f:55:64:d2:e5:8c:55:e5:fe:3d:43:21:c4:01:
4a:9f:25:01:0f:90:f3:01:ba:02:0d:f0:97:cf:b9:
29:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:2B:1B:63:8E:4B:27:64:9C:30:23:A5:AC:6B:93:84:0A:A5:E4:72
X509v3 Authority Key Identifier:
keyid:C8:DA:89:FB:15:2D:43:C6:3E:3D:A2:FD:6A:0B:0D:FB:22:A0:65:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:7e:81:84:a5:bb:41:70:5e:49:1b:10:f2:ae:67:01:8d:d3:
82:f5:79:57:8a:c2:33:62:6f:d7:0d:43:37:8c:8c:67:c0:c1:
8b:cb:4b:ee:ca:99:c3:33:aa:4e:22:51:b2:c8:88:32:1f:93:
ab:3e:1d:29:66:83:ea:db:a9:27:ca:ca:d9:b9:88:87:c0:08:
51:f7:7d:4c:1b:46:e6:f8:a7:00:94:d5:a0:35:5f:08:bf:7e:
84:07:70:16:c6:b2:11:89:e0:3d:5f:6c:eb:2d:a1:83:3f:b8:
65:47:92:14:15:62:c5:7d:45:a0:a3:34:ef:63:2f:23:2f:5a:
f1:70:7a:2d:f4:ec:79:ee:92:9a:07:c3:ed:74:d4:c2:4a:ff:
96:ff:38:33:8a:3c:81:36:cd:dc:2e:90:58:24:cd:ea:e0:c7:
63:0a:3a:fc:24:17:5a:e2:e0:5c:1a:5b:bf:7b:95:d5:3c:9b:
7b:60:b5:cc:70:fb:e1:eb:92:66:bb:f3:0b:08:83:1b:ba:84:
6b:27:ec:81:5e:ff:80:13:ee:16:e9:1a:af:e4:24:03:35:2e:
e7:b1:3a:76:51:6d:3b:a9:6b:ce:c9:78:ae:0a:fe:45:e1:79:
41:60:f6:04:4e:2d:bf:6a:d6:a3:d0:49:82:73:c8:4c:7b:5f:
a3:7b:12:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsKuwrjxrNaK9wNv6/PCVmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4ZGE4OWZiMTUyZDQzYzYzZTNkYTJmZDZhMGIwZGZiMjJh
MDY1ODEwHhcNMjUwNjE0MDIwMDQxWhcNMjUwNjE1MDIwMDQxWjAzMTEwLwYDVQQD
Eyg3NzJiMWI2MzhlNGIyNzY0OWMzMDIzYTVhYzZiOTM4NDBhYTVlNDcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnC5ebigz1b6t4sqw8AIv7/++KCjY
vWNs/YmPNJVrpCBPIJrg3AZtf/+ILuGbkl9zpQf6WScSTp8+gz8CU+BswL4Iybd4
qzGSyWdm1h1CQl5ucz+tm/Nnp3FB2mxR6s6RWSrWMJnu46MmgQdCU4kgGu8NVRTr
K3DRF7EnKEa9Omb7AM/iOdYfpynIqIu6XbjNFOJzHqIu5Mxc9vGBqk6OBcmbYYJk
DFx8SHAYl9oBMV1DHbFhfktx6AirxXoiXGrmH26yOfWGspTW0mjz43GKsHnfY8iW
n/pq0t2xX7hFk7Hhn1Vk0uWMVeX+PUMhxAFKnyUBD5DzAboCDfCXz7kpKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHcrG2OOSydknDAjpaxrk4QKpeRyMB8GA1UdIwQY
MBaAFMjaifsVLUPGPj2i/WoLDfsioGWBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveU5xSi14VXRROFktUGFMOWFnc04teUtnWllFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9iNTUwMDUtMDA1ZC00YTY0LWJlMWEt
ZGQyYjA2MWJkNGYyLzEveU5xSi14VXRROFktUGFMOWFnc04teUtnWllFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9iNTUwMDUtMDA1ZC00YTY0LWJlMWEtZGQyYjA2MWJkNGYy
LzEveU5xSi14VXRROFktUGFMOWFnc04teUtnWllFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd36BhKW7
QXBeSRsQ8q5nAY3TgvV5V4rCM2Jv1w1DN4yMZ8DBi8tL7sqZwzOqTiJRssiIMh+T
qz4dKWaD6tupJ8rK2bmIh8AIUfd9TBtG5vinAJTVoDVfCL9+hAdwFsayEYngPV9s
6y2hgz+4ZUeSFBVixX1FoKM072MvIy9a8XB6LfTsee6SmgfD7XTUwkr/lv84M4o8
gTbN3C6QWCTN6uDHYwo6/CQXWuLgXBpbv3uV1Tybe2C1zHD74euSZrvzCwiDG7qE
ayfsgV7/gBPuFukar+QkAzUu57E6dlFtO6lrzsl4rgr+ReF5QWD2BE4tv2rWo9BJ
gnPITHtfo3sS2w==
-----END CERTIFICATE-----
Generated at Sat Jun 14 11:47:39 2025 by rpki-client