Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
File: yy2f-G42PbNNBVbsFkUfL38wPSQ.mft (raw, json)
Hash identifier: 0AALIU6mGtOGO82pXBmwRf+Jd3owL3M7FyLxh48mAB0=
Subject key identifier: 99:52:D6:2F:CB:26:91:54:DF:DD:7E:A5:85:73:E9:BC:98:3D:BA:CF
Authority key identifier: CB:2D:9F:F8:6E:36:3D:B3:4D:05:56:EC:16:45:1F:2F:7F:30:3D:24
Certificate issuer: /CN=cb2d9ff86e363db34d0556ec16451f2f7f303d24
Certificate serial: 0197C4C9F48F46572058916BDE1A5D649604
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
Manifest number: 15BC
Signing time: Tue 01 Jul 2025 07:00:59 +0000
Manifest this update: Tue 01 Jul 2025 07:00:59 +0000
Manifest next update: Wed 02 Jul 2025 07:00:59 +0000
Files and hashes: 1: 92Huf3IHz49yEZcp8laODPaay4A.roa (hash: fHDvsxbqA8PNa+801vhXYVjpC3kLuwr6JG2deunc2nA=)
2: yy2f-G42PbNNBVbsFkUfL38wPSQ.crl (hash: z6ElMFVaLNzi++SmcT4vPkD1QBcr7cZaixcXR9oJ/48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 07:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c4:c9:f4:8f:46:57:20:58:91:6b:de:1a:5d:64:96:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb2d9ff86e363db34d0556ec16451f2f7f303d24
Validity
Not Before: Jul 1 07:00:59 2025 GMT
Not After : Jul 2 07:00:59 2025 GMT
Subject: CN=9952d62fcb269154dfdd7ea58573e9bc983dbacf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:da:2c:04:53:d4:61:3e:4f:f5:8d:ec:40:55:
ea:51:3d:41:7b:4f:dd:3e:c6:83:45:4e:7c:9c:76:
b7:82:24:28:9f:4f:ab:c6:8c:5e:89:fb:07:89:aa:
0b:0d:52:8b:ed:ff:20:5f:60:1d:03:22:3f:e0:e9:
8e:bd:e9:0f:02:9b:5a:ae:bd:ff:f2:65:ab:ab:06:
b7:0f:ef:32:a0:23:b7:46:d8:ff:29:63:3f:4f:be:
fa:9e:18:5c:68:cd:74:f9:cb:93:68:63:62:a1:3b:
9a:2d:94:3b:b5:65:92:cd:91:94:c9:ce:c4:ca:76:
0b:d4:22:1d:87:49:1a:4a:96:1b:00:c9:81:dc:8d:
eb:3b:c9:f4:3d:48:4a:89:39:c5:b3:73:26:c0:1a:
5c:b7:be:60:26:e0:e8:c5:8f:5c:5d:63:d5:a5:11:
d1:19:da:5e:50:5f:0b:c6:e2:5b:7b:99:45:60:5a:
52:07:96:1c:b8:6f:0c:59:67:02:a9:55:ab:32:61:
a4:0c:cc:bf:56:12:00:b9:1a:2a:4a:8f:e9:fc:5c:
d1:1c:02:6d:68:a0:3f:ac:a5:97:69:35:0f:a4:cb:
c6:1b:5e:ec:1a:b3:83:1d:43:18:8e:6f:60:4e:7b:
a3:b5:07:bf:9b:ef:be:fd:59:6f:d8:89:7a:67:17:
55:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:52:D6:2F:CB:26:91:54:DF:DD:7E:A5:85:73:E9:BC:98:3D:BA:CF
X509v3 Authority Key Identifier:
keyid:CB:2D:9F:F8:6E:36:3D:B3:4D:05:56:EC:16:45:1F:2F:7F:30:3D:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:6e:0e:c3:2c:97:20:34:83:05:34:25:1f:cb:57:30:c4:75:
92:47:ca:b7:fe:9c:51:09:3a:67:2a:28:44:99:74:6d:5e:e6:
6a:37:27:d2:87:d7:30:2f:ca:59:c9:ad:b3:a5:e6:01:34:ee:
7e:04:e7:5d:77:6c:59:3b:6f:69:95:4e:97:71:28:3e:d5:82:
3c:e1:da:0f:40:62:ff:01:0c:85:9b:80:a5:a4:49:b8:63:18:
71:66:93:9a:da:d9:33:c1:10:e8:b9:b9:3d:14:d8:74:33:61:
bc:a0:ac:95:4a:0a:c6:7d:75:90:40:92:d6:6c:27:d4:22:43:
ea:15:86:e9:0e:1d:9e:47:98:4b:b4:15:6d:04:af:7f:fe:08:
76:0d:63:3c:60:32:02:e6:f6:4c:07:08:f4:46:b3:97:b8:2d:
52:ce:d6:fb:70:d4:92:74:82:1a:bc:a7:a8:89:a3:df:ca:0b:
77:22:04:0d:b5:f7:6f:11:32:69:d0:b5:38:73:00:47:8b:90:
de:1b:ae:89:33:ec:28:81:60:b8:6f:8a:dc:d9:9c:46:63:ab:
31:c1:d2:fc:75:4b:e5:a3:fd:2e:a9:fd:4d:d3:77:a7:76:28:
8d:86:ab:a9:f7:b4:9c:9f:9b:f0:7c:d9:a3:05:c2:f8:fb:ae:
f7:1c:07:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfEyfSPRlcgWJFr3hpdZJYEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiMmQ5ZmY4NmUzNjNkYjM0ZDA1NTZlYzE2NDUxZjJmN2Yz
MDNkMjQwHhcNMjUwNzAxMDcwMDU5WhcNMjUwNzAyMDcwMDU5WjAzMTEwLwYDVQQD
Eyg5OTUyZDYyZmNiMjY5MTU0ZGZkZDdlYTU4NTczZTliYzk4M2RiYWNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29osBFPUYT5P9Y3sQFXqUT1Be0/d
PsaDRU58nHa3giQon0+rxoxeifsHiaoLDVKL7f8gX2AdAyI/4OmOvekPAptarr3/
8mWrqwa3D+8yoCO3Rtj/KWM/T776nhhcaM10+cuTaGNioTuaLZQ7tWWSzZGUyc7E
ynYL1CIdh0kaSpYbAMmB3I3rO8n0PUhKiTnFs3MmwBpct75gJuDoxY9cXWPVpRHR
GdpeUF8LxuJbe5lFYFpSB5YcuG8MWWcCqVWrMmGkDMy/VhIAuRoqSo/p/FzRHAJt
aKA/rKWXaTUPpMvGG17sGrODHUMYjm9gTnujtQe/m+++/Vlv2Il6ZxdVpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJlS1i/LJpFU391+pYVz6byYPbrPMB8GA1UdIwQY
MBaAFMstn/huNj2zTQVW7BZFHy9/MD0kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXkyZi1HNDJQYk5OQlZic0ZrVWZMMzh3UFNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9iMWFmNWItMDg5ZS00Y2JlLWJiZTkt
NDI1ZWU5NjhkZjBiLzEveXkyZi1HNDJQYk5OQlZic0ZrVWZMMzh3UFNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9iMWFmNWItMDg5ZS00Y2JlLWJiZTktNDI1ZWU5NjhkZjBi
LzEveXkyZi1HNDJQYk5OQlZic0ZrVWZMMzh3UFNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASW4OwyyX
IDSDBTQlH8tXMMR1kkfKt/6cUQk6ZyooRJl0bV7majcn0ofXMC/KWcmts6XmATTu
fgTnXXdsWTtvaZVOl3EoPtWCPOHaD0Bi/wEMhZuApaRJuGMYcWaTmtrZM8EQ6Lm5
PRTYdDNhvKCslUoKxn11kECS1mwn1CJD6hWG6Q4dnkeYS7QVbQSvf/4Idg1jPGAy
Aub2TAcI9Eazl7gtUs7W+3DUknSCGrynqImj38oLdyIEDbX3bxEyadC1OHMAR4uQ
3huuiTPsKIFguG+K3NmcRmOrMcHS/HVL5aP9Lqn9TdN3p3YojYarqfe0nJ+b8HzZ
owXC+Puu9xwHow==
-----END CERTIFICATE-----
Generated at Tue Jul 1 10:53:17 2025 by rpki-client