Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
File: yd_q7KItLSYYtDPPAKsUS9i4Db0.mft (raw, json)
Hash identifier: 3ldylIuS7zEf+nq0FsaSYk4zwlBWZA2cKTY38410pjc=
Subject key identifier: A1:D7:93:BF:B6:21:E5:6A:0F:59:8C:3D:A9:5B:15:5E:CD:3B:74:2B
Authority key identifier: C9:DF:EA:EC:A2:2D:2D:26:18:B4:33:CF:00:AB:14:4B:D8:B8:0D:BD
Certificate issuer: /CN=c9dfeaeca22d2d2618b433cf00ab144bd8b80dbd
Certificate serial: 0197B74592760D660BBDC2D0EB6561F0F630
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
Manifest number: 06E9
Signing time: Sat 28 Jun 2025 16:01:19 +0000
Manifest this update: Sat 28 Jun 2025 16:01:19 +0000
Manifest next update: Sun 29 Jun 2025 16:01:19 +0000
Files and hashes: 1: YSlfWP3DY80Smx0TIqkuPzTOoec.roa (hash: zxri6NDPBUgI6E9l7vT1svBXNo7QAt30+iiVihETiFE=)
2: yd_q7KItLSYYtDPPAKsUS9i4Db0.crl (hash: zplqftYXl1bfh/GuOVk91jMwGbpzFdAcDAdS9SuAaxI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:92:76:0d:66:0b:bd:c2:d0:eb:65:61:f0:f6:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9dfeaeca22d2d2618b433cf00ab144bd8b80dbd
Validity
Not Before: Jun 28 16:01:19 2025 GMT
Not After : Jun 29 16:01:19 2025 GMT
Subject: CN=a1d793bfb621e56a0f598c3da95b155ecd3b742b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:32:aa:2a:be:1a:84:8c:81:a2:65:32:68:2b:
d5:5f:a2:18:f0:65:20:35:ba:e1:70:98:23:10:a1:
bb:43:6c:38:61:58:a9:7d:8a:64:fd:67:3f:ad:c2:
54:b0:62:c3:74:86:45:25:ae:e7:1e:62:41:09:e9:
0e:9b:4a:64:1b:e9:b9:db:76:84:b5:9c:10:f2:ab:
06:b9:47:95:48:cd:3e:d7:e9:3a:a4:d3:36:a6:52:
a7:b9:e9:4a:40:85:35:49:8e:65:98:e5:94:34:e2:
60:a6:bb:e6:a4:29:3f:01:68:d8:46:6e:65:cf:20:
ac:7e:c3:6a:63:ef:90:36:b1:1a:a5:6a:db:31:2a:
23:56:ee:11:2d:1b:0d:cb:f2:94:f2:6d:eb:0b:b0:
98:69:10:f2:7d:4b:08:f5:c1:ff:a5:9b:36:62:df:
13:db:fa:55:5f:9a:2a:ea:73:4c:99:4a:13:23:08:
01:e9:08:b3:2c:4f:81:4c:0f:ff:51:4b:6f:28:78:
f7:cf:b2:b0:08:11:34:d7:eb:ef:31:71:de:90:93:
5a:ee:37:f7:45:de:2d:ad:1e:60:40:4e:9c:0a:50:
3f:73:1c:c4:28:23:10:ea:0d:89:91:5f:d6:db:3e:
bd:23:ed:73:93:92:4a:f1:c6:7d:91:4b:b5:f4:31:
a8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:D7:93:BF:B6:21:E5:6A:0F:59:8C:3D:A9:5B:15:5E:CD:3B:74:2B
X509v3 Authority Key Identifier:
keyid:C9:DF:EA:EC:A2:2D:2D:26:18:B4:33:CF:00:AB:14:4B:D8:B8:0D:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:8c:4c:24:3d:5b:91:b7:99:74:8e:a6:bf:c2:6e:8d:63:2d:
bb:5d:9a:b9:ea:fb:68:77:f7:e3:f4:7e:70:09:11:46:22:1f:
b8:f3:bb:4b:53:64:4d:a1:f1:d4:00:79:2b:56:c1:b2:47:67:
f4:56:77:ff:0d:d4:c3:fa:b1:ee:30:c3:5e:aa:6a:b8:f9:9c:
a8:5b:b6:13:38:1d:2a:dd:c8:3d:9e:ef:0a:f7:6b:d1:2e:83:
4d:23:7b:c7:3b:eb:8c:f4:49:52:be:41:d8:30:21:48:d1:16:
ba:28:2c:e8:0f:5d:21:55:7d:8a:7f:e2:43:d5:81:cc:f6:49:
19:f9:49:12:fd:92:94:dc:ea:a9:e2:00:71:f9:71:d6:57:e5:
f2:56:21:9e:c6:11:02:d3:ab:07:8f:8c:f2:cb:75:d5:6d:cd:
a3:0d:18:bc:3c:4d:ae:7b:87:44:db:28:09:2e:50:98:da:22:
54:06:d9:48:89:84:84:c4:c0:b0:fb:ab:e0:53:6e:53:cd:11:
8e:0e:6b:ad:09:96:e3:9c:ac:2f:b8:52:4a:84:ae:af:9f:53:
87:42:a4:8a:b1:1c:f8:ca:11:b0:57:2c:c3:bc:39:21:52:12:
53:05:0f:29:f0:64:5e:c3:8d:70:ae:96:01:16:a5:c2:12:69:
95:36:95:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3RZJ2DWYLvcLQ62Vh8PYwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZGZlYWVjYTIyZDJkMjYxOGI0MzNjZjAwYWIxNDRiZDhi
ODBkYmQwHhcNMjUwNjI4MTYwMTE5WhcNMjUwNjI5MTYwMTE5WjAzMTEwLwYDVQQD
EyhhMWQ3OTNiZmI2MjFlNTZhMGY1OThjM2RhOTViMTU1ZWNkM2I3NDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDKqKr4ahIyBomUyaCvVX6IY8GUg
NbrhcJgjEKG7Q2w4YVipfYpk/Wc/rcJUsGLDdIZFJa7nHmJBCekOm0pkG+m523aE
tZwQ8qsGuUeVSM0+1+k6pNM2plKnuelKQIU1SY5lmOWUNOJgprvmpCk/AWjYRm5l
zyCsfsNqY++QNrEapWrbMSojVu4RLRsNy/KU8m3rC7CYaRDyfUsI9cH/pZs2Yt8T
2/pVX5oq6nNMmUoTIwgB6QizLE+BTA//UUtvKHj3z7KwCBE01+vvMXHekJNa7jf3
Rd4trR5gQE6cClA/cxzEKCMQ6g2JkV/W2z69I+1zk5JK8cZ9kUu19DGo0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKHXk7+2IeVqD1mMPalbFV7NO3QrMB8GA1UdIwQY
MBaAFMnf6uyiLS0mGLQzzwCrFEvYuA29MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRfcTdLSXRMU1lZdERQUEFLc1VTOWk0RGIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi85NTdiMTUtZDVkYy00M2U1LTgwOWMt
YmMzNjJkMzc2OGJkLzEveWRfcTdLSXRMU1lZdERQUEFLc1VTOWk0RGIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi85NTdiMTUtZDVkYy00M2U1LTgwOWMtYmMzNjJkMzc2OGJk
LzEveWRfcTdLSXRMU1lZdERQUEFLc1VTOWk0RGIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR4xMJD1b
kbeZdI6mv8JujWMtu12auer7aHf34/R+cAkRRiIfuPO7S1NkTaHx1AB5K1bBskdn
9FZ3/w3Uw/qx7jDDXqpquPmcqFu2EzgdKt3IPZ7vCvdr0S6DTSN7xzvrjPRJUr5B
2DAhSNEWuigs6A9dIVV9in/iQ9WBzPZJGflJEv2SlNzqqeIAcflx1lfl8lYhnsYR
AtOrB4+M8st11W3Now0YvDxNrnuHRNsoCS5QmNoiVAbZSImEhMTAsPur4FNuU80R
jg5rrQmW45ysL7hSSoSur59Th0KkirEc+MoRsFcsw7w5IVISUwUPKfBkXsONcK6W
ARalwhJplTaVDA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:17:24 2025 by rpki-client