Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.mft
File: YmFlv7I92h-YcLJBf0lkhebAinQ.mft (raw, json)
Hash identifier: KlsXAVgsJJvetr6eI7YKLJkXXz80YzCqwKeS66TonT0=
Subject key identifier: B8:8B:01:60:59:75:BA:C9:D2:53:4F:6E:3E:1C:0D:CF:29:8E:31:94
Authority key identifier: 62:61:65:BF:B2:3D:DA:1F:98:70:B2:41:7F:49:64:85:E6:C0:8A:74
Certificate issuer: /CN=626165bfb23dda1f9870b2417f496485e6c08a74
Certificate serial: 01976F9A0318DD433CBBF4E1EAB899EB43AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YmFlv7I92h-YcLJBf0lkhebAinQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.mft
Manifest number: 031E
Signing time: Sat 14 Jun 2025 18:00:53 +0000
Manifest this update: Sat 14 Jun 2025 18:00:53 +0000
Manifest next update: Sun 15 Jun 2025 18:00:53 +0000
Files and hashes: 1: YmFlv7I92h-YcLJBf0lkhebAinQ.crl (hash: jG8doZG5HnzJaV4LxZh0YtesbYMZ1xLE1Y602EAKCiU=)
2: sqHnWw_DTKSgc5zNQG4iPku5PBw.roa (hash: w6R1JeMOp3KdC2WjMvic0T8urUWBQwEZKMQrdXTts0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/YmFlv7I92h-YcLJBf0lkhebAinQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 18:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:9a:03:18:dd:43:3c:bb:f4:e1:ea:b8:99:eb:43:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626165bfb23dda1f9870b2417f496485e6c08a74
Validity
Not Before: Jun 14 18:00:53 2025 GMT
Not After : Jun 15 18:00:53 2025 GMT
Subject: CN=b88b01605975bac9d2534f6e3e1c0dcf298e3194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:36:d7:58:f3:82:18:48:44:96:64:df:54:33:
a5:06:33:2c:35:3b:db:d3:44:b4:27:ee:07:82:13:
7a:32:01:fb:b6:ee:79:ad:71:91:8a:c2:1a:e0:69:
64:12:f7:28:9b:8c:b3:25:0f:7c:81:2f:bc:1a:1d:
05:e4:d6:7d:cb:9b:f2:59:9d:2d:80:ec:be:47:8b:
91:bc:d2:a5:5e:2f:12:46:f6:98:1c:9e:f7:08:88:
d4:fb:ff:d9:a8:74:a2:2f:e4:28:75:6b:ed:0f:0e:
8e:92:4f:a1:9a:ed:52:b5:57:d5:81:ab:a2:77:dc:
ff:73:52:8a:af:96:1e:29:e3:fc:e2:b8:97:06:9d:
d8:ad:22:bd:cd:b7:c6:a1:45:48:86:80:f6:5d:36:
af:82:26:84:20:a3:9d:da:e1:1f:e5:0a:ea:ac:13:
6a:25:af:7a:32:cc:84:35:b8:5a:e4:ff:d6:e6:7c:
a1:29:49:1b:2b:76:26:5c:9f:d9:00:b7:1a:ca:84:
ff:6c:f9:b5:9d:32:44:83:a8:7b:3a:59:8c:b8:55:
99:10:34:81:64:4f:0d:f6:74:02:b7:b4:cc:51:85:
b5:bf:10:c7:0a:ca:99:bd:b8:86:a5:cb:05:21:79:
72:f5:6b:e9:9a:76:e6:4e:3e:5a:10:4c:04:1b:bf:
a8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:8B:01:60:59:75:BA:C9:D2:53:4F:6E:3E:1C:0D:CF:29:8E:31:94
X509v3 Authority Key Identifier:
keyid:62:61:65:BF:B2:3D:DA:1F:98:70:B2:41:7F:49:64:85:E6:C0:8A:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YmFlv7I92h-YcLJBf0lkhebAinQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:48:bc:ac:0f:d4:d1:b1:f3:4e:d7:24:19:84:38:ee:8d:c5:
53:3e:c9:6d:48:94:9e:cd:81:81:43:dc:b7:29:46:b7:fb:d6:
26:34:13:49:c4:0b:b5:84:d3:12:b4:34:2b:19:ac:6a:af:a3:
9e:98:1f:a7:1c:22:8d:49:47:2e:63:54:7c:a8:67:74:c4:0a:
8f:a8:f9:93:21:7d:9b:ef:f3:81:44:c1:cf:ef:91:b4:d5:c2:
37:09:3d:e4:c9:0c:a2:fc:58:f2:42:b5:96:c1:8d:2e:46:54:
1e:58:f8:ce:67:f0:91:ff:51:0a:96:20:a7:ac:5d:80:e6:d7:
d7:be:7f:8f:6b:cd:f8:ca:b7:b7:54:32:5b:e5:c7:03:83:26:
8c:cc:07:e4:b5:37:dc:f7:45:98:43:34:46:a6:b3:4c:85:8b:
24:a1:bb:44:90:32:a2:dd:69:c5:e5:be:ab:0c:d2:02:71:ec:
2c:3a:b9:ca:ec:43:0c:a1:a7:de:e8:04:91:ef:3e:8b:23:37:
dc:35:06:4d:d5:27:0b:97:2e:74:62:98:fc:ea:31:43:98:ef:
f6:33:1e:26:a8:ac:70:6b:9a:3e:53:27:92:e7:08:12:a8:a7:
67:b9:af:91:af:4d:72:e8:34:c2:30:52:fb:3e:53:43:f1:80:
62:ca:77:f4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdvmgMY3UM8u/Th6riZ60OuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyNjE2NWJmYjIzZGRhMWY5ODcwYjI0MTdmNDk2NDg1ZTZj
MDhhNzQwHhcNMjUwNjE0MTgwMDUzWhcNMjUwNjE1MTgwMDUzWjAzMTEwLwYDVQQD
EyhiODhiMDE2MDU5NzViYWM5ZDI1MzRmNmUzZTFjMGRjZjI5OGUzMTk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAszbXWPOCGEhElmTfVDOlBjMsNTvb
00S0J+4HghN6MgH7tu55rXGRisIa4GlkEvcom4yzJQ98gS+8Gh0F5NZ9y5vyWZ0t
gOy+R4uRvNKlXi8SRvaYHJ73CIjU+//ZqHSiL+QodWvtDw6Okk+hmu1StVfVgaui
d9z/c1KKr5YeKeP84riXBp3YrSK9zbfGoUVIhoD2XTavgiaEIKOd2uEf5QrqrBNq
Ja96MsyENbha5P/W5nyhKUkbK3YmXJ/ZALcayoT/bPm1nTJEg6h7OlmMuFWZEDSB
ZE8N9nQCt7TMUYW1vxDHCsqZvbiGpcsFIXly9WvpmnbmTj5aEEwEG7+oPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLiLAWBZdbrJ0lNPbj4cDc8pjjGUMB8GA1UdIwQY
MBaAFGJhZb+yPdofmHCyQX9JZIXmwIp0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWW1GbHY3STkyaC1ZY0xKQmYwbGtoZWJBaW5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi83MjEzNWQtZTQ5Ny00NGE2LWI0ZDAt
NDYwZmI0YmFjMmRiLzEvWW1GbHY3STkyaC1ZY0xKQmYwbGtoZWJBaW5RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi83MjEzNWQtZTQ5Ny00NGE2LWI0ZDAtNDYwZmI0YmFjMmRi
LzEvWW1GbHY3STkyaC1ZY0xKQmYwbGtoZWJBaW5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc0i8rA/U
0bHzTtckGYQ47o3FUz7JbUiUns2BgUPctylGt/vWJjQTScQLtYTTErQ0Kxmsaq+j
npgfpxwijUlHLmNUfKhndMQKj6j5kyF9m+/zgUTBz++RtNXCNwk95MkMovxY8kK1
lsGNLkZUHlj4zmfwkf9RCpYgp6xdgObX175/j2vN+Mq3t1QyW+XHA4MmjMwH5LU3
3PdFmEM0RqazTIWLJKG7RJAyot1pxeW+qwzSAnHsLDq5yuxDDKGn3ugEke8+iyM3
3DUGTdUnC5cudGKY/OoxQ5jv9jMeJqiscGuaPlMnkucIEqinZ7mvka9Ncug0wjBS
+z5TQ/GAYsp39A==
-----END CERTIFICATE-----
Generated at Sun Jun 15 03:59:39 2025 by rpki-client