Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
File: yF0BtEKUbhkkMT1WTzG35C4kVec.mft (raw, json)
Hash identifier: OMeo6f8prSmPUb9vjk4Eq5CEqlJRDYgnuHKyKM+JhpE=
Subject key identifier: 6C:BC:7A:C8:9C:06:46:E0:47:A4:5E:13:D9:DB:71:74:95:F1:CD:69
Authority key identifier: C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
Certificate issuer: /CN=c85d01b442946e1924313d564f31b7e42e2455e7
Certificate serial: 0197CB710BCAB27F8658F9D72CC5C0BF2719
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
Manifest number: 0A41
Signing time: Wed 02 Jul 2025 14:01:12 +0000
Manifest this update: Wed 02 Jul 2025 14:01:12 +0000
Manifest next update: Thu 03 Jul 2025 14:01:12 +0000
Files and hashes: 1: DpCybAm9bBRoUpHGAuIQ86Lq5pw.roa (hash: 2p6cZB/6xzzCJ7jeUbBrD5Bf0hcHEh4tn/vPl+35cnU=)
2: yF0BtEKUbhkkMT1WTzG35C4kVec.crl (hash: Z9w26kP2riyDI346XVlDVKqEC7B72sLXuvL+kdbsvos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 14:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cb:71:0b:ca:b2:7f:86:58:f9:d7:2c:c5:c0:bf:27:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85d01b442946e1924313d564f31b7e42e2455e7
Validity
Not Before: Jul 2 14:01:12 2025 GMT
Not After : Jul 3 14:01:12 2025 GMT
Subject: CN=6cbc7ac89c0646e047a45e13d9db717495f1cd69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0b:12:91:7c:10:61:5c:4a:f7:4e:b3:31:b3:
65:49:8d:dc:98:22:3d:ab:e8:b7:6f:f2:e6:c6:34:
aa:a4:17:ce:4e:d5:b0:7c:80:f8:34:c8:83:ca:d2:
fe:e4:97:0c:b5:48:3a:1a:7b:95:11:0c:c4:91:fd:
8b:9c:98:5e:46:a8:08:23:b9:7e:e5:56:25:06:a7:
d6:a4:e4:5b:97:58:7e:af:ea:2e:68:4f:31:ec:9e:
72:05:e9:86:ca:ff:ea:b7:1b:4d:fb:1d:5d:ce:d8:
76:54:0d:29:40:89:ca:b7:38:b4:7f:e8:80:6f:bf:
70:c9:39:f8:97:e5:42:cf:51:26:a7:ed:05:6c:bb:
d9:c5:1f:f1:4e:3b:07:09:d6:fb:52:b5:62:28:f8:
73:f4:a0:db:6e:e3:c6:bf:e5:ca:fe:64:d6:e4:ca:
6e:b1:d7:19:22:83:49:12:c0:26:0a:ac:45:f1:16:
89:56:ad:16:7b:71:46:e2:a3:48:4c:b7:bc:65:b7:
42:32:b5:d7:65:a2:b6:bf:86:d0:1a:1b:1b:99:ee:
da:17:9e:19:82:57:3d:92:62:53:a8:52:ec:cc:43:
67:b4:73:cd:1b:cb:32:b5:da:1f:4d:d1:a7:9f:e7:
6f:99:5f:b0:00:23:63:5a:37:4f:63:34:c6:0e:c1:
91:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:BC:7A:C8:9C:06:46:E0:47:A4:5E:13:D9:DB:71:74:95:F1:CD:69
X509v3 Authority Key Identifier:
keyid:C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:6d:23:17:c0:6d:59:41:f2:cd:51:78:a3:76:24:3b:63:23:
d3:c8:ab:58:c3:a8:d7:9c:21:fc:d3:11:82:75:01:fd:1e:3f:
05:c4:dc:30:6f:7e:99:2e:2b:86:08:a9:b9:3f:f1:3f:dd:47:
ee:20:83:93:1c:2b:c4:ae:e3:fa:38:6f:23:74:3d:80:38:d0:
aa:a8:37:3a:eb:57:99:1f:b7:f5:d1:8f:ee:d8:e2:ed:94:7a:
14:bf:7c:ee:63:5e:cf:d7:bd:99:95:8b:78:df:39:d5:bf:d7:
d0:e7:2f:2e:e5:3a:ab:12:88:45:bc:7f:96:07:ea:93:94:3f:
99:90:d3:0d:27:57:a6:be:0d:72:32:3c:8f:22:ba:a6:86:d0:
7b:b5:41:d6:7f:5d:94:b1:f2:dd:8e:c7:aa:c0:05:1f:25:0a:
4c:0e:4e:40:c7:e3:f0:39:2f:ee:59:99:f3:d2:c7:10:ea:09:
e4:db:11:ee:25:4d:ce:51:6e:aa:7a:11:a2:91:4e:a3:c8:fb:
13:85:31:95:63:85:9f:76:ce:b5:fb:f3:c8:a4:d4:65:c2:03:
f6:6b:9a:87:0f:58:d8:3d:6c:e8:03:46:ed:f1:4a:ce:92:34:
0a:4a:dd:f4:c3:a2:6b:49:1e:70:23:de:81:56:81:1d:ce:ea:
b9:92:ea:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfLcQvKsn+GWPnXLMXAvycZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4NWQwMWI0NDI5NDZlMTkyNDMxM2Q1NjRmMzFiN2U0MmUy
NDU1ZTcwHhcNMjUwNzAyMTQwMTEyWhcNMjUwNzAzMTQwMTEyWjAzMTEwLwYDVQQD
Eyg2Y2JjN2FjODljMDY0NmUwNDdhNDVlMTNkOWRiNzE3NDk1ZjFjZDY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQsSkXwQYVxK906zMbNlSY3cmCI9
q+i3b/LmxjSqpBfOTtWwfID4NMiDytL+5JcMtUg6GnuVEQzEkf2LnJheRqgII7l+
5VYlBqfWpORbl1h+r+ouaE8x7J5yBemGyv/qtxtN+x1dzth2VA0pQInKtzi0f+iA
b79wyTn4l+VCz1Emp+0FbLvZxR/xTjsHCdb7UrViKPhz9KDbbuPGv+XK/mTW5Mpu
sdcZIoNJEsAmCqxF8RaJVq0We3FG4qNITLe8ZbdCMrXXZaK2v4bQGhsbme7aF54Z
glc9kmJTqFLszENntHPNG8sytdofTdGnn+dvmV+wACNjWjdPYzTGDsGR7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGy8esicBkbgR6ReE9nbcXSV8c1pMB8GA1UdIwQY
MBaAFMhdAbRClG4ZJDE9Vk8xt+QuJFXnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC81NTA4NzMtZDA2My00MjBkLWEwNTEt
MTZiOTdiOWE4ODVlLzEveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC81NTA4NzMtZDA2My00MjBkLWEwNTEtMTZiOTdiOWE4ODVl
LzEveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW20jF8Bt
WUHyzVF4o3YkO2Mj08irWMOo15wh/NMRgnUB/R4/BcTcMG9+mS4rhgipuT/xP91H
7iCDkxwrxK7j+jhvI3Q9gDjQqqg3OutXmR+39dGP7tji7ZR6FL987mNez9e9mZWL
eN851b/X0OcvLuU6qxKIRbx/lgfqk5Q/mZDTDSdXpr4NcjI8jyK6pobQe7VB1n9d
lLHy3Y7HqsAFHyUKTA5OQMfj8Dkv7lmZ89LHEOoJ5NsR7iVNzlFuqnoRopFOo8j7
E4UxlWOFn3bOtfvzyKTUZcID9muahw9Y2D1s6ANG7fFKzpI0Ckrd9MOia0kecCPe
gVaBHc7quZLqEA==
-----END CERTIFICATE-----
Generated at Wed Jul 2 22:56:51 2025 by rpki-client