Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft
File: YAJlJf1EpPx1siRPgNAiY09fdjU.mft (raw, json)
Hash identifier: ljlsXJHNCj8Z23dlsA1xz3oKEHWZ0e193F7MeHydI8c=
Subject key identifier: 71:A1:EC:F5:BF:36:49:91:BB:0C:C6:5B:AD:39:A5:79:60:2F:83:3B
Authority key identifier: 60:02:65:25:FD:44:A4:FC:75:B2:24:4F:80:D0:22:63:4F:5F:76:35
Certificate issuer: /CN=60026525fd44a4fc75b2244f80d022634f5f7635
Certificate serial: 019895C8F56E19359AA84C4D1DAACDC5C3A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAJlJf1EpPx1siRPgNAiY09fdjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft
Manifest number: 20
Signing time: Sun 10 Aug 2025 21:00:31 +0000
Manifest this update: Sun 10 Aug 2025 21:00:31 +0000
Manifest next update: Mon 11 Aug 2025 21:00:31 +0000
Files and hashes: 1: YAJlJf1EpPx1siRPgNAiY09fdjU.crl (hash: pg/XJ6lfCO8w1xW8v1x+GPCv22Ny99dj3ai1VVmcjd4=)
2: g9nWnsJ4s0Q4AdnedyFGxQkezGU.roa (hash: BaThYpCk19U9MWT3c8G8+GXTTA8NVbJPkga6Sb96+1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAJlJf1EpPx1siRPgNAiY09fdjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:c8:f5:6e:19:35:9a:a8:4c:4d:1d:aa:cd:c5:c3:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60026525fd44a4fc75b2244f80d022634f5f7635
Validity
Not Before: Aug 10 21:00:31 2025 GMT
Not After : Aug 11 21:00:31 2025 GMT
Subject: CN=71a1ecf5bf364991bb0cc65bad39a579602f833b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:67:36:20:ad:98:2a:8a:2d:be:9c:a3:91:cd:
04:22:ff:bd:d7:fe:18:92:90:16:3d:38:04:9d:13:
f5:88:c7:11:8c:49:28:24:c2:c5:e6:8a:23:35:33:
70:58:19:fd:c9:9d:83:e9:f0:ef:0f:04:09:10:7b:
e6:f8:94:ea:28:f0:49:38:28:e1:12:5c:19:9c:f5:
b9:86:b3:af:96:70:eb:03:d0:aa:1a:f2:64:a1:ce:
d7:e1:eb:39:55:6b:3c:11:29:16:de:ba:f0:b1:e5:
c4:67:2f:5c:24:1b:0a:2a:d4:fb:23:df:87:6a:3a:
c2:f8:87:c5:d7:5d:aa:63:9c:63:4c:06:f8:ea:83:
e8:00:e2:d9:ba:b8:e9:a2:f3:2a:bc:ed:60:05:de:
0f:be:c6:e5:3f:be:fd:61:83:0e:56:3d:bd:78:8a:
ee:3e:37:d7:8a:ea:ce:67:95:9c:6a:1a:a1:6a:f5:
e5:d3:63:76:67:4c:5d:17:c1:59:6e:9b:a9:0b:e2:
f1:72:f9:78:e7:0e:94:86:ca:fe:5b:52:ec:6c:6b:
f4:e0:54:99:dd:79:49:60:8f:89:9b:b3:cf:fb:e5:
0b:cd:a8:aa:e2:7a:4e:af:50:38:6c:33:4f:a5:8f:
ed:ba:81:ce:dc:26:36:73:b6:b7:05:fe:52:17:a7:
c8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A1:EC:F5:BF:36:49:91:BB:0C:C6:5B:AD:39:A5:79:60:2F:83:3B
X509v3 Authority Key Identifier:
keyid:60:02:65:25:FD:44:A4:FC:75:B2:24:4F:80:D0:22:63:4F:5F:76:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAJlJf1EpPx1siRPgNAiY09fdjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:71:cf:3b:12:d0:b7:05:c6:15:62:b0:77:e7:8f:b3:24:30:
ce:d1:c4:80:ed:51:a7:bf:3e:76:b3:d7:26:fc:00:1a:12:1d:
02:03:db:2c:10:41:5d:fc:59:26:7a:69:12:88:35:57:d5:8b:
2d:f5:f4:96:35:54:18:91:70:7c:56:4b:4f:33:9c:40:c4:df:
85:1e:00:c1:ba:42:bc:53:89:91:d5:fc:f9:0e:66:7a:fa:92:
78:2e:ee:ec:95:8e:49:c3:78:8d:8e:3c:c2:4e:b4:c8:c2:c9:
2d:8c:6f:56:8f:a0:ad:53:65:20:94:6f:fe:1b:c7:4d:aa:75:
67:8b:63:55:12:60:e9:20:56:20:68:53:67:b5:dc:a7:aa:24:
48:15:41:3a:e0:d5:70:fd:b3:86:1a:64:a0:f0:78:d9:84:81:
07:dd:b9:1d:2a:ee:e2:26:52:e3:08:9e:34:f4:bf:38:1d:6e:
18:69:95:32:78:ea:ce:a2:4a:3d:4e:f5:f1:55:2a:4e:2e:85:
0e:14:68:c9:01:da:93:a2:54:a7:ce:0e:62:6d:1a:81:b5:dc:
da:95:c3:b4:a1:8d:cb:2f:82:94:a8:88:f2:10:b7:79:cc:c4:
e5:24:e5:69:30:f6:5e:68:d6:73:0e:ff:45:a0:3b:12:6f:ef:
92:31:8a:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiVyPVuGTWaqExNHarNxcOhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwMDI2NTI1ZmQ0NGE0ZmM3NWIyMjQ0ZjgwZDAyMjYzNGY1
Zjc2MzUwHhcNMjUwODEwMjEwMDMxWhcNMjUwODExMjEwMDMxWjAzMTEwLwYDVQQD
Eyg3MWExZWNmNWJmMzY0OTkxYmIwY2M2NWJhZDM5YTU3OTYwMmY4MzNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAymc2IK2YKootvpyjkc0EIv+91/4Y
kpAWPTgEnRP1iMcRjEkoJMLF5oojNTNwWBn9yZ2D6fDvDwQJEHvm+JTqKPBJOCjh
ElwZnPW5hrOvlnDrA9CqGvJkoc7X4es5VWs8ESkW3rrwseXEZy9cJBsKKtT7I9+H
ajrC+IfF112qY5xjTAb46oPoAOLZurjpovMqvO1gBd4PvsblP779YYMOVj29eIru
PjfXiurOZ5WcahqhavXl02N2Z0xdF8FZbpupC+Lxcvl45w6Uhsr+W1LsbGv04FSZ
3XlJYI+Jm7PP++ULzaiq4npOr1A4bDNPpY/tuoHO3CY2c7a3Bf5SF6fIdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHGh7PW/NkmRuwzGW605pXlgL4M7MB8GA1UdIwQY
MBaAFGACZSX9RKT8dbIkT4DQImNPX3Y1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUFKbEpmMUVwUHgxc2lSUGdOQWlZMDlmZGpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi83YWZiNmQtYTg5OS00YmQzLThlMmMt
ZmE5MjMzNTM1ZmYxLzEvWUFKbEpmMUVwUHgxc2lSUGdOQWlZMDlmZGpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi83YWZiNmQtYTg5OS00YmQzLThlMmMtZmE5MjMzNTM1ZmYx
LzEvWUFKbEpmMUVwUHgxc2lSUGdOQWlZMDlmZGpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY3HPOxLQ
twXGFWKwd+ePsyQwztHEgO1Rp78+drPXJvwAGhIdAgPbLBBBXfxZJnppEog1V9WL
LfX0ljVUGJFwfFZLTzOcQMTfhR4AwbpCvFOJkdX8+Q5mevqSeC7u7JWOScN4jY48
wk60yMLJLYxvVo+grVNlIJRv/hvHTap1Z4tjVRJg6SBWIGhTZ7Xcp6okSBVBOuDV
cP2zhhpkoPB42YSBB925HSru4iZS4wieNPS/OB1uGGmVMnjqzqJKPU718VUqTi6F
DhRoyQHak6JUp84OYm0agbXc2pXDtKGNyy+ClKiI8hC3eczE5STlaTD2XmjWcw7/
RaA7Em/vkjGKCA==
-----END CERTIFICATE-----
Generated at Mon Aug 11 01:43:14 2025 by rpki-client