Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
File: YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft (raw, json)
Hash identifier: V1GTOEhpGYmoX/z9XwIpyrosrPwYtesejBXdgQp6Rdw=
Subject key identifier: C9:AA:6E:4C:05:28:A3:80:26:D5:D7:E1:ED:27:D6:83:A2:00:5F:11
Authority key identifier: 62:7A:99:50:9E:D5:1D:F9:3A:33:F2:A4:E2:FD:66:2D:1C:8D:66:0B
Certificate issuer: /CN=627a99509ed51df93a33f2a4e2fd662d1c8d660b
Certificate serial: 0197B77C152277978F2FE42E878730ADC129
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
Manifest number: 01A3
Signing time: Sat 28 Jun 2025 17:00:51 +0000
Manifest this update: Sat 28 Jun 2025 17:00:51 +0000
Manifest next update: Sun 29 Jun 2025 17:00:51 +0000
Files and hashes: 1: FRrrM4yAfnu6pnFh5wowlvqVDWA.roa (hash: Hv8/4ynB8VDf7OX62BWXwwqyCndg3mMaA+WdwhpJSlw=)
2: YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl (hash: ju/Gh29RBtNk1o+F5tlt4gFRUtpdNUi/xY+6fUmZK0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:15:22:77:97:8f:2f:e4:2e:87:87:30:ad:c1:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=627a99509ed51df93a33f2a4e2fd662d1c8d660b
Validity
Not Before: Jun 28 17:00:51 2025 GMT
Not After : Jun 29 17:00:51 2025 GMT
Subject: CN=c9aa6e4c0528a38026d5d7e1ed27d683a2005f11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b6:2d:6c:d2:35:ef:ef:70:fe:c4:3b:1c:61:
64:8c:91:c4:69:16:47:62:db:6a:f7:a6:de:64:57:
77:5c:fb:ae:84:38:3a:b0:ea:ad:b3:f9:d3:9c:80:
80:d8:c7:6d:37:1d:0c:3c:1e:14:fd:2f:9a:b6:fe:
83:21:25:ab:02:aa:51:24:b0:86:ef:f1:07:11:46:
12:a4:48:e4:5e:99:9f:71:67:b1:7e:30:51:6b:17:
22:96:1f:b9:a0:2f:ff:40:64:f7:4c:1d:44:e2:8b:
c3:34:13:67:6f:7b:29:09:cd:57:07:75:9b:2a:13:
23:34:27:a3:09:77:9f:4b:d6:5d:aa:4f:c5:57:6e:
ca:24:64:e3:45:e2:3b:23:d9:7b:c9:16:a2:41:23:
fb:20:0e:b9:58:cc:20:7e:87:65:1a:50:2a:78:85:
7c:1e:47:15:6e:1c:0d:ec:02:b4:3d:ac:92:53:a4:
88:98:18:76:11:a2:44:ef:60:39:fd:7f:80:a3:1c:
84:d5:75:c3:fe:65:f3:bb:7a:80:f9:d0:c2:25:1e:
42:c4:9e:5a:fe:fe:f2:25:e8:8f:ec:e1:b0:e3:8d:
25:98:07:ee:00:7d:89:b4:c7:55:23:76:20:03:f3:
0d:a7:e7:9e:12:4d:be:92:61:c4:9e:c4:ef:5d:6e:
e1:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:AA:6E:4C:05:28:A3:80:26:D5:D7:E1:ED:27:D6:83:A2:00:5F:11
X509v3 Authority Key Identifier:
keyid:62:7A:99:50:9E:D5:1D:F9:3A:33:F2:A4:E2:FD:66:2D:1C:8D:66:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:d4:e2:79:ce:4e:c9:ee:54:d2:71:72:7d:e0:f6:a1:5a:4c:
43:c9:8b:68:2b:21:31:e0:86:33:0b:49:41:0d:5b:2f:09:dd:
f4:87:62:d2:32:51:74:0a:5a:f5:97:76:ad:e9:0a:ec:a3:e6:
b8:f7:3f:f6:ae:34:19:ae:a6:e3:44:e2:41:4a:a1:99:1a:f9:
83:76:9e:6b:af:9b:1f:af:63:8a:c0:ec:d8:62:07:a8:a5:67:
fa:ea:6a:82:10:17:75:e1:1f:8f:85:5e:a2:b7:6a:ec:43:fe:
f3:b3:d0:0f:14:5e:5b:a2:91:36:e4:b3:5d:74:ec:25:f7:2b:
a8:f6:69:a8:b1:a5:a6:01:5b:1f:56:dd:8c:b0:c6:38:bd:e0:
72:38:79:e4:e1:d0:05:30:ae:24:da:1c:68:87:7f:c3:73:79:
00:67:f8:e6:de:70:99:55:97:22:cf:23:a3:7c:b3:52:db:22:
2b:16:a0:56:ea:40:40:24:87:58:e1:20:bf:f4:da:25:6c:d5:
d3:3e:bd:40:bc:9c:ef:ca:d4:b2:21:e4:19:66:c6:75:40:18:
a4:3c:3f:d0:df:63:09:6d:4e:5a:c7:73:3b:a9:e5:4e:a3:b9:
13:1e:78:84:99:a9:2e:b8:8a:79:99:40:10:98:dc:a1:bb:51:
ab:47:c8:2d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fBUid5ePL+Quh4cwrcEpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyN2E5OTUwOWVkNTFkZjkzYTMzZjJhNGUyZmQ2NjJkMWM4
ZDY2MGIwHhcNMjUwNjI4MTcwMDUxWhcNMjUwNjI5MTcwMDUxWjAzMTEwLwYDVQQD
EyhjOWFhNmU0YzA1MjhhMzgwMjZkNWQ3ZTFlZDI3ZDY4M2EyMDA1ZjExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7YtbNI17+9w/sQ7HGFkjJHEaRZH
Yttq96beZFd3XPuuhDg6sOqts/nTnICA2MdtNx0MPB4U/S+atv6DISWrAqpRJLCG
7/EHEUYSpEjkXpmfcWexfjBRaxcilh+5oC//QGT3TB1E4ovDNBNnb3spCc1XB3Wb
KhMjNCejCXefS9Zdqk/FV27KJGTjReI7I9l7yRaiQSP7IA65WMwgfodlGlAqeIV8
HkcVbhwN7AK0PaySU6SImBh2EaJE72A5/X+AoxyE1XXD/mXzu3qA+dDCJR5CxJ5a
/v7yJeiP7OGw440lmAfuAH2JtMdVI3YgA/MNp+eeEk2+kmHEnsTvXW7h3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMmqbkwFKKOAJtXX4e0n1oOiAF8RMB8GA1UdIwQY
MBaAFGJ6mVCe1R35OjPypOL9Zi0cjWYLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWW5xWlVKN1ZIZms2TV9LazR2MW1MUnlOWmdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy80NjM2NjYtMDBlMC00OTJlLWE0NjMt
MDEyOGQ5NzE3OWU4LzEvWW5xWlVKN1ZIZms2TV9LazR2MW1MUnlOWmdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy80NjM2NjYtMDBlMC00OTJlLWE0NjMtMDEyOGQ5NzE3OWU4
LzEvWW5xWlVKN1ZIZms2TV9LazR2MW1MUnlOWmdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjdTiec5O
ye5U0nFyfeD2oVpMQ8mLaCshMeCGMwtJQQ1bLwnd9Idi0jJRdApa9Zd2rekK7KPm
uPc/9q40Ga6m40TiQUqhmRr5g3aea6+bH69jisDs2GIHqKVn+upqghAXdeEfj4Ve
ordq7EP+87PQDxReW6KRNuSzXXTsJfcrqPZpqLGlpgFbH1bdjLDGOL3gcjh55OHQ
BTCuJNocaId/w3N5AGf45t5wmVWXIs8jo3yzUtsiKxagVupAQCSHWOEgv/TaJWzV
0z69QLyc78rUsiHkGWbGdUAYpDw/0N9jCW1OWsdzO6nlTqO5Ex54hJmpLriKeZlA
EJjcobtRq0fILQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:18:35 2025 by rpki-client