Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
File: YNxaADaNiuH7qZVDHwOkExrdipo.mft (raw, json)
Hash identifier: MEbI20fcbMolxXiSUb/fqKU16ZLQD2S0zTKx16p61Ig=
Subject key identifier: 79:F7:60:ED:71:7E:3E:29:8E:48:E6:EA:3B:5D:45:48:0E:70:8C:2F
Authority key identifier: 60:DC:5A:00:36:8D:8A:E1:FB:A9:95:43:1F:03:A4:13:1A:DD:8A:9A
Certificate issuer: /CN=60dc5a00368d8ae1fba995431f03a4131add8a9a
Certificate serial: 0198D4E0907DA49E7FC89AC849109D918BC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
Manifest number: 07F5
Signing time: Sat 23 Aug 2025 03:02:23 +0000
Manifest this update: Sat 23 Aug 2025 03:02:23 +0000
Manifest next update: Sun 24 Aug 2025 03:02:23 +0000
Files and hashes: 1: 2eWTXc6MdHH3SvAeJM9n6ydZI5Y.roa (hash: XnJT5JSjqE4Adj+ylm025sl/JK+1c1iwTV7Ra2tEO8w=)
2: YNxaADaNiuH7qZVDHwOkExrdipo.crl (hash: BR2OQFkn5Mmj8ehOrAQknsp/E3rmSDtu6iy0MEwB4D0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:90:7d:a4:9e:7f:c8:9a:c8:49:10:9d:91:8b:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60dc5a00368d8ae1fba995431f03a4131add8a9a
Validity
Not Before: Aug 23 03:02:23 2025 GMT
Not After : Aug 24 03:02:23 2025 GMT
Subject: CN=79f760ed717e3e298e48e6ea3b5d45480e708c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:aa:6f:2b:f6:6f:48:4b:9b:19:12:fe:19:b9:
6a:96:71:3b:2b:1d:89:fe:47:9f:ee:90:69:03:a9:
c0:08:15:7b:0b:95:ec:39:50:5d:51:2c:4f:f8:a9:
48:1b:93:2e:b7:7c:c9:0c:99:fa:62:95:c9:50:b4:
52:f1:3b:c2:b2:0c:ea:a2:11:ce:9c:b2:4a:84:a6:
dd:63:0a:09:44:2a:74:c8:ac:c1:8c:3c:ff:cb:ad:
9a:98:e5:f2:29:fb:45:95:8d:bb:d5:a2:05:47:83:
24:60:0d:e5:69:c9:89:34:9b:da:eb:ab:db:7c:bd:
db:39:b2:d5:e2:a6:08:a9:00:9c:e8:ea:23:2b:35:
cc:87:47:ac:a7:8e:93:80:b7:fc:ed:ce:dd:13:7e:
d3:a4:44:bc:3f:4a:2d:be:39:03:38:b9:41:77:a3:
8a:fb:c7:f8:b4:d2:5a:9a:d1:ca:ba:e8:94:05:65:
e9:c1:ed:86:ea:40:1d:bf:36:dc:88:ee:29:10:65:
2e:ea:53:7c:cf:f2:b2:6d:97:c2:cc:56:47:7b:43:
3a:a4:e4:a1:e1:e0:31:d8:f6:0e:00:0c:b4:8e:35:
2c:77:9e:77:49:8e:72:f5:87:07:fc:79:cb:85:1b:
25:f7:a5:c7:fa:f7:3a:f2:75:e3:e1:2a:b9:d2:22:
99:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F7:60:ED:71:7E:3E:29:8E:48:E6:EA:3B:5D:45:48:0E:70:8C:2F
X509v3 Authority Key Identifier:
keyid:60:DC:5A:00:36:8D:8A:E1:FB:A9:95:43:1F:03:A4:13:1A:DD:8A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:5b:66:12:3f:b0:01:da:da:6c:ed:98:d3:8c:48:68:c0:27:
f4:85:50:b9:fb:9c:e6:c6:90:27:0e:6f:5d:37:4a:5f:60:47:
4d:ee:2a:14:e2:37:93:a3:b0:06:ea:7b:01:66:bb:9a:31:0c:
6d:98:b2:2c:40:e7:16:63:05:06:42:b5:a9:ac:53:b1:9b:91:
6a:d1:8f:c1:cc:f7:b7:46:40:82:16:4b:99:8d:ca:51:75:48:
3b:1c:7d:ae:f1:14:24:7b:d1:4e:0f:57:e2:74:35:df:39:20:
2c:32:7a:51:83:0b:46:f8:5e:d6:74:0c:39:71:34:88:0d:7f:
cf:94:3f:e5:0b:53:92:39:28:06:28:82:b8:2c:a7:8a:b4:27:
a7:8f:da:24:2d:36:33:17:2a:f0:cc:7a:1f:3a:9a:bb:62:57:
43:2d:62:c8:86:31:72:5a:a8:be:52:a8:4c:56:46:54:be:22:
e3:1a:fc:6a:15:23:52:db:71:95:e1:fa:b3:29:f6:13:f8:64:
29:48:10:d0:b5:94:64:47:73:96:2a:a2:ff:9d:e9:a0:f3:9f:
00:b4:ac:23:d6:1f:6a:01:85:77:69:70:43:22:f5:01:83:75:
62:f1:00:c3:e5:5a:0a:bc:cd:fa:c8:0c:65:4b:bb:bf:ee:c8:
53:a5:fc:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4JB9pJ5/yJrISRCdkYvDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwZGM1YTAwMzY4ZDhhZTFmYmE5OTU0MzFmMDNhNDEzMWFk
ZDhhOWEwHhcNMjUwODIzMDMwMjIzWhcNMjUwODI0MDMwMjIzWjAzMTEwLwYDVQQD
Eyg3OWY3NjBlZDcxN2UzZTI5OGU0OGU2ZWEzYjVkNDU0ODBlNzA4YzJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1apvK/ZvSEubGRL+GblqlnE7Kx2J
/kef7pBpA6nACBV7C5XsOVBdUSxP+KlIG5Mut3zJDJn6YpXJULRS8TvCsgzqohHO
nLJKhKbdYwoJRCp0yKzBjDz/y62amOXyKftFlY271aIFR4MkYA3lacmJNJva66vb
fL3bObLV4qYIqQCc6OojKzXMh0esp46TgLf87c7dE37TpES8P0otvjkDOLlBd6OK
+8f4tNJamtHKuuiUBWXpwe2G6kAdvzbciO4pEGUu6lN8z/KybZfCzFZHe0M6pOSh
4eAx2PYOAAy0jjUsd553SY5y9YcH/HnLhRsl96XH+vc68nXj4Sq50iKZowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHn3YO1xfj4pjkjm6jtdRUgOcIwvMB8GA1UdIwQY
MBaAFGDcWgA2jYrh+6mVQx8DpBMa3YqaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWU54YUFEYU5pdUg3cVpWREh3T2tFeHJkaXBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi80M2Q2M2EtYTkzNi00NTkzLTg4MjYt
ZWJiMzk4MmMyZWIwLzEvWU54YUFEYU5pdUg3cVpWREh3T2tFeHJkaXBvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi80M2Q2M2EtYTkzNi00NTkzLTg4MjYtZWJiMzk4MmMyZWIw
LzEvWU54YUFEYU5pdUg3cVpWREh3T2tFeHJkaXBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACFtmEj+w
AdrabO2Y04xIaMAn9IVQufuc5saQJw5vXTdKX2BHTe4qFOI3k6OwBup7AWa7mjEM
bZiyLEDnFmMFBkK1qaxTsZuRatGPwcz3t0ZAghZLmY3KUXVIOxx9rvEUJHvRTg9X
4nQ13zkgLDJ6UYMLRvhe1nQMOXE0iA1/z5Q/5QtTkjkoBiiCuCynirQnp4/aJC02
Mxcq8Mx6Hzqau2JXQy1iyIYxclqovlKoTFZGVL4i4xr8ahUjUttxleH6syn2E/hk
KUgQ0LWUZEdzliqi/53poPOfALSsI9YfagGFd2lwQyL1AYN1YvEAw+VaCrzN+sgM
ZUu7v+7IU6X8gg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:12:39 2025 by rpki-client