Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
File: yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft (raw, json)
Hash identifier: gA7SNkWlKkEQW0P0zS3irAEMzRNqaTwcz+Z0C+o00EY=
Subject key identifier: 58:B8:C7:37:2B:0F:20:AE:F4:23:70:BD:B7:D8:8D:3D:91:8D:24:60
Authority key identifier: CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64
Certificate issuer: /CN=cb36180ab4542d6eee66d9f99030df71236ce264
Certificate serial: 01989223083B3DE22876326938BCBBE76EC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
Manifest number: 146D
Signing time: Sun 10 Aug 2025 04:00:26 +0000
Manifest this update: Sun 10 Aug 2025 04:00:26 +0000
Manifest next update: Mon 11 Aug 2025 04:00:26 +0000
Files and hashes: 1: Iq8sBOoYl2FdEDuOs7ZjqubA0mo.roa (hash: cKH71Gw8ENbKfDC7hsHD0Ixm5ykhTLruun3w+xwHV3U=)
2: yzYYCrRULW7uZtn5kDDfcSNs4mQ.crl (hash: 46bBVIg4LZ5n2VbBJk5wD74r1TbNbl8OMPqfT9vqShE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 04:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:92:23:08:3b:3d:e2:28:76:32:69:38:bc:bb:e7:6e:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb36180ab4542d6eee66d9f99030df71236ce264
Validity
Not Before: Aug 10 04:00:26 2025 GMT
Not After : Aug 11 04:00:26 2025 GMT
Subject: CN=58b8c7372b0f20aef42370bdb7d88d3d918d2460
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ea:8a:e6:64:24:32:25:0f:a1:47:32:7c:98:
ed:16:2f:21:5c:c9:d3:5b:3b:70:f9:66:40:56:27:
3b:e0:4b:87:17:d9:a9:5f:1a:a4:0d:88:8a:ef:52:
5d:73:e3:8e:ac:44:92:3b:d3:19:7a:d3:f5:c5:1f:
e0:65:62:ed:54:df:7e:ca:80:c3:74:73:16:da:6e:
78:71:37:03:6e:3c:a2:5c:d4:6b:e7:61:f2:bb:93:
fb:36:8b:60:f5:b5:6f:d5:c6:48:93:c5:be:a9:e1:
cb:35:61:4c:f6:f7:1f:90:6a:76:f8:be:b5:6e:f9:
85:ec:75:de:0c:95:73:cb:62:12:07:e9:59:b3:6e:
14:7e:06:f1:ed:a0:da:e2:4a:76:4a:b1:a9:4a:fe:
38:f0:c3:8c:c4:08:37:ed:df:1e:55:02:0b:4c:69:
4c:bd:6c:d7:6a:b1:3b:d5:6f:57:61:ea:d8:46:83:
c0:ae:7b:74:b3:4b:f0:fc:48:1f:c0:32:ee:91:18:
86:8e:ea:5d:17:c7:b1:bb:ee:73:0c:77:46:46:c0:
e9:c0:6b:5d:75:c2:36:38:58:11:a0:2d:be:c0:59:
e3:e8:8a:3c:19:1c:ac:be:ea:67:1f:81:45:20:c5:
b8:91:95:08:8d:a3:f5:57:55:54:f7:0f:df:e6:1e:
bc:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B8:C7:37:2B:0F:20:AE:F4:23:70:BD:B7:D8:8D:3D:91:8D:24:60
X509v3 Authority Key Identifier:
keyid:CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:36:e4:80:74:b0:f9:d5:49:49:54:02:35:1d:0a:54:70:5b:
56:8d:9f:a7:b7:32:59:50:ca:ac:5e:d7:8f:72:99:c6:dd:ba:
0f:3c:74:b5:93:ee:52:bf:16:c7:f7:6b:8f:aa:fc:f9:49:bd:
e5:30:56:35:3d:06:01:36:7f:fe:76:5d:3f:37:76:32:8a:58:
d5:d4:e0:e2:c7:43:31:78:42:a6:93:7e:90:41:5c:a8:26:79:
7f:81:a7:f1:eb:c6:72:ba:30:c3:94:d7:0e:c2:07:9a:04:e0:
6a:a9:df:f5:57:48:79:15:2f:7f:37:02:fc:b5:ff:97:1f:16:
32:85:c3:cb:13:2a:aa:57:1b:f1:5d:6e:ca:99:1f:10:79:92:
33:29:8b:1e:b6:02:cc:2e:de:00:27:48:df:9f:6f:4d:aa:b1:
f9:56:25:ea:85:98:53:25:58:dd:38:8d:d0:b7:be:fd:f8:f1:
0e:ae:b7:dd:b4:91:05:9e:d1:3b:39:d4:d8:b0:6e:01:f3:88:
41:d0:f4:a9:5b:f7:ed:3d:f3:20:cb:9f:8f:70:91:a8:24:05:
45:96:6d:da:fe:32:5d:ba:26:eb:64:53:50:d7:27:ed:b5:1f:
3c:35:ef:e6:57:5a:d8:ed:0d:5e:90:4c:69:01:45:64:c3:c6:
56:3a:79:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiSIwg7PeIodjJpOLy7527HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiMzYxODBhYjQ1NDJkNmVlZTY2ZDlmOTkwMzBkZjcxMjM2
Y2UyNjQwHhcNMjUwODEwMDQwMDI2WhcNMjUwODExMDQwMDI2WjAzMTEwLwYDVQQD
Eyg1OGI4YzczNzJiMGYyMGFlZjQyMzcwYmRiN2Q4OGQzZDkxOGQyNDYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3+qK5mQkMiUPoUcyfJjtFi8hXMnT
Wztw+WZAVic74EuHF9mpXxqkDYiK71Jdc+OOrESSO9MZetP1xR/gZWLtVN9+yoDD
dHMW2m54cTcDbjyiXNRr52Hyu5P7Notg9bVv1cZIk8W+qeHLNWFM9vcfkGp2+L61
bvmF7HXeDJVzy2ISB+lZs24Ufgbx7aDa4kp2SrGpSv448MOMxAg37d8eVQILTGlM
vWzXarE71W9XYerYRoPArnt0s0vw/EgfwDLukRiGjupdF8exu+5zDHdGRsDpwGtd
dcI2OFgRoC2+wFnj6Io8GRysvupnH4FFIMW4kZUIjaP1V1VU9w/f5h68qQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFi4xzcrDyCu9CNwvbfYjT2RjSRgMB8GA1UdIwQY
MBaAFMs2GAq0VC1u7mbZ+ZAw33EjbOJkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXpZWUNyUlVMVzd1WnRuNWtERGZjU05zNG1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8wNzk3ZDQtOGIyYy00MGFjLTljYWIt
NjY3ZGIxZGMxYjg2LzEveXpZWUNyUlVMVzd1WnRuNWtERGZjU05zNG1RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi8wNzk3ZDQtOGIyYy00MGFjLTljYWItNjY3ZGIxZGMxYjg2
LzEveXpZWUNyUlVMVzd1WnRuNWtERGZjU05zNG1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjTbkgHSw
+dVJSVQCNR0KVHBbVo2fp7cyWVDKrF7Xj3KZxt26Dzx0tZPuUr8Wx/drj6r8+Um9
5TBWNT0GATZ//nZdPzd2MopY1dTg4sdDMXhCppN+kEFcqCZ5f4Gn8evGcroww5TX
DsIHmgTgaqnf9VdIeRUvfzcC/LX/lx8WMoXDyxMqqlcb8V1uypkfEHmSMymLHrYC
zC7eACdI359vTaqx+VYl6oWYUyVY3TiN0Le+/fjxDq633bSRBZ7ROznU2LBuAfOI
QdD0qVv37T3zIMufj3CRqCQFRZZt2v4yXbom62RTUNcn7bUfPDXv5lda2O0NXpBM
aQFFZMPGVjp5tQ==
-----END CERTIFICATE-----
Generated at Sun Aug 10 13:44:31 2025 by rpki-client