Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
File: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft (raw, json)
Hash identifier: 1YRd+cPBSKzA3F3XMj9cF8jek/3y1Qh887sLdvUbc3s=
Subject key identifier: 3B:46:C7:97:23:4D:C4:9E:FA:18:81:72:6B:0C:B0:C7:64:DB:71:02
Authority key identifier: CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64
Certificate issuer: /CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64
Certificate serial: 0197469DE380E588583516E279813958C1F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
Manifest number: 012E
Signing time: Fri 06 Jun 2025 19:00:41 +0000
Manifest this update: Fri 06 Jun 2025 19:00:41 +0000
Manifest next update: Sat 07 Jun 2025 19:00:41 +0000
Files and hashes: 1: E1mhBRMNKUKpYCp6l6cYmmnl_S8.roa (hash: EfpfXPe85LjuFoEfBPlRSotwGgPrWv2BqUA6Yn79Kmg=)
2: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl (hash: LVCEd42b0Qt5HI5TY87IuxUks2+ahciTZIq18C8c4to=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9d:e3:80:e5:88:58:35:16:e2:79:81:39:58:c1:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64
Validity
Not Before: Jun 6 19:00:41 2025 GMT
Not After : Jun 7 19:00:41 2025 GMT
Subject: CN=3b46c797234dc49efa1881726b0cb0c764db7102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f7:86:28:c3:73:91:91:ea:53:4e:8f:5e:cf:
38:b0:0f:49:dc:f7:5c:03:64:4f:93:c4:42:80:a8:
9c:25:61:6f:1f:ec:2d:b9:42:1d:d9:94:1f:c8:94:
e6:0e:3c:ec:9c:cd:82:8b:70:6b:1d:1a:f0:50:8d:
f4:6d:a0:23:30:a4:20:e2:ef:91:38:ce:8e:1a:c9:
4e:cf:6d:18:97:95:fc:51:eb:30:b0:b7:43:1b:63:
fc:f2:1d:ce:08:62:70:50:6f:86:8d:37:fb:10:cd:
19:40:fd:90:9e:46:d1:ba:a9:20:91:9f:c8:bf:11:
6d:f5:82:fb:b0:af:ce:76:bd:ae:7c:ba:96:cd:2f:
0f:cf:7b:b4:f7:a1:c3:35:99:d7:e8:06:a0:d4:17:
6e:69:0c:24:2c:6d:69:5d:c0:95:14:09:e6:57:96:
84:23:54:3f:ab:8f:33:35:c7:0e:71:77:9b:8b:b2:
6c:19:52:ff:ea:ee:6d:bc:e0:39:37:63:fc:fe:34:
24:a8:c8:5d:88:e3:f6:8f:ba:ba:16:8e:cc:d4:8d:
df:1d:b5:80:78:c1:60:b1:34:43:fd:d2:79:76:5d:
1b:9f:8c:11:76:1f:64:ca:47:30:a2:00:86:27:88:
47:81:5e:9a:2a:26:33:1f:de:28:8e:84:1b:a9:97:
05:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:46:C7:97:23:4D:C4:9E:FA:18:81:72:6B:0C:B0:C7:64:DB:71:02
X509v3 Authority Key Identifier:
keyid:CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:4d:ea:a6:31:ae:af:3b:2a:82:82:5c:92:68:9f:f8:0b:2a:
ee:fe:bc:eb:d5:ab:4d:ce:34:d5:95:cf:15:4f:76:fa:52:a9:
c2:c0:e5:7f:e6:62:c2:fd:29:f9:5c:86:53:c1:13:16:8e:62:
6c:5e:79:11:6a:5b:2f:a6:5e:33:e4:8e:83:1b:ab:e9:08:00:
c5:6b:19:d3:ce:1c:50:38:8d:80:fc:02:37:25:68:7b:e8:83:
ad:a4:2b:d3:58:bc:5a:d8:c7:be:4d:0e:5a:0a:95:89:9e:4b:
cc:4a:1a:f9:46:57:0b:5a:58:f3:95:3b:a3:50:4c:0b:fa:8f:
1a:53:7f:c0:69:32:af:4a:55:37:d5:eb:28:45:0d:83:fa:c6:
01:0e:34:f9:74:b9:35:92:03:1a:b5:5e:8e:9c:fe:39:c7:a7:
f8:e7:0a:1e:18:83:ee:38:71:9c:d2:fe:c6:d8:7a:62:32:6e:
7c:9d:2c:43:0e:fe:78:61:a3:60:e1:f1:fa:4f:7d:49:82:70:
4d:10:02:bb:f0:8e:80:41:36:3b:2c:7a:8b:43:23:09:db:dc:
4b:59:1f:1f:0d:bc:59:c9:2c:ea:a3:71:21:2d:3f:67:a6:76:
f9:d7:73:bb:b4:f1:1e:49:8e:eb:45:0f:48:a3:c8:ae:54:98:
34:c7:11:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGneOA5YhYNRbieYE5WMH2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiZDdmYzEzZTE4MzZjMzk2Y2NhMjE3ODk3MDRhYjM5ZmQ5
ZTViNjQwHhcNMjUwNjA2MTkwMDQxWhcNMjUwNjA3MTkwMDQxWjAzMTEwLwYDVQQD
EygzYjQ2Yzc5NzIzNGRjNDllZmExODgxNzI2YjBjYjBjNzY0ZGI3MTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6PeGKMNzkZHqU06PXs84sA9J3Pdc
A2RPk8RCgKicJWFvH+wtuUId2ZQfyJTmDjzsnM2Ci3BrHRrwUI30baAjMKQg4u+R
OM6OGslOz20Yl5X8UeswsLdDG2P88h3OCGJwUG+GjTf7EM0ZQP2QnkbRuqkgkZ/I
vxFt9YL7sK/Odr2ufLqWzS8Pz3u096HDNZnX6Aag1BduaQwkLG1pXcCVFAnmV5aE
I1Q/q48zNccOcXebi7JsGVL/6u5tvOA5N2P8/jQkqMhdiOP2j7q6Fo7M1I3fHbWA
eMFgsTRD/dJ5dl0bn4wRdh9kykcwogCGJ4hHgV6aKiYzH94ojoQbqZcFQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDtGx5cjTcSe+hiBcmsMsMdk23ECMB8GA1UdIwQY
MBaAFMvX/BPhg2w5bMoheJcEqzn9nltkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTlmOEUtR0RiRGxzeWlGNGx3U3JPZjJlVzJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8yMTRjOWEtMDk1MC00MGQ5LWE1ODYt
ZTM1ZGI1MjU2N2YwLzEveTlmOEUtR0RiRGxzeWlGNGx3U3JPZjJlVzJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC8yMTRjOWEtMDk1MC00MGQ5LWE1ODYtZTM1ZGI1MjU2N2Yw
LzEveTlmOEUtR0RiRGxzeWlGNGx3U3JPZjJlVzJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMk3qpjGu
rzsqgoJckmif+Asq7v6869WrTc401ZXPFU92+lKpwsDlf+Ziwv0p+VyGU8ETFo5i
bF55EWpbL6ZeM+SOgxur6QgAxWsZ084cUDiNgPwCNyVoe+iDraQr01i8WtjHvk0O
WgqViZ5LzEoa+UZXC1pY85U7o1BMC/qPGlN/wGkyr0pVN9XrKEUNg/rGAQ40+XS5
NZIDGrVejpz+Ocen+OcKHhiD7jhxnNL+xth6YjJufJ0sQw7+eGGjYOHx+k99SYJw
TRACu/COgEE2Oyx6i0MjCdvcS1kfHw28Wcks6qNxIS0/Z6Z2+ddzu7TxHkmO60UP
SKPIrlSYNMcR9Q==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:23:55 2025 by rpki-client