Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
File: YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft (raw, json)
Hash identifier: bav7J9v1xoT52r/iVTm/UJA704kgpMBeXr5gNnGHGuw=
Subject key identifier: C0:D0:4B:0C:72:04:CD:6B:BB:69:7C:54:8C:CC:13:E3:35:9F:45:80
Authority key identifier: 62:7A:99:50:9E:D5:1D:F9:3A:33:F2:A4:E2:FD:66:2D:1C:8D:66:0B
Certificate issuer: /CN=627a99509ed51df93a33f2a4e2fd662d1c8d660b
Certificate serial: 0198D54E5921E2C8C24B9237ED6518FA0660
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
Manifest number: 0237
Signing time: Sat 23 Aug 2025 05:02:18 +0000
Manifest this update: Sat 23 Aug 2025 05:02:18 +0000
Manifest next update: Sun 24 Aug 2025 05:02:18 +0000
Files and hashes: 1: FRrrM4yAfnu6pnFh5wowlvqVDWA.roa (hash: Hv8/4ynB8VDf7OX62BWXwwqyCndg3mMaA+WdwhpJSlw=)
2: YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl (hash: 3LUy73vGgQsFMVBE/ehZwHNrw4fizTGGYVeedqy+np0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:59:21:e2:c8:c2:4b:92:37:ed:65:18:fa:06:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=627a99509ed51df93a33f2a4e2fd662d1c8d660b
Validity
Not Before: Aug 23 05:02:18 2025 GMT
Not After : Aug 24 05:02:18 2025 GMT
Subject: CN=c0d04b0c7204cd6bbb697c548ccc13e3359f4580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d8:6b:71:50:83:5e:7c:df:3e:d5:e0:4c:93:
14:8e:8d:40:0e:ac:a9:7d:a4:1a:9e:0c:16:91:00:
da:77:48:c7:7b:24:32:8b:a4:7f:9b:92:40:b5:00:
be:5c:77:8e:96:d9:e5:9a:f0:52:51:32:d7:e0:e9:
81:dc:f0:fa:d7:a0:b2:01:42:b9:27:1f:d6:0e:c5:
ba:64:c2:75:f3:7d:1c:ff:25:ff:75:d9:59:bf:4c:
f2:54:a0:b8:23:6f:af:c9:cc:a6:a3:f7:a9:5b:06:
14:10:3c:b3:31:7d:38:a9:03:14:03:4b:50:f0:31:
19:4e:6f:0c:fa:58:32:4f:7e:74:10:ee:d7:39:8c:
fd:b2:8d:58:53:55:eb:36:ef:3e:bb:1f:e7:84:7f:
f3:c8:5b:c3:fd:a9:b4:f8:99:89:9b:3e:c8:f5:1a:
1a:07:19:be:b2:a5:d5:4a:bf:00:31:f2:2b:a5:ff:
cc:3d:a4:9e:1a:b5:3d:4c:61:ef:37:87:e8:6c:d6:
27:70:d8:7b:fd:86:d5:ae:46:05:03:76:0b:22:7e:
a2:49:1a:f0:54:1b:01:57:07:8a:f4:98:99:6c:72:
a9:e1:e3:ac:46:95:dd:4b:f8:44:73:a5:35:a2:cf:
a5:1b:01:dc:1f:ab:9d:8d:65:1f:75:87:af:00:04:
9e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:D0:4B:0C:72:04:CD:6B:BB:69:7C:54:8C:CC:13:E3:35:9F:45:80
X509v3 Authority Key Identifier:
keyid:62:7A:99:50:9E:D5:1D:F9:3A:33:F2:A4:E2:FD:66:2D:1C:8D:66:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:9e:a0:4d:63:90:ad:d1:23:cb:fb:54:8a:10:e8:64:e2:7e:
81:c6:19:7d:4d:1d:1a:68:38:c8:0c:90:ec:78:26:65:6a:ef:
2f:b2:2f:0d:eb:a3:46:4e:ef:f9:a0:ce:16:be:96:33:39:d6:
82:92:d9:a4:e5:9f:d2:45:d8:80:91:75:db:8b:9c:19:ba:24:
e9:16:54:02:27:ce:54:9e:47:24:78:80:69:88:9e:72:59:cf:
c2:d9:22:97:ed:46:a2:ec:1d:57:b4:52:a3:60:51:67:dc:12:
2b:02:14:7f:42:49:fe:70:c4:d7:85:cf:58:27:72:e2:67:e4:
a8:81:e7:60:55:dd:7c:00:3b:e4:f8:2f:73:0b:fa:26:91:40:
f1:fd:8c:bf:07:90:f8:b4:a9:98:13:ca:d6:68:a3:51:c6:4f:
18:b2:a4:6a:a7:1f:a7:e2:e3:9e:ce:a6:9e:71:f0:79:bd:d1:
5c:a3:19:44:70:f1:66:5b:07:f2:52:6e:05:b1:ee:a1:b6:32:
62:a0:b6:87:cd:29:f6:57:19:1b:a7:1a:75:ba:a9:48:12:a4:
d8:8e:34:eb:89:ae:8b:da:7e:f9:9e:a6:2f:0a:38:ed:b9:fa:
ce:b7:28:ec:86:32:9b:c1:c9:61:d7:75:8b:e3:72:49:28:8c:
10:ac:a2:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTlkh4sjCS5I37WUY+gZgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyN2E5OTUwOWVkNTFkZjkzYTMzZjJhNGUyZmQ2NjJkMWM4
ZDY2MGIwHhcNMjUwODIzMDUwMjE4WhcNMjUwODI0MDUwMjE4WjAzMTEwLwYDVQQD
EyhjMGQwNGIwYzcyMDRjZDZiYmI2OTdjNTQ4Y2NjMTNlMzM1OWY0NTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmNhrcVCDXnzfPtXgTJMUjo1ADqyp
faQangwWkQDad0jHeyQyi6R/m5JAtQC+XHeOltnlmvBSUTLX4OmB3PD616CyAUK5
Jx/WDsW6ZMJ1830c/yX/ddlZv0zyVKC4I2+vycymo/epWwYUEDyzMX04qQMUA0tQ
8DEZTm8M+lgyT350EO7XOYz9so1YU1XrNu8+ux/nhH/zyFvD/am0+JmJmz7I9Roa
Bxm+sqXVSr8AMfIrpf/MPaSeGrU9TGHvN4fobNYncNh7/YbVrkYFA3YLIn6iSRrw
VBsBVweK9JiZbHKp4eOsRpXdS/hEc6U1os+lGwHcH6udjWUfdYevAASeowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMDQSwxyBM1ru2l8VIzME+M1n0WAMB8GA1UdIwQY
MBaAFGJ6mVCe1R35OjPypOL9Zi0cjWYLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWW5xWlVKN1ZIZms2TV9LazR2MW1MUnlOWmdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy80NjM2NjYtMDBlMC00OTJlLWE0NjMt
MDEyOGQ5NzE3OWU4LzEvWW5xWlVKN1ZIZms2TV9LazR2MW1MUnlOWmdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy80NjM2NjYtMDBlMC00OTJlLWE0NjMtMDEyOGQ5NzE3OWU4
LzEvWW5xWlVKN1ZIZms2TV9LazR2MW1MUnlOWmdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT56gTWOQ
rdEjy/tUihDoZOJ+gcYZfU0dGmg4yAyQ7HgmZWrvL7IvDeujRk7v+aDOFr6WMznW
gpLZpOWf0kXYgJF124ucGbok6RZUAifOVJ5HJHiAaYieclnPwtkil+1GouwdV7RS
o2BRZ9wSKwIUf0JJ/nDE14XPWCdy4mfkqIHnYFXdfAA75Pgvcwv6JpFA8f2MvweQ
+LSpmBPK1mijUcZPGLKkaqcfp+Ljns6mnnHweb3RXKMZRHDxZlsH8lJuBbHuobYy
YqC2h80p9lcZG6cadbqpSBKk2I4064mui9p++Z6mLwo47bn6zrco7IYym8HJYdd1
i+NySSiMEKyisg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:38:20 2025 by rpki-client