Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
File: yKQR5q7CPK13xDcrTXsLH8gtXcA.mft (raw, json)
Hash identifier: gK1jp/FdeQ0zsI1Ja60g5bddxySlFRK8EH5z1SjzigI=
Subject key identifier: DB:55:94:4C:32:DB:F4:04:08:4B:2D:7A:26:51:4A:E1:4A:8E:BD:03
Authority key identifier: C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
Certificate issuer: /CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Certificate serial: 0197B7455FBC48BD3FE621DFDD7397BFD58D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 16:01:06 +0000
Manifest this update: Sat 28 Jun 2025 16:01:06 +0000
Manifest next update: Sun 29 Jun 2025 16:01:06 +0000
Files and hashes: 1: yKQR5q7CPK13xDcrTXsLH8gtXcA.crl (hash: 9vGtsEOKqLE5/0Dhj42LOtxIYUX6KpbPKG8WF89ikoU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 16:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:5f:bc:48:bd:3f:e6:21:df:dd:73:97:bf:d5:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Validity
Not Before: Jun 28 16:01:06 2025 GMT
Not After : Jun 29 16:01:06 2025 GMT
Subject: CN=db55944c32dbf404084b2d7a26514ae14a8ebd03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:fb:36:8b:06:19:91:ea:79:b7:16:88:11:f2:
65:3d:cc:d6:93:01:01:5e:be:6c:2d:9f:6c:a4:c0:
be:36:02:df:68:fd:07:d3:2b:01:2e:93:36:ce:93:
cc:63:8d:6b:e8:fa:fd:1a:5c:dc:9a:be:6a:b1:d6:
67:d1:f6:00:b7:2b:4f:71:6a:f7:dc:0e:14:82:a1:
37:41:ff:62:bf:b3:d1:3f:5e:9c:a3:f5:f4:4c:f7:
b5:8d:4d:a6:69:b4:37:b7:85:75:7d:77:16:dc:0d:
96:ae:c9:31:8e:4d:f6:f8:55:5f:e2:63:ae:ca:64:
a4:ed:56:e2:f6:2c:d3:98:3f:4a:af:36:5e:b5:a6:
7b:8e:23:69:fd:97:ed:b2:5d:cc:82:68:27:d9:85:
8d:ed:0a:22:38:66:21:0d:6b:9e:b9:e1:6c:27:b2:
fb:25:08:cb:22:4e:59:42:2a:92:a5:d1:73:83:98:
7f:d5:31:26:08:d3:c3:ed:72:05:cd:e1:0d:92:d4:
bc:bc:b5:b3:1c:7b:40:71:55:f1:b8:f1:76:97:75:
19:3c:02:d0:94:ef:1a:c1:9b:f4:c3:22:1a:d6:8c:
50:8b:21:b9:85:c6:1f:0b:41:c5:11:db:04:71:d8:
8d:23:1b:4e:18:6e:b9:55:57:75:dc:e0:1b:a0:eb:
95:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:55:94:4C:32:DB:F4:04:08:4B:2D:7A:26:51:4A:E1:4A:8E:BD:03
X509v3 Authority Key Identifier:
keyid:C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:69:46:96:99:db:99:a5:3d:af:b9:19:fd:2b:70:ac:6d:a0:
66:b1:b1:35:7f:bf:76:ba:54:d4:e1:be:77:7b:0a:8a:73:c1:
76:87:49:20:66:f1:89:90:96:48:c8:02:6a:99:2a:2d:13:57:
37:f2:1d:e6:d3:70:5b:a3:0a:d1:e8:8e:22:42:13:2c:44:a9:
40:04:9b:c5:d2:19:6e:68:f2:88:46:6b:d9:a1:16:7f:91:f1:
7e:5a:ad:8e:c6:23:ed:a6:cb:4a:d6:63:4b:84:e5:a9:c3:3d:
3a:37:65:95:90:c6:ce:7c:90:e7:95:c3:5a:2b:26:0e:34:77:
ac:46:c4:34:1b:9f:04:1b:d4:f9:66:82:cf:30:c3:b8:e5:b5:
cf:21:c0:ab:76:c6:7f:5b:c7:ea:2a:38:68:f7:fd:8f:f6:07:
bf:f2:99:47:5a:10:bc:13:5f:55:d1:a5:7a:a3:3d:a7:77:e2:
ba:f7:1b:a9:1b:b5:8f:67:f9:e6:f7:67:1e:60:e5:f4:fc:ca:
aa:bf:f5:e8:63:70:d5:fd:53:0c:a1:3d:9c:ea:11:3e:bd:f4:
37:e1:76:f9:c2:ca:b9:39:94:98:78:db:43:6b:70:3f:83:ae:
3d:0e:f2:bf:84:91:78:24:77:df:4f:fc:c9:fe:9e:e7:cd:d1:
90:6a:c7:4d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3RV+8SL0/5iHf3XOXv9WNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4YTQxMWU2YWVjMjNjYWQ3N2M0MzcyYjRkN2IwYjFmYzgy
ZDVkYzAwHhcNMjUwNjI4MTYwMTA2WhcNMjUwNjI5MTYwMTA2WjAzMTEwLwYDVQQD
EyhkYjU1OTQ0YzMyZGJmNDA0MDg0YjJkN2EyNjUxNGFlMTRhOGViZDAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3fs2iwYZkep5txaIEfJlPczWkwEB
Xr5sLZ9spMC+NgLfaP0H0ysBLpM2zpPMY41r6Pr9Glzcmr5qsdZn0fYAtytPcWr3
3A4UgqE3Qf9iv7PRP16co/X0TPe1jU2mabQ3t4V1fXcW3A2Wrskxjk32+FVf4mOu
ymSk7Vbi9izTmD9KrzZetaZ7jiNp/Zftsl3Mgmgn2YWN7QoiOGYhDWueueFsJ7L7
JQjLIk5ZQiqSpdFzg5h/1TEmCNPD7XIFzeENktS8vLWzHHtAcVXxuPF2l3UZPALQ
lO8awZv0wyIa1oxQiyG5hcYfC0HFEdsEcdiNIxtOGG65VVd13OAboOuVJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNtVlEwy2/QECEsteiZRSuFKjr0DMB8GA1UdIwQY
MBaAFMikEeauwjytd8Q3K017Cx/ILV3AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUtRUjVxN0NQSzEzeERjclRYc0xIOGd0WGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy83YjU0MGYtYjgzYS00MGI5LWFlNmQt
Y2RjZWUyM2E4M2IwLzEveUtRUjVxN0NQSzEzeERjclRYc0xIOGd0WGNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy83YjU0MGYtYjgzYS00MGI5LWFlNmQtY2RjZWUyM2E4M2Iw
LzEveUtRUjVxN0NQSzEzeERjclRYc0xIOGd0WGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh2lGlpnb
maU9r7kZ/StwrG2gZrGxNX+/drpU1OG+d3sKinPBdodJIGbxiZCWSMgCapkqLRNX
N/Id5tNwW6MK0eiOIkITLESpQASbxdIZbmjyiEZr2aEWf5HxflqtjsYj7abLStZj
S4TlqcM9OjdllZDGznyQ55XDWismDjR3rEbENBufBBvU+WaCzzDDuOW1zyHAq3bG
f1vH6io4aPf9j/YHv/KZR1oQvBNfVdGleqM9p3fiuvcbqRu1j2f55vdnHmDl9PzK
qr/16GNw1f1TDKE9nOoRPr30N+F2+cLKuTmUmHjbQ2twP4OuPQ7yv4SReCR330/8
yf6e583RkGrHTQ==
-----END CERTIFICATE-----
Generated at Sun Jun 29 01:21:46 2025 by rpki-client