Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
File: YL83NiAUbm8piugtLIqDccrLexs.mft (raw, json)
Hash identifier: ph/8VSPPXkjR8NTiEDcGAEPLc3KtcP3AuWEWSyoU4lM=
Subject key identifier: 25:63:8C:96:36:F5:2F:2A:52:32:0A:4E:68:41:71:29:00:2B:E3:B3
Authority key identifier: 60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
Certificate issuer: /CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Certificate serial: 0197B6A2266E0D98A8FCF1F436C274CDE1F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 13:02:49 +0000
Manifest this update: Sat 28 Jun 2025 13:02:49 +0000
Manifest next update: Sun 29 Jun 2025 13:02:49 +0000
Files and hashes: 1: FcPpw1IibzSy4BenkulclpDum4U.roa (hash: HSUDUncC0CCpqaUKBhWSJTD0GmSsEAzCocsfF6H1tqA=)
2: YL83NiAUbm8piugtLIqDccrLexs.crl (hash: cyKzTFkYJkac1TKYQIe5ZkufBhPwl9cZRQO0U6nkoL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:26:6e:0d:98:a8:fc:f1:f4:36:c2:74:cd:e1:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Validity
Not Before: Jun 28 13:02:49 2025 GMT
Not After : Jun 29 13:02:49 2025 GMT
Subject: CN=25638c9636f52f2a52320a4e68417129002be3b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0c:54:84:7f:0f:74:d1:01:87:9d:4c:80:a7:
fa:6b:eb:73:45:df:33:0e:94:81:c0:79:74:f9:9e:
c6:9b:ed:f7:5d:7f:b5:ae:2f:eb:11:8e:c7:7c:fd:
f5:52:ae:b0:84:fd:00:43:68:0c:80:fb:7c:0c:56:
06:e6:0c:20:ca:fc:d1:e9:04:43:ae:05:23:78:cb:
73:f5:5f:d2:2f:e7:3f:00:c6:b9:51:ad:fe:74:73:
0e:e9:4b:e9:7f:20:64:e9:83:24:85:5c:43:27:e4:
8b:38:91:da:f5:21:f9:fa:5d:e3:b1:be:64:ca:af:
63:59:df:ea:c1:bc:20:e6:0f:67:84:35:ca:33:4e:
fe:52:e7:bb:f8:56:9a:58:e8:98:5c:e9:02:21:7a:
9b:61:f9:17:8a:6d:92:c5:18:5b:64:5c:94:65:38:
e4:fb:c4:ad:b1:fe:1b:2f:a8:4f:9b:29:e3:d9:17:
f4:d1:65:0f:6e:0f:68:31:da:44:c2:74:28:ee:ce:
d4:2f:78:9b:bd:b6:41:9d:b7:19:b2:a0:eb:95:30:
83:98:c9:9e:c6:7c:62:8c:61:c7:c6:c2:0c:f1:b0:
91:f5:b4:01:c3:0b:e0:48:d6:44:06:8a:bd:81:99:
02:e1:15:9c:45:11:81:87:d1:41:94:be:1b:1c:a9:
36:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:63:8C:96:36:F5:2F:2A:52:32:0A:4E:68:41:71:29:00:2B:E3:B3
X509v3 Authority Key Identifier:
keyid:60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:91:d5:62:72:2e:b0:a6:63:cd:ce:a6:29:e1:c3:9a:12:70:
ab:74:a5:d5:ca:4d:a4:ce:02:8b:7d:94:ae:67:89:6b:46:ce:
75:84:cf:56:57:8a:de:96:98:8d:53:d9:a6:7d:66:d0:e3:61:
b5:59:56:aa:bb:2f:68:fc:6d:ce:62:9d:75:d0:86:65:30:8f:
ff:4d:e2:13:9d:fc:fd:74:0a:41:e6:b3:31:bb:1d:51:13:45:
d0:b7:f0:38:71:8a:df:a2:f7:21:96:3c:29:b0:9c:8e:90:1c:
ed:ae:5e:05:3b:33:5d:6e:40:cc:d4:61:78:cd:1c:ab:df:a6:
dc:bc:9b:af:58:0a:14:57:c5:a7:06:66:87:5c:bb:e9:e4:04:
e6:e8:cb:33:9f:13:05:4b:95:b4:94:f2:55:17:43:22:08:9f:
27:28:b3:5c:77:88:80:18:82:e9:84:0b:ab:a4:e4:49:e2:59:
14:62:e0:61:89:7f:47:f5:21:82:23:7c:69:a7:34:06:6a:03:
aa:27:7f:2f:67:14:4b:ae:5c:54:25:6e:ae:a0:84:f8:44:14:
92:5b:9d:8a:d1:58:f5:a1:7d:be:c7:1a:2d:92:e0:c3:5d:36:
de:db:87:e5:fe:e4:4c:61:d8:16:7c:a0:fb:c6:32:03:b5:a7:
75:e8:0b:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oiZuDZio/PH0NsJ0zeH0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwYmYzNzM2MjAxNDZlNmYyOThhZTgyZDJjOGE4MzcxY2Fj
YjdiMWIwHhcNMjUwNjI4MTMwMjQ5WhcNMjUwNjI5MTMwMjQ5WjAzMTEwLwYDVQQD
EygyNTYzOGM5NjM2ZjUyZjJhNTIzMjBhNGU2ODQxNzEyOTAwMmJlM2IzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQxUhH8PdNEBh51MgKf6a+tzRd8z
DpSBwHl0+Z7Gm+33XX+1ri/rEY7HfP31Uq6whP0AQ2gMgPt8DFYG5gwgyvzR6QRD
rgUjeMtz9V/SL+c/AMa5Ua3+dHMO6UvpfyBk6YMkhVxDJ+SLOJHa9SH5+l3jsb5k
yq9jWd/qwbwg5g9nhDXKM07+Uue7+FaaWOiYXOkCIXqbYfkXim2SxRhbZFyUZTjk
+8Stsf4bL6hPmynj2Rf00WUPbg9oMdpEwnQo7s7UL3ibvbZBnbcZsqDrlTCDmMme
xnxijGHHxsIM8bCR9bQBwwvgSNZEBoq9gZkC4RWcRRGBh9FBlL4bHKk2UwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCVjjJY29S8qUjIKTmhBcSkAK+OzMB8GA1UdIwQY
MBaAFGC/NzYgFG5vKYroLSyKg3HKy3sbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9kZWNkZTMtMjc3YS00OTU2LWJmOTIt
ZjBhODEyM2U3MGY5LzEvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi9kZWNkZTMtMjc3YS00OTU2LWJmOTItZjBhODEyM2U3MGY5
LzEvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQJHVYnIu
sKZjzc6mKeHDmhJwq3Sl1cpNpM4Ci32UrmeJa0bOdYTPVleK3paYjVPZpn1m0ONh
tVlWqrsvaPxtzmKdddCGZTCP/03iE538/XQKQeazMbsdURNF0LfwOHGK36L3IZY8
KbCcjpAc7a5eBTszXW5AzNRheM0cq9+m3Lybr1gKFFfFpwZmh1y76eQE5ujLM58T
BUuVtJTyVRdDIgifJyizXHeIgBiC6YQLq6TkSeJZFGLgYYl/R/UhgiN8aac0BmoD
qid/L2cUS65cVCVurqCE+EQUkluditFY9aF9vscaLZLgw1023tuH5f7kTGHYFnyg
+8YyA7WndegLzw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:31:39 2025 by rpki-client