Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
File: YEBzL9vKpSkA2yRiB1v07xUVlpU.mft (raw, json)
Hash identifier: DB+OlQ+ZdCBxoyLO44+liFTDS9ERZXjiVJ0vCL4Uw2g=
Subject key identifier: 53:A6:8B:AE:42:1B:49:AA:0A:64:C8:C0:5E:5D:8F:E2:7B:C7:D9:DC
Authority key identifier: 60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
Certificate issuer: /CN=6040732fdbcaa52900db2462075bf4ef15159695
Certificate serial: 0197B632D5F6DD4DA7535FC375E8DC6D81DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
Manifest number: 0465
Signing time: Sat 28 Jun 2025 11:01:14 +0000
Manifest this update: Sat 28 Jun 2025 11:01:14 +0000
Manifest next update: Sun 29 Jun 2025 11:01:14 +0000
Files and hashes: 1: 2zI93eWS4MAq1q_HzWCmHMK0vvc.roa (hash: OPrS0FrS6pSekQT7FXidaqihz4eIxPAHQ00wl3WWNU8=)
2: YEBzL9vKpSkA2yRiB1v07xUVlpU.crl (hash: UNWoxHLnwcSv9RXxMK7c4Q44+0401xCjgq7Ass4eNWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:d5:f6:dd:4d:a7:53:5f:c3:75:e8:dc:6d:81:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6040732fdbcaa52900db2462075bf4ef15159695
Validity
Not Before: Jun 28 11:01:14 2025 GMT
Not After : Jun 29 11:01:14 2025 GMT
Subject: CN=53a68bae421b49aa0a64c8c05e5d8fe27bc7d9dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7b:0e:b5:c2:c5:26:29:a6:df:44:85:4b:85:
2e:bf:1d:33:6c:9a:ef:63:cf:95:7a:a5:f0:e1:0e:
7c:e7:c6:94:bc:dc:9b:ef:3c:c9:16:d0:ed:54:45:
67:d9:fe:94:43:cc:31:70:ae:54:fa:e5:7c:fb:3b:
23:b3:20:d8:3f:99:0c:5a:0a:9c:1a:1c:38:a0:c3:
f1:51:be:19:9c:aa:65:ae:01:cd:fa:56:e2:7b:e8:
8f:d2:d9:db:72:dd:45:30:99:93:e8:4f:d2:a6:b7:
05:0d:c8:89:0c:28:44:d0:40:68:03:64:e4:13:29:
d3:ba:e9:58:d2:52:a6:65:39:36:6b:f5:79:9c:07:
8e:5f:6b:76:d3:4c:ad:bd:8a:4f:57:01:b5:a3:ea:
d3:9a:1a:a1:a7:80:a0:b7:a9:1f:fa:bd:d7:75:78:
7a:06:c2:10:7d:7b:bf:4d:c1:4c:f1:68:64:d5:f3:
d0:eb:2d:62:18:cd:30:57:48:3c:07:d7:4c:67:5d:
e1:51:b8:6a:db:a4:60:84:67:e4:ff:5b:04:92:96:
c7:89:9e:e3:8a:f4:32:53:7d:84:6b:7c:6d:b4:2b:
7d:b4:81:29:1d:4f:3d:42:b0:52:31:45:ae:44:15:
33:12:7a:e3:27:97:04:05:0e:33:5e:2a:52:e1:71:
21:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A6:8B:AE:42:1B:49:AA:0A:64:C8:C0:5E:5D:8F:E2:7B:C7:D9:DC
X509v3 Authority Key Identifier:
keyid:60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:a5:74:f7:aa:b7:76:0a:77:ed:2f:0c:1f:bb:79:1c:b6:84:
d4:29:8c:a1:db:b7:89:0a:cd:49:2b:97:eb:50:75:2b:86:4a:
fc:5e:b1:7d:06:2e:51:10:02:a3:53:89:8d:ce:7e:d7:1e:59:
7d:89:db:d5:ef:68:e1:bf:6d:40:d9:3f:44:85:9a:c9:c5:99:
be:8e:59:7f:b5:cc:cc:34:93:4f:88:9e:26:ed:57:2c:18:aa:
d6:71:2c:bd:36:73:8b:30:9d:ed:6b:37:2e:5e:44:bd:98:ec:
da:02:4b:8a:1b:49:e4:05:34:5f:e4:71:cd:4f:5e:3b:54:06:
4c:21:81:1e:fe:a1:3c:13:b7:a9:ec:b5:96:4a:90:be:1b:d4:
8d:17:b9:b0:fa:d1:60:20:3c:97:d2:9b:95:40:5e:0c:bc:19:
c5:63:f7:a4:ec:ab:01:c6:24:cd:b1:56:c7:a0:88:73:dc:37:
10:16:61:9f:e7:2f:01:87:1f:6d:ff:8d:b5:42:96:1d:a7:ec:
32:b4:58:cf:ac:b8:e9:df:fd:24:40:85:5c:3c:23:7a:11:71:
83:e1:e3:74:3f:75:db:ca:b3:39:50:e1:14:a0:55:d1:83:2e:
04:8e:cf:b8:1b:3a:51:35:47:c0:0b:68:a6:2b:7e:65:00:b8:
6f:75:c1:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2MtX23U2nU1/DdejcbYHbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNDA3MzJmZGJjYWE1MjkwMGRiMjQ2MjA3NWJmNGVmMTUx
NTk2OTUwHhcNMjUwNjI4MTEwMTE0WhcNMjUwNjI5MTEwMTE0WjAzMTEwLwYDVQQD
Eyg1M2E2OGJhZTQyMWI0OWFhMGE2NGM4YzA1ZTVkOGZlMjdiYzdkOWRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApXsOtcLFJimm30SFS4Uuvx0zbJrv
Y8+VeqXw4Q5858aUvNyb7zzJFtDtVEVn2f6UQ8wxcK5U+uV8+zsjsyDYP5kMWgqc
Ghw4oMPxUb4ZnKplrgHN+lbie+iP0tnbct1FMJmT6E/SprcFDciJDChE0EBoA2Tk
EynTuulY0lKmZTk2a/V5nAeOX2t200ytvYpPVwG1o+rTmhqhp4Cgt6kf+r3XdXh6
BsIQfXu/TcFM8Whk1fPQ6y1iGM0wV0g8B9dMZ13hUbhq26RghGfk/1sEkpbHiZ7j
ivQyU32Ea3xttCt9tIEpHU89QrBSMUWuRBUzEnrjJ5cEBQ4zXipS4XEhWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFOmi65CG0mqCmTIwF5dj+J7x9ncMB8GA1UdIwQY
MBaAFGBAcy/byqUpANskYgdb9O8VFZaVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUVCekw5dktwU2tBMnlSaUIxdjA3eFVWbHBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy81Njc2YTMtOWMzOS00ZGIwLTk1MWUt
ZDJiNjk4MmJjNDg0LzEvWUVCekw5dktwU2tBMnlSaUIxdjA3eFVWbHBVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy81Njc2YTMtOWMzOS00ZGIwLTk1MWUtZDJiNjk4MmJjNDg0
LzEvWUVCekw5dktwU2tBMnlSaUIxdjA3eFVWbHBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEqV096q3
dgp37S8MH7t5HLaE1CmModu3iQrNSSuX61B1K4ZK/F6xfQYuURACo1OJjc5+1x5Z
fYnb1e9o4b9tQNk/RIWaycWZvo5Zf7XMzDSTT4ieJu1XLBiq1nEsvTZzizCd7Ws3
Ll5EvZjs2gJLihtJ5AU0X+RxzU9eO1QGTCGBHv6hPBO3qey1lkqQvhvUjRe5sPrR
YCA8l9KblUBeDLwZxWP3pOyrAcYkzbFWx6CIc9w3EBZhn+cvAYcfbf+NtUKWHafs
MrRYz6y46d/9JECFXDwjehFxg+HjdD9128qzOVDhFKBV0YMuBI7PuBs6UTVHwAto
pit+ZQC4b3XB/w==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:38:51 2025 by rpki-client