Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
File: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft (raw, json)
Hash identifier: d31eo1JZM0IERo/P4w9QRQ16XfPNS8pUNhT56FRYrsQ=
Subject key identifier: 5B:17:94:E4:DD:40:80:A9:D0:B5:97:C7:FE:88:70:72:80:4D:23:F1
Authority key identifier: CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
Certificate issuer: /CN=ca434d399d93a19d8a8108456c5575096c2ae588
Certificate serial: 0197C6B8631A0777C2BBE30312A3B21FB27D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
Manifest number: 05DE
Signing time: Tue 01 Jul 2025 16:01:02 +0000
Manifest this update: Tue 01 Jul 2025 16:01:02 +0000
Manifest next update: Wed 02 Jul 2025 16:01:02 +0000
Files and hashes: 1: 6KeHOxxWviP0lluNL5sOXVdQY7c.roa (hash: kUeVBsIsjzs7OuA1c4/VFEC1ddAvMO/ONIYaR+/BuFA=)
2: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl (hash: u0yaPHRRFRFgZuf7FIHYU8rdBB0GVcPBijaRXfX+OvA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 16:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:b8:63:1a:07:77:c2:bb:e3:03:12:a3:b2:1f:b2:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca434d399d93a19d8a8108456c5575096c2ae588
Validity
Not Before: Jul 1 16:01:02 2025 GMT
Not After : Jul 2 16:01:02 2025 GMT
Subject: CN=5b1794e4dd4080a9d0b597c7fe887072804d23f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:bb:00:80:16:b8:a0:66:a7:38:d3:09:a6:15:
46:4c:d6:b1:1f:ee:16:4f:41:1a:95:6a:da:49:ee:
6c:89:a4:53:3d:84:1e:64:61:8f:11:e3:84:52:17:
f9:db:8d:73:25:ea:88:ac:bd:97:d7:5d:49:4b:fd:
08:00:22:55:2d:0c:f8:f1:7a:b7:5f:e5:f1:4e:77:
91:1f:4a:1e:04:4e:03:52:ff:73:bb:96:e2:11:e9:
31:ff:54:20:bf:14:a6:f0:df:22:fc:a9:a6:70:ce:
7d:86:b5:82:ca:e7:ab:fa:d4:7f:50:e1:b5:9c:bc:
6a:1b:b5:a8:55:d1:92:f4:49:2b:ba:72:a3:bd:bf:
da:89:13:6b:6d:57:35:8f:a5:82:d7:4f:0a:b9:02:
23:8d:16:c5:82:18:62:e6:25:b9:cb:10:d7:6a:62:
44:93:91:ea:6a:fd:9a:99:39:18:a4:9a:ae:55:ec:
17:a5:fe:27:87:2f:33:57:9e:1d:e5:8c:60:db:10:
fd:07:8d:6e:22:e8:1a:4d:60:d6:41:2c:ab:24:cb:
de:b9:68:7f:bc:74:1a:85:86:cb:33:ba:e1:48:1c:
bd:a6:ec:64:02:74:20:8f:56:a8:9e:b4:7b:bf:d8:
f3:45:7d:dd:ff:f5:44:8b:b7:62:96:d0:56:d0:e0:
9b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:17:94:E4:DD:40:80:A9:D0:B5:97:C7:FE:88:70:72:80:4D:23:F1
X509v3 Authority Key Identifier:
keyid:CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:7f:0e:0b:4f:3d:67:be:3a:a0:2b:f4:e4:56:ba:e6:ae:d4:
6c:51:91:cc:62:90:05:d2:00:3f:a3:ae:0a:61:06:c4:e6:f1:
84:73:b6:cb:0d:ca:1b:65:26:bd:d4:74:46:cf:27:bb:a5:f7:
60:ab:a4:52:af:7f:dd:4f:04:f0:27:0f:ab:b9:d9:43:57:42:
be:f2:33:81:18:9b:2d:b8:fa:4b:3d:6f:99:cc:8b:4a:de:5e:
30:3a:6e:e8:da:bc:b0:c7:8f:81:dd:c3:7d:80:e0:f8:7c:8e:
24:13:29:4c:a7:8e:6a:86:37:4b:25:db:bb:56:61:d6:75:d3:
7b:92:8e:cd:db:38:fb:29:2a:8c:60:49:12:4b:f1:3f:35:1a:
a0:07:f2:c3:61:8d:6e:f2:53:65:88:1f:6a:a3:77:6a:50:0a:
46:c8:f5:03:13:a1:72:74:58:63:13:e9:c8:e8:85:d9:26:a0:
c7:e6:c4:93:bc:91:f1:64:9b:e7:49:5d:ee:5d:aa:51:22:d4:
cf:07:ef:2f:54:5a:c7:9b:d7:71:5e:c3:20:b9:89:e8:9b:09:
22:52:a9:40:e3:09:4e:7b:1d:2a:13:48:67:11:c5:24:aa:ec:
cd:94:62:47:f3:99:78:ed:df:fa:66:6d:88:02:69:00:ea:2a:
bf:53:c0:2d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfGuGMaB3fCu+MDEqOyH7J9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNDM0ZDM5OWQ5M2ExOWQ4YTgxMDg0NTZjNTU3NTA5NmMy
YWU1ODgwHhcNMjUwNzAxMTYwMTAyWhcNMjUwNzAyMTYwMTAyWjAzMTEwLwYDVQQD
Eyg1YjE3OTRlNGRkNDA4MGE5ZDBiNTk3YzdmZTg4NzA3MjgwNGQyM2YxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6bsAgBa4oGanONMJphVGTNaxH+4W
T0EalWraSe5siaRTPYQeZGGPEeOEUhf5241zJeqIrL2X111JS/0IACJVLQz48Xq3
X+XxTneRH0oeBE4DUv9zu5biEekx/1QgvxSm8N8i/KmmcM59hrWCyuer+tR/UOG1
nLxqG7WoVdGS9EkrunKjvb/aiRNrbVc1j6WC108KuQIjjRbFghhi5iW5yxDXamJE
k5Hqav2amTkYpJquVewXpf4nhy8zV54d5Yxg2xD9B41uIugaTWDWQSyrJMveuWh/
vHQahYbLM7rhSBy9puxkAnQgj1aonrR7v9jzRX3d//VEi7diltBW0OCbfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFsXlOTdQICp0LWXx/6IcHKATSPxMB8GA1UdIwQY
MBaAFMpDTTmdk6GdioEIRWxVdQlsKuWIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWtOTk9aMlRvWjJLZ1FoRmJGVjFDV3dxNVlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC82YWVjNmEtMzY4My00MDVhLTllNjEt
ZGIyMzY4MjcxOTEzLzEveWtOTk9aMlRvWjJLZ1FoRmJGVjFDV3dxNVlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC82YWVjNmEtMzY4My00MDVhLTllNjEtZGIyMzY4MjcxOTEz
LzEveWtOTk9aMlRvWjJLZ1FoRmJGVjFDV3dxNVlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfn8OC089
Z746oCv05Fa65q7UbFGRzGKQBdIAP6OuCmEGxObxhHO2yw3KG2UmvdR0Rs8nu6X3
YKukUq9/3U8E8CcPq7nZQ1dCvvIzgRibLbj6Sz1vmcyLSt5eMDpu6Nq8sMePgd3D
fYDg+HyOJBMpTKeOaoY3SyXbu1Zh1nXTe5KOzds4+ykqjGBJEkvxPzUaoAfyw2GN
bvJTZYgfaqN3alAKRsj1AxOhcnRYYxPpyOiF2Sagx+bEk7yR8WSb50ld7l2qUSLU
zwfvL1Rax5vXcV7DILmJ6JsJIlKpQOMJTnsdKhNIZxHFJKrszZRiR/OZeO3f+mZt
iAJpAOoqv1PALQ==
-----END CERTIFICATE-----
Generated at Tue Jul 1 20:35:11 2025 by rpki-client