Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
File: YhoTCpDLA344A_6gv0ZaoIL-NJg.mft (raw, json)
Hash identifier: xJDEiw1QI1iYX3/E6NZZW9cf4ydSX2JpRuL0wao89wU=
Subject key identifier: 95:12:C0:EB:33:00:0F:F3:61:C7:B7:C6:DC:FA:D5:53:33:45:4B:88
Authority key identifier: 62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
Certificate issuer: /CN=621a130a90cb037e3803fea0bf465aa082fe3498
Certificate serial: 0198D54DC5F3AF058509BC628F6A53FD3D6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
Manifest number: 0471
Signing time: Sat 23 Aug 2025 05:01:40 +0000
Manifest this update: Sat 23 Aug 2025 05:01:40 +0000
Manifest next update: Sun 24 Aug 2025 05:01:40 +0000
Files and hashes: 1: 8tq6vUxikXVafkdQNOumeQjFfpc.roa (hash: UpmsMokgr2OHdk8MVVsUZdaiVZYh5g21JKYfdCc4ZA8=)
2: YhoTCpDLA344A_6gv0ZaoIL-NJg.crl (hash: MG0oXdepHRH+TApqtNOKRlJVTTSWuIsFLWY63l7PmcU=)
3: j89ASOslTb0sA8qPaNCnvdarbHI.roa (hash: pTH6+0WVaBMdNBqgh83yrPXmlHTEaPDbAotvSzt0CT4=)
4: vSrVfCiFhwuThaFge_HlQGTrHjk.roa (hash: Bc63krCzWLaf7LOD/k916HgQOiH2H7M6asbeefYBGos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:c5:f3:af:05:85:09:bc:62:8f:6a:53:fd:3d:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621a130a90cb037e3803fea0bf465aa082fe3498
Validity
Not Before: Aug 23 05:01:40 2025 GMT
Not After : Aug 24 05:01:40 2025 GMT
Subject: CN=9512c0eb33000ff361c7b7c6dcfad55333454b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fd:d6:3b:6a:76:2b:0c:af:bd:ff:b9:f6:34:
bd:ac:28:b4:79:38:ae:72:53:5c:2e:ef:ae:59:01:
a7:4c:17:f8:e5:db:99:b1:dd:75:b3:dc:5b:dc:44:
2e:79:4a:62:39:60:ab:08:32:3d:c4:2e:1c:bf:43:
0f:6b:14:38:e0:a0:24:e3:7a:6a:b2:31:b4:8b:9a:
58:13:97:da:c5:dd:39:cf:49:9c:e2:43:d6:5f:12:
76:43:58:e5:b9:85:f0:c5:09:7d:04:39:99:ba:f1:
35:67:23:e7:7f:72:66:2d:b8:56:1a:d7:19:7f:df:
ac:c8:d3:52:8a:b7:4e:42:4b:64:05:83:cc:2a:e5:
2c:2b:e5:08:9d:60:45:7e:cd:9a:93:13:09:d4:12:
b4:6a:24:ae:c8:07:88:7d:84:3d:ea:cb:19:70:39:
d5:e2:4d:75:69:ba:02:76:50:d9:22:77:b7:03:ad:
a3:04:a6:d4:ca:b7:13:9f:c6:94:a4:4e:94:74:ff:
88:1d:e7:7e:87:db:d6:fe:34:1b:85:f2:ab:d6:2e:
6e:a4:93:08:e8:c1:7b:b3:16:0b:d0:e3:f1:ec:b6:
f3:b9:02:17:3e:d6:4a:b9:a6:42:b4:2c:ec:0d:b4:
71:59:71:79:68:ec:d5:c2:9a:89:e0:fc:85:ad:72:
ee:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:12:C0:EB:33:00:0F:F3:61:C7:B7:C6:DC:FA:D5:53:33:45:4B:88
X509v3 Authority Key Identifier:
keyid:62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:3f:aa:bc:b3:3e:ab:7b:4c:a2:b5:e4:f6:2f:b7:33:b2:5e:
db:ba:51:9a:49:59:fe:67:f2:66:85:44:a7:e1:cb:51:e0:f3:
6f:f4:b8:4f:7c:0a:95:f2:72:73:43:ee:88:03:fa:e7:7b:9e:
65:57:2b:66:b7:22:9e:1b:97:26:a3:e0:14:4b:9c:a7:32:5e:
0f:cf:f9:01:9b:4f:9c:c8:2f:56:37:42:c6:06:d0:64:b5:e2:
55:6f:7d:4d:4b:fa:74:58:ad:75:41:0d:80:7a:1a:46:49:c6:
f5:1f:78:b5:39:81:86:c2:78:22:0f:9d:46:28:40:14:cd:a1:
ba:32:e6:d5:0b:92:20:39:31:c9:db:65:f5:a9:b9:41:95:10:
99:3b:68:fa:7c:0c:fd:c9:5a:96:ec:46:bd:56:6d:7c:cc:82:
67:6c:b9:3a:c5:4e:fc:b0:7b:5b:bd:35:7c:0d:89:4a:ae:c7:
4b:90:0e:34:59:4a:be:51:32:61:bb:c0:8d:80:25:10:87:2b:
4c:08:be:46:d2:65:e7:a9:26:80:01:5d:98:0e:78:d5:27:3f:
89:16:aa:e8:0f:2e:dc:b1:9a:41:a8:d5:1b:c9:f7:7a:ac:5d:
f4:d2:58:ad:7a:d9:13:2e:b9:c8:79:0f:e3:c1:61:a1:e6:79:
c7:ac:6d:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTcXzrwWFCbxij2pT/T1uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMWExMzBhOTBjYjAzN2UzODAzZmVhMGJmNDY1YWEwODJm
ZTM0OTgwHhcNMjUwODIzMDUwMTQwWhcNMjUwODI0MDUwMTQwWjAzMTEwLwYDVQQD
Eyg5NTEyYzBlYjMzMDAwZmYzNjFjN2I3YzZkY2ZhZDU1MzMzNDU0Yjg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzP3WO2p2Kwyvvf+59jS9rCi0eTiu
clNcLu+uWQGnTBf45duZsd11s9xb3EQueUpiOWCrCDI9xC4cv0MPaxQ44KAk43pq
sjG0i5pYE5faxd05z0mc4kPWXxJ2Q1jluYXwxQl9BDmZuvE1ZyPnf3JmLbhWGtcZ
f9+syNNSirdOQktkBYPMKuUsK+UInWBFfs2akxMJ1BK0aiSuyAeIfYQ96ssZcDnV
4k11aboCdlDZIne3A62jBKbUyrcTn8aUpE6UdP+IHed+h9vW/jQbhfKr1i5upJMI
6MF7sxYL0OPx7LbzuQIXPtZKuaZCtCzsDbRxWXF5aOzVwpqJ4PyFrXLuuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJUSwOszAA/zYce3xtz61VMzRUuIMB8GA1UdIwQY
MBaAFGIaEwqQywN+OAP+oL9GWqCC/jSYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWhvVENwRExBMzQ0QV82Z3YwWmFvSUwtTkpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC8yMTQ5MmYtMTY2My00MDlkLWJmYjIt
NmEwNDUxYzQ5ZDRkLzEvWWhvVENwRExBMzQ0QV82Z3YwWmFvSUwtTkpnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC8yMTQ5MmYtMTY2My00MDlkLWJmYjItNmEwNDUxYzQ5ZDRk
LzEvWWhvVENwRExBMzQ0QV82Z3YwWmFvSUwtTkpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAST+qvLM+
q3tMorXk9i+3M7Je27pRmklZ/mfyZoVEp+HLUeDzb/S4T3wKlfJyc0PuiAP653ue
ZVcrZrcinhuXJqPgFEucpzJeD8/5AZtPnMgvVjdCxgbQZLXiVW99TUv6dFitdUEN
gHoaRknG9R94tTmBhsJ4Ig+dRihAFM2hujLm1QuSIDkxydtl9am5QZUQmTto+nwM
/claluxGvVZtfMyCZ2y5OsVO/LB7W701fA2JSq7HS5AONFlKvlEyYbvAjYAlEIcr
TAi+RtJl56kmgAFdmA541Sc/iRaq6A8u3LGaQajVG8n3eqxd9NJYrXrZEy65yHkP
48FhoeZ5x6xtkA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:17:54 2025 by rpki-client