Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
File: YIYxT4djXnk7wuPbvtZkBbisZ3E.mft (raw, json)
Hash identifier: DtHeT/OduNvZHc8rKy7+ozNwUwZdgBrRD1DzR1Hykrk=
Subject key identifier: B9:07:49:30:31:9E:D3:04:A3:6C:4C:41:B4:DD:98:DA:27:34:FB:90
Authority key identifier: 60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
Certificate issuer: /CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Certificate serial: 0197B70EC5C8ED024643EB7D39E6D74390E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 15:01:28 +0000
Manifest this update: Sat 28 Jun 2025 15:01:28 +0000
Manifest next update: Sun 29 Jun 2025 15:01:28 +0000
Files and hashes: 1: YIYxT4djXnk7wuPbvtZkBbisZ3E.crl (hash: oCpQZ8ebUdzMHBqfi31tICpM62SM0H0YKzxWZFnOn6w=)
2: ul5EPC9Jg-xhzDe3-EnpTxgh7Dw.roa (hash: pDodgoORM1hTtwe+JSl0g3mWRdcfDqaXlT1wiKFyqck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:c5:c8:ed:02:46:43:eb:7d:39:e6:d7:43:90:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Validity
Not Before: Jun 28 15:01:28 2025 GMT
Not After : Jun 29 15:01:28 2025 GMT
Subject: CN=b9074930319ed304a36c4c41b4dd98da2734fb90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:59:31:82:34:8c:2a:80:ab:d3:d9:92:83:3a:
41:da:72:0a:a6:52:f4:9f:62:2c:20:d7:06:08:46:
d5:24:09:48:c1:2b:3a:bd:84:4c:68:11:8e:0a:f5:
79:21:0d:9d:3f:4a:41:99:7d:63:79:c6:01:d2:9d:
aa:88:d2:44:30:57:cb:1e:26:3e:ba:1e:67:c1:57:
19:48:b0:5b:1b:f1:75:33:83:de:7e:80:6f:22:da:
92:2a:5b:1e:c4:19:3f:8f:c3:77:49:b3:c9:db:a1:
4b:77:ae:f1:0b:5e:8e:96:43:3d:a0:a2:9c:d4:0b:
08:8e:15:af:1e:15:07:37:2e:00:ed:cd:d4:7f:7a:
ec:44:38:fb:a5:4e:bf:f2:75:05:63:31:1a:cd:82:
5c:4d:65:fa:5c:09:3b:48:62:bf:b3:1d:89:4d:05:
16:72:db:c0:17:22:96:dc:e2:6a:ab:06:e6:6a:3c:
a5:4f:1f:58:de:bc:b2:17:f6:4f:24:0a:1f:14:6b:
dd:7c:99:64:2a:a4:31:f5:5d:d7:f0:4b:af:a9:f4:
08:07:54:50:55:eb:47:d2:fb:09:62:14:2c:13:5a:
52:b1:10:a0:bb:c3:ad:16:0b:a0:7b:d3:52:6e:b6:
ba:1a:34:b8:3a:a2:0f:2b:4b:67:b9:d3:dc:7e:4d:
d5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:07:49:30:31:9E:D3:04:A3:6C:4C:41:B4:DD:98:DA:27:34:FB:90
X509v3 Authority Key Identifier:
keyid:60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:47:56:6d:4c:5f:6f:c2:13:8c:06:b6:58:14:21:2d:5a:1a:
72:f0:b0:86:16:b7:99:89:23:91:c7:73:e9:0e:ff:d2:40:cd:
84:8b:58:c1:2f:0e:3e:78:28:af:58:6f:1c:ae:75:4a:ac:69:
8d:37:11:94:ef:f7:3f:30:a2:74:93:19:f4:e3:ef:63:48:e5:
52:02:4f:f2:a4:fb:ab:b6:1e:39:60:ab:1e:9d:f6:f1:2f:93:
84:8a:d2:10:55:ab:d4:89:41:1a:88:4e:9c:24:90:ec:bb:35:
82:ff:ab:66:52:fd:eb:bf:8b:3a:cf:cd:2b:17:95:26:78:12:
43:3b:94:54:95:35:5f:c0:58:f6:a6:a1:29:33:ca:3a:88:50:
79:21:ea:78:ab:31:79:c6:bf:cb:40:e6:9b:6e:8b:00:52:8e:
91:d4:d0:ef:e3:d1:b2:47:ba:c8:7a:54:03:3d:f9:d8:73:a7:
ca:ab:06:d7:ec:5e:b1:c0:f1:c9:d5:06:2c:e0:52:53:9c:70:
ba:4f:ff:7f:17:e9:ec:36:a8:9f:b5:49:0e:92:6b:9e:1c:d7:
83:7c:81:51:15:15:7f:23:de:39:2b:5b:ef:40:0a:6d:92:ea:
e2:22:c2:c9:59:26:98:e2:76:5d:79:80:b4:ab:3f:24:0c:e6:
e6:30:4f:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DsXI7QJGQ+t9OebXQ5DmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwODYzMTRmODc2MzVlNzkzYmMyZTNkYmJlZDY2NDA1Yjhh
YzY3NzEwHhcNMjUwNjI4MTUwMTI4WhcNMjUwNjI5MTUwMTI4WjAzMTEwLwYDVQQD
EyhiOTA3NDkzMDMxOWVkMzA0YTM2YzRjNDFiNGRkOThkYTI3MzRmYjkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk1kxgjSMKoCr09mSgzpB2nIKplL0
n2IsINcGCEbVJAlIwSs6vYRMaBGOCvV5IQ2dP0pBmX1jecYB0p2qiNJEMFfLHiY+
uh5nwVcZSLBbG/F1M4PefoBvItqSKlsexBk/j8N3SbPJ26FLd67xC16OlkM9oKKc
1AsIjhWvHhUHNy4A7c3Uf3rsRDj7pU6/8nUFYzEazYJcTWX6XAk7SGK/sx2JTQUW
ctvAFyKW3OJqqwbmajylTx9Y3ryyF/ZPJAofFGvdfJlkKqQx9V3X8EuvqfQIB1RQ
VetH0vsJYhQsE1pSsRCgu8OtFguge9NSbra6GjS4OqIPK0tnudPcfk3VdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLkHSTAxntMEo2xMQbTdmNonNPuQMB8GA1UdIwQY
MBaAFGCGMU+HY155O8Lj277WZAW4rGdxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUlZeFQ0ZGpYbms3d3VQYnZ0WmtCYmlzWjNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8wZmJjNWYtN2MwNC00MGRhLTlkNWEt
MDI4MDU5OGYxOWUzLzEvWUlZeFQ0ZGpYbms3d3VQYnZ0WmtCYmlzWjNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC8wZmJjNWYtN2MwNC00MGRhLTlkNWEtMDI4MDU5OGYxOWUz
LzEvWUlZeFQ0ZGpYbms3d3VQYnZ0WmtCYmlzWjNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKEdWbUxf
b8ITjAa2WBQhLVoacvCwhha3mYkjkcdz6Q7/0kDNhItYwS8OPngor1hvHK51Sqxp
jTcRlO/3PzCidJMZ9OPvY0jlUgJP8qT7q7YeOWCrHp328S+ThIrSEFWr1IlBGohO
nCSQ7Ls1gv+rZlL967+LOs/NKxeVJngSQzuUVJU1X8BY9qahKTPKOohQeSHqeKsx
eca/y0Dmm26LAFKOkdTQ7+PRske6yHpUAz352HOnyqsG1+xescDxydUGLOBSU5xw
uk//fxfp7Daon7VJDpJrnhzXg3yBURUVfyPeOStb70AKbZLq4iLCyVkmmOJ2XXmA
tKs/JAzm5jBPsA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:55:50 2025 by rpki-client