Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
File: y34FPHGZWsyb8TM_55w9W_1ulk4.mft (raw, json)
Hash identifier: Sb9A9OigUphXt9yJmIDuchNbCb/e5g0YqPH0eGVZlDM=
Subject key identifier: 9B:A5:64:30:CC:04:B8:CE:2E:B9:77:D7:7C:18:23:AA:87:29:A9:3E
Authority key identifier: CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
Certificate issuer: /CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Certificate serial: 019770754059C4098EE113593CAC9FCA2945
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
Manifest number: 0BFF
Signing time: Sat 14 Jun 2025 22:00:21 +0000
Manifest this update: Sat 14 Jun 2025 22:00:21 +0000
Manifest next update: Sun 15 Jun 2025 22:00:21 +0000
Files and hashes: 1: OY3T_xG0jFJ_6yc5NmhmVJsNZOM.roa (hash: af8mlEBnTxkbr73XYFoiiYy6suBahBU1dHobCDHfy/U=)
2: y34FPHGZWsyb8TM_55w9W_1ulk4.crl (hash: oK4v0cp3lT3Y+7c41aBDXmpApdgYdjw1rsjKiYysWyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:75:40:59:c4:09:8e:e1:13:59:3c:ac:9f:ca:29:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Validity
Not Before: Jun 14 22:00:21 2025 GMT
Not After : Jun 15 22:00:21 2025 GMT
Subject: CN=9ba56430cc04b8ce2eb977d77c1823aa8729a93e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3f:53:44:80:d9:01:f9:d7:28:3b:57:7d:52:
3a:85:4c:91:d1:4c:f5:95:fb:16:ff:e9:84:c2:1a:
10:bb:42:04:56:ce:6b:8b:ff:29:2c:64:fa:cb:7d:
53:46:5d:29:39:57:0a:52:76:d0:45:de:77:c0:6c:
a9:0a:fb:47:f0:75:4e:be:06:4d:6e:6c:c2:bc:c1:
26:01:93:27:c4:c4:6a:33:47:56:e9:c2:3b:75:fe:
b9:05:05:69:55:41:b9:14:a7:22:47:63:66:0b:18:
4b:b9:b8:6f:09:3e:fa:1b:52:3b:db:06:12:c6:f1:
37:fb:52:cd:6e:e0:cd:ce:3c:82:54:6e:6b:0e:f8:
8c:83:e0:b1:a9:05:f5:1d:46:c9:2b:69:85:4b:28:
97:f1:41:d8:06:18:aa:28:72:28:a8:9c:c6:d6:5f:
e3:94:88:47:15:df:bf:31:e4:52:9c:1e:e6:ae:b1:
1f:2e:79:e1:d5:79:d7:06:11:4a:26:8e:0d:c5:5b:
68:7c:02:3c:51:b5:ef:68:7c:c1:1b:4f:e7:24:f1:
6b:72:66:74:44:d9:4f:91:c5:ad:80:03:4e:e0:55:
04:f3:c1:14:2b:29:70:92:b6:cf:d0:fc:30:b4:bc:
98:ff:a6:c2:0c:b6:34:df:86:ff:4e:3a:89:1e:2b:
89:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:A5:64:30:CC:04:B8:CE:2E:B9:77:D7:7C:18:23:AA:87:29:A9:3E
X509v3 Authority Key Identifier:
keyid:CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:11:bf:6b:19:e4:e0:1f:99:c8:52:02:f9:dd:9d:25:66:e3:
92:4c:7b:29:71:68:85:0f:5d:cf:2d:83:c7:30:55:3a:b7:de:
0e:e3:e6:e8:d1:f7:65:d3:2a:10:d3:64:34:95:93:c6:2b:29:
1c:62:41:6a:7e:6b:14:91:26:be:09:39:74:e2:3a:ea:22:35:
56:60:db:a8:1b:6d:8c:12:ef:15:98:62:82:fd:c5:eb:bb:e0:
8f:f6:d2:70:b1:3a:b0:dc:b1:77:0f:af:77:33:52:34:4f:7e:
08:34:4c:ba:5f:25:cc:54:c4:07:a1:aa:95:96:56:69:17:67:
af:02:80:fd:ca:7d:95:37:29:0d:ca:eb:a7:29:72:10:b1:88:
29:b0:b0:59:de:26:b1:e2:f3:75:95:44:df:29:7a:d5:a2:8b:
a3:8f:d5:24:7d:a5:f9:01:5b:a3:a2:e0:ce:08:d5:34:56:d2:
a0:fe:ff:d7:a4:47:98:15:ba:4d:d3:32:c6:0c:06:82:33:7a:
e7:7e:96:c1:5d:5a:87:27:9f:70:63:53:bd:0d:f4:e8:38:5c:
d2:7e:d1:df:5f:cb:16:a2:8c:f0:da:61:97:df:30:02:1c:84:
4a:d2:c3:e1:a7:50:bf:5c:21:e4:8e:1f:7c:90:ec:4c:5b:be:
96:f9:f4:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdwdUBZxAmO4RNZPKyfyilFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiN2UwNTNjNzE5OTVhY2M5YmYxMzMzZmU3OWMzZDViZmQ2
ZTk2NGUwHhcNMjUwNjE0MjIwMDIxWhcNMjUwNjE1MjIwMDIxWjAzMTEwLwYDVQQD
Eyg5YmE1NjQzMGNjMDRiOGNlMmViOTc3ZDc3YzE4MjNhYTg3MjlhOTNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2T9TRIDZAfnXKDtXfVI6hUyR0Uz1
lfsW/+mEwhoQu0IEVs5ri/8pLGT6y31TRl0pOVcKUnbQRd53wGypCvtH8HVOvgZN
bmzCvMEmAZMnxMRqM0dW6cI7df65BQVpVUG5FKciR2NmCxhLubhvCT76G1I72wYS
xvE3+1LNbuDNzjyCVG5rDviMg+CxqQX1HUbJK2mFSyiX8UHYBhiqKHIoqJzG1l/j
lIhHFd+/MeRSnB7mrrEfLnnh1XnXBhFKJo4NxVtofAI8UbXvaHzBG0/nJPFrcmZ0
RNlPkcWtgANO4FUE88EUKylwkrbP0PwwtLyY/6bCDLY034b/TjqJHiuJPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJulZDDMBLjOLrl313wYI6qHKak+MB8GA1UdIwQY
MBaAFMt+BTxxmVrMm/EzP+ecPVv9bpZOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTM0RlBIR1pXc3liOFRNXzU1dzlXXzF1bGs0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS83OGFhZDEtZDYxZi00MTZlLWFmNGMt
OTM2MzdkNDE2OGJkLzEveTM0RlBIR1pXc3liOFRNXzU1dzlXXzF1bGs0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS83OGFhZDEtZDYxZi00MTZlLWFmNGMtOTM2MzdkNDE2OGJk
LzEveTM0RlBIR1pXc3liOFRNXzU1dzlXXzF1bGs0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALxG/axnk
4B+ZyFIC+d2dJWbjkkx7KXFohQ9dzy2DxzBVOrfeDuPm6NH3ZdMqENNkNJWTxisp
HGJBan5rFJEmvgk5dOI66iI1VmDbqBttjBLvFZhigv3F67vgj/bScLE6sNyxdw+v
dzNSNE9+CDRMul8lzFTEB6GqlZZWaRdnrwKA/cp9lTcpDcrrpylyELGIKbCwWd4m
seLzdZVE3yl61aKLo4/VJH2l+QFbo6LgzgjVNFbSoP7/16RHmBW6TdMyxgwGgjN6
536WwV1ahyefcGNTvQ306Dhc0n7R31/LFqKM8Nphl98wAhyEStLD4adQv1wh5I4f
fJDsTFu+lvn0gg==
-----END CERTIFICATE-----
Generated at Sun Jun 15 03:07:36 2025 by rpki-client