Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
File: YGhXxDyh3wTLaaSgqshim98ydWs.mft (raw, json)
Hash identifier: ogvnaN5VXx8RoAeYbI6DU4vnD9kZTv1lxecTqpmKziE=
Subject key identifier: 8E:B6:EB:D4:8E:F5:03:1B:AE:F6:AC:F2:85:AB:7B:FC:EA:1E:7D:BE
Authority key identifier: 60:68:57:C4:3C:A1:DF:04:CB:69:A4:A0:AA:C8:62:9B:DF:32:75:6B
Certificate issuer: /CN=606857c43ca1df04cb69a4a0aac8629bdf32756b
Certificate serial: 0198808B87E361AF69CA081D597203D68CCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGhXxDyh3wTLaaSgqshim98ydWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
Manifest number: 12D4
Signing time: Wed 06 Aug 2025 18:01:24 +0000
Manifest this update: Wed 06 Aug 2025 18:01:24 +0000
Manifest next update: Thu 07 Aug 2025 18:01:24 +0000
Files and hashes: 1: XuX7uT8cb5cVhdOXna_jZRuc6JE.roa (hash: 6nSukjm2iQoWm9SssGRSJpva0KahTxgtp11M/o63UVs=)
2: YGhXxDyh3wTLaaSgqshim98ydWs.crl (hash: 5tkkWbH4ATQKSXecpgEiv/DYMIPdps0SQFVj0EDPikw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGhXxDyh3wTLaaSgqshim98ydWs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 18:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:8b:87:e3:61:af:69:ca:08:1d:59:72:03:d6:8c:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606857c43ca1df04cb69a4a0aac8629bdf32756b
Validity
Not Before: Aug 6 18:01:24 2025 GMT
Not After : Aug 7 18:01:24 2025 GMT
Subject: CN=8eb6ebd48ef5031baef6acf285ab7bfcea1e7dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6b:3b:61:b0:64:70:6f:43:97:0e:9b:33:36:
60:ed:1d:9b:f6:74:de:dc:9f:a2:64:74:be:16:d5:
35:a9:72:02:a8:2a:67:5e:a6:42:bd:64:87:62:d6:
ae:61:8f:7f:e1:87:1a:d9:7d:24:37:9e:fd:33:c3:
bc:69:2b:52:65:de:58:4a:17:66:bd:d7:bb:d1:f3:
d9:aa:ee:94:aa:16:85:0f:2e:a2:6f:e0:ee:0c:0b:
9d:7e:fd:ac:05:a0:46:f1:5b:15:04:d7:96:82:e8:
9c:f2:40:bc:9a:ad:59:58:d8:1e:b6:92:da:32:89:
bf:62:50:4c:cc:8a:02:9b:6f:12:49:4c:8b:61:f6:
ca:7c:c3:e9:59:32:7c:1f:7f:8d:a6:94:12:a8:17:
52:92:cb:02:b7:59:5c:a4:95:b2:e3:ef:97:8f:40:
68:c0:9b:c6:f5:70:de:ad:ee:d3:1e:72:61:87:4e:
0b:3a:d7:52:ea:2e:1c:52:89:70:c3:d6:64:28:79:
6a:67:54:f1:d1:25:79:43:30:3e:20:58:87:68:db:
e9:a0:23:d6:f5:15:d4:a1:32:77:ad:08:f7:1e:2e:
9a:c7:4e:4f:aa:e4:01:7b:a0:b7:6f:c5:25:2d:db:
fb:4b:12:e9:bc:13:dd:5b:9f:16:fa:ca:0c:f1:07:
c5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:B6:EB:D4:8E:F5:03:1B:AE:F6:AC:F2:85:AB:7B:FC:EA:1E:7D:BE
X509v3 Authority Key Identifier:
keyid:60:68:57:C4:3C:A1:DF:04:CB:69:A4:A0:AA:C8:62:9B:DF:32:75:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGhXxDyh3wTLaaSgqshim98ydWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:96:fd:3d:28:13:03:cf:53:2b:ac:54:ab:b1:29:f6:19:47:
ad:af:b9:c0:12:58:f0:9b:f9:58:f9:05:2d:9c:f8:f6:65:36:
12:bc:a4:1d:7b:f9:f7:74:37:63:1f:0d:3d:3f:ff:9d:48:3c:
06:b2:76:0e:38:42:7d:02:89:f9:06:35:24:b9:9e:8f:c4:af:
17:ab:93:a8:58:48:6b:47:26:27:70:13:9b:6a:46:8a:21:4d:
e6:75:62:59:b1:0f:3a:cb:f8:e6:80:54:70:c9:03:35:0a:3e:
f9:3b:46:f5:b7:ce:0c:81:47:da:f4:c9:2d:5a:0f:e6:72:18:
e3:4c:75:e3:8c:c9:4a:a2:87:17:54:6e:a7:8f:e3:4f:52:b7:
4b:6c:81:b2:b1:60:71:16:13:79:5c:8f:05:7c:6d:14:c2:1c:
86:fc:70:e2:35:d0:49:9b:52:bd:49:c6:41:9b:0c:07:dd:06:
24:75:69:4e:59:0f:e7:43:9b:57:72:9f:19:00:77:e9:4e:b0:
04:dc:2f:40:8b:63:26:f4:d9:b8:1b:72:af:8a:47:21:a8:3d:
74:d3:2e:fc:96:3a:b7:06:e7:4c:a4:82:45:fa:e8:67:92:e9:
63:d3:9b:48:32:24:c2:bc:dc:67:72:db:88:7d:7d:a2:e2:6a:
5f:06:fa:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiAi4fjYa9pyggdWXID1ozMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjg1N2M0M2NhMWRmMDRjYjY5YTRhMGFhYzg2MjliZGYz
Mjc1NmIwHhcNMjUwODA2MTgwMTI0WhcNMjUwODA3MTgwMTI0WjAzMTEwLwYDVQQD
Eyg4ZWI2ZWJkNDhlZjUwMzFiYWVmNmFjZjI4NWFiN2JmY2VhMWU3ZGJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtms7YbBkcG9Dlw6bMzZg7R2b9nTe
3J+iZHS+FtU1qXICqCpnXqZCvWSHYtauYY9/4Yca2X0kN579M8O8aStSZd5YShdm
vde70fPZqu6UqhaFDy6ib+DuDAudfv2sBaBG8VsVBNeWguic8kC8mq1ZWNgetpLa
Mom/YlBMzIoCm28SSUyLYfbKfMPpWTJ8H3+NppQSqBdSkssCt1lcpJWy4++Xj0Bo
wJvG9XDere7THnJhh04LOtdS6i4cUolww9ZkKHlqZ1Tx0SV5QzA+IFiHaNvpoCPW
9RXUoTJ3rQj3Hi6ax05PquQBe6C3b8UlLdv7SxLpvBPdW58W+soM8QfFkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI6269SO9QMbrvas8oWre/zqHn2+MB8GA1UdIwQY
MBaAFGBoV8Q8od8Ey2mkoKrIYpvfMnVrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdoWHhEeWgzd1RMYWFTZ3FzaGltOTh5ZFdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi85NWQ3ZGMtMGM4Yi00OTQxLWI5YzEt
ZDQ3MTBkMDIyMzM2LzEvWUdoWHhEeWgzd1RMYWFTZ3FzaGltOTh5ZFdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi85NWQ3ZGMtMGM4Yi00OTQxLWI5YzEtZDQ3MTBkMDIyMzM2
LzEvWUdoWHhEeWgzd1RMYWFTZ3FzaGltOTh5ZFdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVZb9PSgT
A89TK6xUq7Ep9hlHra+5wBJY8Jv5WPkFLZz49mU2ErykHXv593Q3Yx8NPT//nUg8
BrJ2DjhCfQKJ+QY1JLmej8SvF6uTqFhIa0cmJ3ATm2pGiiFN5nViWbEPOsv45oBU
cMkDNQo++TtG9bfODIFH2vTJLVoP5nIY40x144zJSqKHF1Rup4/jT1K3S2yBsrFg
cRYTeVyPBXxtFMIchvxw4jXQSZtSvUnGQZsMB90GJHVpTlkP50ObV3KfGQB36U6w
BNwvQItjJvTZuBtyr4pHIag9dNMu/JY6twbnTKSCRfroZ5LpY9ObSDIkwrzcZ3Lb
iH19ouJqXwb6aQ==
-----END CERTIFICATE-----
Generated at Thu Aug 7 03:49:41 2025 by rpki-client