Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
File: YhuOSG7srmEk3hBJT9OROe1KN8s.mft (raw, json)
Hash identifier: XBDpf0JDbaIyffxDa7YZ+Piki3uBOmt4gTSrQCe5jUo=
Subject key identifier: 69:A1:0A:52:54:94:C5:A9:12:20:B9:DE:A4:26:FB:F5:53:E9:88:DE
Authority key identifier: 62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
Certificate issuer: /CN=621b8e486eecae6124de10494fd39139ed4a37cb
Certificate serial: 0197B8C5B7B00476A50B5F1A18934D528B39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 23:00:54 +0000
Manifest this update: Sat 28 Jun 2025 23:00:54 +0000
Manifest next update: Sun 29 Jun 2025 23:00:54 +0000
Files and hashes: 1: YhuOSG7srmEk3hBJT9OROe1KN8s.crl (hash: FmIwOchnVt6sUhh/0V0M5jzYNnApe30xLzhAnEUAA1U=)
2: eKGme1_RE2Cve029wfoTPnjkx8E.roa (hash: 7e5ken09Fa398flHkK+xPpARVfWAIKVd53mQhTUCt6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:c5:b7:b0:04:76:a5:0b:5f:1a:18:93:4d:52:8b:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621b8e486eecae6124de10494fd39139ed4a37cb
Validity
Not Before: Jun 28 23:00:54 2025 GMT
Not After : Jun 29 23:00:54 2025 GMT
Subject: CN=69a10a525494c5a91220b9dea426fbf553e988de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c4:b1:49:07:0f:bc:88:ec:d6:ed:e0:47:97:
95:cd:00:3c:99:54:b4:d8:05:1f:67:64:44:dc:4f:
e6:98:5e:aa:4f:a5:a9:74:23:bf:5b:4e:3a:d8:55:
81:0f:94:36:f9:c2:aa:83:e8:1a:94:67:7a:8f:ef:
8e:03:ec:97:bf:c4:ae:4d:44:22:2b:a8:af:3a:2d:
b3:eb:36:84:93:66:05:b1:9c:38:48:ef:b3:75:41:
4a:32:e1:27:bf:d3:96:f5:32:ce:ef:2f:46:52:93:
0e:de:cb:f3:5a:f7:dc:ef:55:3d:19:12:a3:2e:7c:
60:1a:29:89:79:b7:a9:15:6a:c5:65:12:9d:74:8b:
0c:c2:36:95:b3:e5:05:96:d4:bc:09:a7:41:0d:08:
c9:37:e9:35:4d:08:63:44:f3:9c:62:31:ed:be:47:
d7:96:66:18:ae:bd:88:5e:70:06:a7:ce:d9:2d:04:
a3:c3:9d:aa:87:ab:d5:86:a1:78:55:a9:69:ee:a1:
2e:e3:a5:7e:15:d0:c4:b7:fc:79:0c:7d:e3:87:12:
3f:73:ad:ee:1d:af:08:ef:31:0f:09:9d:18:5b:22:
a7:18:80:05:f4:43:57:e0:7b:a7:f9:e3:9b:72:d9:
b0:1d:b4:23:b0:be:7a:e3:6a:58:24:49:7e:2c:32:
2d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:A1:0A:52:54:94:C5:A9:12:20:B9:DE:A4:26:FB:F5:53:E9:88:DE
X509v3 Authority Key Identifier:
keyid:62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:d8:64:eb:f6:ae:cf:47:78:e8:9d:ab:68:99:7b:bd:b9:f7:
3f:39:1d:8d:35:de:08:7f:5a:96:cf:92:68:ab:80:ce:0d:6a:
b7:9e:b9:60:cf:dd:ca:47:43:9c:fc:92:78:fa:9e:84:0c:df:
9a:8d:c4:75:b5:81:bb:fb:60:bc:ad:9d:cc:34:cb:c5:26:b9:
91:32:f1:81:a9:55:5a:ed:d9:00:71:3c:16:e9:ef:2c:fb:bc:
cf:7e:78:09:44:fe:4f:67:10:ea:59:b4:06:77:4c:cd:55:32:
7c:0f:6f:91:fb:53:ea:d2:24:44:95:fb:a1:e4:5d:f7:0c:43:
18:32:47:03:f3:11:20:26:78:32:dc:30:5d:61:29:7a:54:5c:
50:03:04:eb:e9:99:7b:ee:9c:b7:c0:00:e1:76:52:54:ba:98:
e9:86:8b:bf:bf:44:97:6d:b0:e8:18:3a:c0:8d:ad:8a:c3:f3:
28:7d:b4:01:ad:70:4a:39:7f:91:ff:43:7a:7d:3e:e2:29:4d:
cd:d8:ea:8d:f1:34:33:01:04:14:19:e3:d1:7b:10:77:2a:d0:
8a:5f:1c:ee:f7:bf:1c:2a:d4:e1:79:8c:fc:34:9b:b7:f2:23:
6a:b2:8e:45:3b:9c:1c:e5:05:c0:68:e5:a1:11:f5:d3:8c:de:
ae:ee:7e:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4xbewBHalC18aGJNNUos5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMWI4ZTQ4NmVlY2FlNjEyNGRlMTA0OTRmZDM5MTM5ZWQ0
YTM3Y2IwHhcNMjUwNjI4MjMwMDU0WhcNMjUwNjI5MjMwMDU0WjAzMTEwLwYDVQQD
Eyg2OWExMGE1MjU0OTRjNWE5MTIyMGI5ZGVhNDI2ZmJmNTUzZTk4OGRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjcSxSQcPvIjs1u3gR5eVzQA8mVS0
2AUfZ2RE3E/mmF6qT6WpdCO/W0462FWBD5Q2+cKqg+galGd6j++OA+yXv8SuTUQi
K6ivOi2z6zaEk2YFsZw4SO+zdUFKMuEnv9OW9TLO7y9GUpMO3svzWvfc71U9GRKj
LnxgGimJebepFWrFZRKddIsMwjaVs+UFltS8CadBDQjJN+k1TQhjRPOcYjHtvkfX
lmYYrr2IXnAGp87ZLQSjw52qh6vVhqF4Valp7qEu46V+FdDEt/x5DH3jhxI/c63u
Ha8I7zEPCZ0YWyKnGIAF9ENX4Hun+eObctmwHbQjsL5642pYJEl+LDItnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGmhClJUlMWpEiC53qQm+/VT6YjeMB8GA1UdIwQY
MBaAFGIbjkhu7K5hJN4QSU/TkTntSjfLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWh1T1NHN3NybUVrM2hCSlQ5T1JPZTFLTjhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC81NDIxM2QtYzNlZC00ZDY3LWI5YmYt
N2JhMTM2ZjUxZWY5LzEvWWh1T1NHN3NybUVrM2hCSlQ5T1JPZTFLTjhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC81NDIxM2QtYzNlZC00ZDY3LWI5YmYtN2JhMTM2ZjUxZWY5
LzEvWWh1T1NHN3NybUVrM2hCSlQ5T1JPZTFLTjhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUNhk6/au
z0d46J2raJl7vbn3PzkdjTXeCH9als+SaKuAzg1qt565YM/dykdDnPySePqehAzf
mo3EdbWBu/tgvK2dzDTLxSa5kTLxgalVWu3ZAHE8FunvLPu8z354CUT+T2cQ6lm0
BndMzVUyfA9vkftT6tIkRJX7oeRd9wxDGDJHA/MRICZ4MtwwXWEpelRcUAME6+mZ
e+6ct8AA4XZSVLqY6YaLv79El22w6Bg6wI2tisPzKH20Aa1wSjl/kf9Den0+4ilN
zdjqjfE0MwEEFBnj0XsQdyrQil8c7ve/HCrU4XmM/DSbt/IjarKORTucHOUFwGjl
oRH104zeru5+jA==
-----END CERTIFICATE-----
Generated at Sun Jun 29 02:17:04 2025 by rpki-client