Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
File: yQDvPdXdG-FdCLuTy91jtKyGDms.mft (raw, json)
Hash identifier: baZ4P8sDGeJULdbjLwhqYPNMmSHhKDgLXGfbUY6R1/M=
Subject key identifier: 21:BD:4F:0B:CD:F0:84:C9:EC:A8:A5:E2:0C:30:B3:3D:CF:18:D7:C8
Authority key identifier: C9:00:EF:3D:D5:DD:1B:E1:5D:08:BB:93:CB:DD:63:B4:AC:86:0E:6B
Certificate issuer: /CN=c900ef3dd5dd1be15d08bb93cbdd63b4ac860e6b
Certificate serial: 0197B7EA8834A28AFEA91842A318AB2752ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQDvPdXdG-FdCLuTy91jtKyGDms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
Manifest number: 1026
Signing time: Sat 28 Jun 2025 19:01:30 +0000
Manifest this update: Sat 28 Jun 2025 19:01:30 +0000
Manifest next update: Sun 29 Jun 2025 19:01:30 +0000
Files and hashes: 1: kNwo0JsX3ICm84nVo9dsXQUG9kE.roa (hash: NK1ts8W0/zMpiUmbhnMjlz816+vYjFkNttYVHl02NWQ=)
2: yQDvPdXdG-FdCLuTy91jtKyGDms.crl (hash: dloowP7hAWOa3SpdcEKv1eQWBZDlOiE4njFQvWDFjQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
rsync://rpki.ripe.net/repository/DEFAULT/yQDvPdXdG-FdCLuTy91jtKyGDms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:88:34:a2:8a:fe:a9:18:42:a3:18:ab:27:52:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c900ef3dd5dd1be15d08bb93cbdd63b4ac860e6b
Validity
Not Before: Jun 28 19:01:30 2025 GMT
Not After : Jun 29 19:01:30 2025 GMT
Subject: CN=21bd4f0bcdf084c9eca8a5e20c30b33dcf18d7c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:72:5a:2a:bb:fd:a5:88:eb:a1:cb:12:22:56:
dd:38:6f:42:01:2f:24:c5:32:28:76:39:db:07:92:
99:81:50:01:72:27:a6:c5:e1:6c:a0:f6:00:af:81:
0e:eb:84:68:7a:4f:65:a8:be:b6:cf:cb:96:b4:4e:
80:e1:65:aa:18:99:58:57:5a:a7:fd:bb:b2:7b:3a:
f1:b4:ea:0f:fe:b3:6d:70:6c:2b:0f:bc:ea:49:2e:
be:1b:65:9e:71:22:6d:62:80:fe:3a:e3:6e:36:a8:
96:1a:55:eb:5c:42:f1:4d:19:38:b8:69:54:b7:89:
50:4f:61:ae:f7:d6:64:40:10:bd:68:62:fa:9c:e5:
12:29:6d:da:fc:a0:41:9f:7d:5d:e9:69:37:d7:07:
82:8c:86:a4:e0:67:8e:04:94:af:09:1b:f5:b5:8e:
f2:dd:77:af:ba:82:b8:cc:d6:ee:16:51:25:d5:65:
d9:d8:b8:cd:03:7c:e4:dc:6d:b9:30:50:54:b8:6e:
9a:83:ce:99:5c:7b:f3:72:e0:de:6e:c9:23:e7:1d:
f6:e4:e6:24:fa:7b:70:88:c0:fc:51:c8:b5:6a:b9:
6b:3f:ff:40:a7:36:55:19:70:22:8b:c1:d6:fd:92:
04:e2:e6:2a:3d:be:5c:27:51:98:57:f1:ce:f1:06:
e2:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:BD:4F:0B:CD:F0:84:C9:EC:A8:A5:E2:0C:30:B3:3D:CF:18:D7:C8
X509v3 Authority Key Identifier:
keyid:C9:00:EF:3D:D5:DD:1B:E1:5D:08:BB:93:CB:DD:63:B4:AC:86:0E:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQDvPdXdG-FdCLuTy91jtKyGDms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:42:4d:a1:2a:c3:8f:2c:17:2c:01:5d:67:d9:5d:c7:3d:4c:
e5:8a:90:33:e8:a8:95:79:9b:3f:49:a8:d6:9e:3d:f1:d3:d9:
c4:5b:50:58:cd:42:f6:a2:e8:89:b9:75:79:e8:d7:2b:5e:4e:
fc:50:8d:b8:c4:06:48:26:61:5e:9d:4d:24:9f:37:77:8b:2b:
51:be:03:05:3e:05:41:4c:7c:fe:df:3c:08:78:f8:bd:cb:4c:
10:c2:70:69:1d:81:60:85:8c:47:19:26:8a:08:d7:2f:b6:03:
cf:d9:9e:e9:27:f2:fa:df:32:44:c2:fc:89:54:44:dd:59:d8:
75:56:73:e6:99:72:41:91:ac:44:25:d6:ad:5e:7f:54:d5:d2:
a2:fb:61:7c:a5:85:03:10:1a:28:8e:f8:13:09:37:cb:e2:26:
9f:2d:be:db:ab:ca:ff:5b:3d:7a:c1:1d:13:25:22:ff:75:b4:
a8:a8:f5:23:ec:9d:8f:57:a0:ba:3c:f9:65:1b:45:db:f7:3b:
f8:e3:ea:8f:2b:de:8d:84:e8:aa:fc:d3:6e:89:08:d5:85:71:
87:03:f7:a9:69:7e:25:5c:5b:ed:80:c4:74:ee:2c:c8:79:06:
91:3e:e3:ac:42:ec:96:36:4d:6b:51:2e:46:8c:ca:43:0e:a8:
0b:af:1f:cb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36og0oor+qRhCoxirJ1LtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5MDBlZjNkZDVkZDFiZTE1ZDA4YmI5M2NiZGQ2M2I0YWM4
NjBlNmIwHhcNMjUwNjI4MTkwMTMwWhcNMjUwNjI5MTkwMTMwWjAzMTEwLwYDVQQD
EygyMWJkNGYwYmNkZjA4NGM5ZWNhOGE1ZTIwYzMwYjMzZGNmMThkN2M4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1nJaKrv9pYjrocsSIlbdOG9CAS8k
xTIodjnbB5KZgVABciemxeFsoPYAr4EO64Roek9lqL62z8uWtE6A4WWqGJlYV1qn
/buyezrxtOoP/rNtcGwrD7zqSS6+G2WecSJtYoD+OuNuNqiWGlXrXELxTRk4uGlU
t4lQT2Gu99ZkQBC9aGL6nOUSKW3a/KBBn31d6Wk31weCjIak4GeOBJSvCRv1tY7y
3XevuoK4zNbuFlEl1WXZ2LjNA3zk3G25MFBUuG6ag86ZXHvzcuDebskj5x325OYk
+ntwiMD8Uci1arlrP/9ApzZVGXAii8HW/ZIE4uYqPb5cJ1GYV/HO8QbisQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCG9TwvN8ITJ7Kil4gwwsz3PGNfIMB8GA1UdIwQY
MBaAFMkA7z3V3RvhXQi7k8vdY7Sshg5rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVFEdlBkWGRHLUZkQ0x1VHk5MWp0S3lHRG1zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9hODljMDEtNmJiMS00NzdjLTk0YmMt
NWFiZTkzYWZmNjQyLzEveVFEdlBkWGRHLUZkQ0x1VHk5MWp0S3lHRG1zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS9hODljMDEtNmJiMS00NzdjLTk0YmMtNWFiZTkzYWZmNjQy
LzEveVFEdlBkWGRHLUZkQ0x1VHk5MWp0S3lHRG1zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHkJNoSrD
jywXLAFdZ9ldxz1M5YqQM+iolXmbP0mo1p498dPZxFtQWM1C9qLoibl1eejXK15O
/FCNuMQGSCZhXp1NJJ83d4srUb4DBT4FQUx8/t88CHj4vctMEMJwaR2BYIWMRxkm
igjXL7YDz9me6Sfy+t8yRML8iVRE3VnYdVZz5plyQZGsRCXWrV5/VNXSovthfKWF
AxAaKI74Ewk3y+Imny2+26vK/1s9esEdEyUi/3W0qKj1I+ydj1egujz5ZRtF2/c7
+OPqjyvejYToqvzTbokI1YVxhwP3qWl+JVxb7YDEdO4syHkGkT7jrELsljZNa1Eu
RozKQw6oC68fyw==
-----END CERTIFICATE-----
Generated at Sun Jun 29 04:40:41 2025 by rpki-client