Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
File: ym3NrZkpBFbG18GOscBY2UEIiAE.mft (raw, json)
Hash identifier: d1v1YaYnQ+ocDKg0ZkHdJ/v4V0HQSknGFamFUD68u6s=
Subject key identifier: 42:CD:D8:B3:D1:85:19:BB:58:C5:8B:86:07:37:C3:34:DE:99:43:52
Authority key identifier: CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
Certificate issuer: /CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Certificate serial: 019888B22428E76E8A7DE9EB73A4299F7814
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
Manifest number: 15C4
Signing time: Fri 08 Aug 2025 08:00:32 +0000
Manifest this update: Fri 08 Aug 2025 08:00:32 +0000
Manifest next update: Sat 09 Aug 2025 08:00:32 +0000
Files and hashes: 1: Vm2xySa3TZzRcufAzxt4hRBLNss.roa (hash: O5+b4nw4CSapOt9ANvlpqmvnfoL7HE4era1klJG6PPo=)
2: ym3NrZkpBFbG18GOscBY2UEIiAE.crl (hash: byUmuNP5INT4czx84pm41V0V/gZbzHb64n2UAGzgEGA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 08:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:88:b2:24:28:e7:6e:8a:7d:e9:eb:73:a4:29:9f:78:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Validity
Not Before: Aug 8 08:00:32 2025 GMT
Not After : Aug 9 08:00:32 2025 GMT
Subject: CN=42cdd8b3d18519bb58c58b860737c334de994352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2c:86:54:f2:ec:42:85:e6:c1:26:af:0c:f7:
44:7b:16:2c:d8:91:ed:3d:43:00:ac:56:d7:81:15:
4c:b6:48:ea:06:2a:45:84:00:ab:66:53:70:68:1d:
77:d8:c1:5a:d4:de:1c:ba:fc:6b:61:66:8b:34:d7:
a9:cb:90:56:7a:9a:30:87:bb:42:0f:bd:45:69:4e:
62:bf:fc:e6:4a:14:74:e3:58:92:42:a6:70:68:2e:
e0:ea:86:d3:70:1a:43:39:05:9c:b6:55:cd:c9:b1:
66:aa:72:b4:be:2a:1f:af:ee:05:27:13:9e:94:f7:
52:88:37:c7:62:a7:b9:9b:40:62:26:5a:94:4a:6c:
4a:1b:6d:b5:81:15:1a:07:2d:fd:eb:7e:62:62:8d:
fb:fd:96:90:a3:03:28:77:dc:8b:39:33:06:1a:3c:
c1:01:9a:24:18:8b:68:53:f5:fa:27:88:3a:7e:54:
cd:6a:77:45:cf:d3:d1:ca:6c:39:14:1b:ff:92:c6:
31:33:d3:a4:c4:8a:3a:19:86:de:e9:0a:2e:ec:75:
4c:23:9b:d2:4a:dc:eb:82:3a:b7:75:48:bb:e3:19:
f7:71:67:c1:93:db:8b:67:81:bd:20:75:77:23:31:
fe:b5:d8:6a:eb:bc:07:d7:ce:18:a4:77:e9:2b:6e:
54:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:CD:D8:B3:D1:85:19:BB:58:C5:8B:86:07:37:C3:34:DE:99:43:52
X509v3 Authority Key Identifier:
keyid:CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:b9:42:7f:40:8b:91:f4:32:80:a1:a3:27:ca:48:8c:d8:c9:
df:c9:a5:0c:91:91:04:ba:f9:b4:ae:c5:28:6e:07:1e:41:36:
3a:d1:77:cc:97:59:df:71:7f:37:79:fe:2d:c0:b7:08:7c:89:
5d:9a:4a:c2:33:d7:52:78:c0:31:f1:da:d0:ff:58:31:88:6a:
6e:77:e4:66:ea:3d:6c:a1:8d:44:86:bf:71:6d:b0:43:1a:2e:
c5:0d:72:03:19:6a:17:a7:38:19:3c:7c:97:c3:53:7e:0f:9a:
05:c3:8b:fc:e1:1f:97:01:67:8a:73:37:1d:49:52:06:ae:61:
73:77:e9:ec:b3:5d:f1:28:08:1d:f3:12:3f:e9:e3:ca:79:e2:
d6:b8:9a:b0:6a:88:e0:c5:62:61:cc:57:7e:14:6d:c8:c6:89:
f8:b7:ae:cc:a8:c6:99:8d:5c:f4:88:9a:a3:3d:4d:bf:23:19:
2c:f5:c0:ef:d5:b7:cc:fe:0b:fa:cf:1a:3b:8c:bf:d8:d4:30:
38:6b:1c:a7:f5:d9:72:0c:d2:90:05:02:bb:75:f2:4d:3a:c3:
be:98:13:e6:bc:7c:a0:e4:c6:a0:38:03:c8:8e:d6:fd:80:72:
e7:66:6c:e6:e4:e9:e9:7c:62:5c:52:9a:bd:20:b1:5b:67:f7:
43:f1:ce:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiIsiQo526Kfenrc6Qpn3gUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNmRjZGFkOTkyOTA0NTZjNmQ3YzE4ZWIxYzA1OGQ5NDEw
ODg4MDEwHhcNMjUwODA4MDgwMDMyWhcNMjUwODA5MDgwMDMyWjAzMTEwLwYDVQQD
Eyg0MmNkZDhiM2QxODUxOWJiNThjNThiODYwNzM3YzMzNGRlOTk0MzUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCyGVPLsQoXmwSavDPdEexYs2JHt
PUMArFbXgRVMtkjqBipFhACrZlNwaB132MFa1N4cuvxrYWaLNNepy5BWepowh7tC
D71FaU5iv/zmShR041iSQqZwaC7g6obTcBpDOQWctlXNybFmqnK0viofr+4FJxOe
lPdSiDfHYqe5m0BiJlqUSmxKG221gRUaBy39635iYo37/ZaQowMod9yLOTMGGjzB
AZokGItoU/X6J4g6flTNandFz9PRymw5FBv/ksYxM9OkxIo6GYbe6Qou7HVMI5vS
Stzrgjq3dUi74xn3cWfBk9uLZ4G9IHV3IzH+tdhq67wH184YpHfpK25UvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFELN2LPRhRm7WMWLhgc3wzTemUNSMB8GA1UdIwQY
MBaAFMptza2ZKQRWxtfBjrHAWNlBCIgBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi83Njc1OWUtMzk2NC00YzRmLTg3NmIt
YmM0NzVkMDA4ODY5LzEveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi83Njc1OWUtMzk2NC00YzRmLTg3NmItYmM0NzVkMDA4ODY5
LzEveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiblCf0CL
kfQygKGjJ8pIjNjJ38mlDJGRBLr5tK7FKG4HHkE2OtF3zJdZ33F/N3n+LcC3CHyJ
XZpKwjPXUnjAMfHa0P9YMYhqbnfkZuo9bKGNRIa/cW2wQxouxQ1yAxlqF6c4GTx8
l8NTfg+aBcOL/OEflwFninM3HUlSBq5hc3fp7LNd8SgIHfMSP+njynni1riasGqI
4MViYcxXfhRtyMaJ+LeuzKjGmY1c9Iiaoz1NvyMZLPXA79W3zP4L+s8aO4y/2NQw
OGscp/XZcgzSkAUCu3XyTTrDvpgT5rx8oOTGoDgDyI7W/YBy52Zs5uTp6XxiXFKa
vSCxW2f3Q/HOeA==
-----END CERTIFICATE-----
Generated at Fri Aug 8 13:05:36 2025 by rpki-client