Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.mft
File: ySqWHIeskFGOp1LxhbtlEoq6KGY.mft (raw, json)
Hash identifier: Il0FMPQ5PJgbt2tNPgiKAMlSQocEV8QN34TGjVNPqIk=
Subject key identifier: 4D:3A:34:DE:8E:BD:6F:8F:E5:30:5D:E5:17:74:C0:E0:24:F9:13:1B
Authority key identifier: C9:2A:96:1C:87:AC:90:51:8E:A7:52:F1:85:BB:65:12:8A:BA:28:66
Certificate issuer: /CN=c92a961c87ac90518ea752f185bb65128aba2866
Certificate serial: 01974A7B8375FF88B2102C0F36D3BAB73A2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ySqWHIeskFGOp1LxhbtlEoq6KGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.mft
Manifest number: 0221
Signing time: Sat 07 Jun 2025 13:01:37 +0000
Manifest this update: Sat 07 Jun 2025 13:01:37 +0000
Manifest next update: Sun 08 Jun 2025 13:01:37 +0000
Files and hashes: 1: ySqWHIeskFGOp1LxhbtlEoq6KGY.crl (hash: 4pP54FbTgNSGPJW6RjwoWO7ikP5iBbIECEMathJgBqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ySqWHIeskFGOp1LxhbtlEoq6KGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:83:75:ff:88:b2:10:2c:0f:36:d3:ba:b7:3a:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c92a961c87ac90518ea752f185bb65128aba2866
Validity
Not Before: Jun 7 13:01:37 2025 GMT
Not After : Jun 8 13:01:37 2025 GMT
Subject: CN=4d3a34de8ebd6f8fe5305de51774c0e024f9131b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:34:4a:cc:97:02:ae:5e:7f:ae:9b:0a:d1:02:
55:94:22:85:16:5c:63:76:66:8f:76:85:df:6b:97:
0c:d1:97:be:81:e2:51:7a:68:0f:60:5f:97:c0:b6:
52:02:a0:bd:d1:c0:7d:fb:0e:a9:de:0f:b8:e8:1a:
62:ea:d7:5d:bc:e8:d7:f5:d9:c5:80:7c:1f:3c:d8:
ed:c5:da:6c:92:4c:d1:95:cb:0c:dd:0a:ee:8a:14:
54:0a:c5:4c:c2:c3:d1:75:6d:95:3c:e3:f5:b2:0f:
3d:84:57:28:5d:6d:e5:22:ae:f8:89:5e:1e:6f:ac:
0e:ba:61:1d:58:f3:64:f5:d3:8b:dc:87:7e:25:90:
d8:8a:1e:3e:ad:44:c8:8e:0a:af:b6:ba:d5:62:52:
ba:e0:b4:26:3e:ec:2f:6c:77:fe:ba:4c:02:4d:ac:
eb:55:79:c3:b7:ed:5c:74:87:8c:66:05:16:e8:f2:
b1:96:d8:50:3a:0f:ab:ed:81:c0:b2:9e:61:8d:08:
e1:d9:8c:65:8d:21:ba:2b:a2:de:81:d4:c5:8d:c8:
bb:e5:e1:4d:2e:55:e6:d6:4e:39:e0:59:dc:3e:df:
34:21:39:04:ab:07:cd:a4:37:67:7c:dd:14:d2:01:
4d:7a:a5:a3:9e:d1:bd:18:6d:0f:48:bd:38:e9:cf:
8a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:3A:34:DE:8E:BD:6F:8F:E5:30:5D:E5:17:74:C0:E0:24:F9:13:1B
X509v3 Authority Key Identifier:
keyid:C9:2A:96:1C:87:AC:90:51:8E:A7:52:F1:85:BB:65:12:8A:BA:28:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ySqWHIeskFGOp1LxhbtlEoq6KGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:b0:d9:d8:bb:9b:c1:16:65:dd:65:48:35:d1:54:37:65:b9:
d3:5b:07:89:34:51:15:2c:38:fe:ff:a3:14:a9:e5:d6:42:a8:
8b:42:6c:6f:b3:83:41:15:5e:c7:73:59:a0:22:b1:1d:a6:33:
a5:2e:fa:69:12:8f:f2:5c:61:20:e3:b0:df:60:7c:6f:2d:b6:
f1:a0:e5:26:26:1f:cf:22:a4:c2:33:17:ce:22:58:c5:c0:4a:
b6:b2:00:32:cf:fb:8a:4b:c7:ff:86:fb:e4:19:07:4d:65:5e:
ba:9a:24:99:a0:0d:79:00:5d:c7:3b:57:37:af:01:91:99:15:
76:41:ce:96:1c:27:52:1f:c8:48:14:e7:ac:e0:1a:0b:bc:1b:
61:6c:de:a2:77:92:eb:f1:dc:ec:eb:29:74:ea:39:8b:16:14:
c3:79:78:90:48:24:e3:42:b1:ec:f5:3f:03:c5:d6:09:88:d8:
d3:2b:c9:93:fb:35:8e:d5:0e:df:c8:62:ee:fc:fe:6f:70:1b:
09:04:4a:ac:cb:91:cf:5e:86:06:4d:30:8f:cf:d3:24:a9:eb:
9e:59:25:2f:80:ce:6c:06:93:6c:a7:fe:3f:cf:f6:67:b5:28:
00:c3:85:b9:06:34:08:84:8d:f3:ee:93:e8:a0:b0:cd:4f:9c:
f8:e7:1a:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKe4N1/4iyECwPNtO6tzosMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5MmE5NjFjODdhYzkwNTE4ZWE3NTJmMTg1YmI2NTEyOGFi
YTI4NjYwHhcNMjUwNjA3MTMwMTM3WhcNMjUwNjA4MTMwMTM3WjAzMTEwLwYDVQQD
Eyg0ZDNhMzRkZThlYmQ2ZjhmZTUzMDVkZTUxNzc0YzBlMDI0ZjkxMzFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArzRKzJcCrl5/rpsK0QJVlCKFFlxj
dmaPdoXfa5cM0Ze+geJRemgPYF+XwLZSAqC90cB9+w6p3g+46Bpi6tddvOjX9dnF
gHwfPNjtxdpskkzRlcsM3QruihRUCsVMwsPRdW2VPOP1sg89hFcoXW3lIq74iV4e
b6wOumEdWPNk9dOL3Id+JZDYih4+rUTIjgqvtrrVYlK64LQmPuwvbHf+ukwCTazr
VXnDt+1cdIeMZgUW6PKxlthQOg+r7YHAsp5hjQjh2YxljSG6K6LegdTFjci75eFN
LlXm1k454FncPt80ITkEqwfNpDdnfN0U0gFNeqWjntG9GG0PSL046c+KXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE06NN6OvW+P5TBd5Rd0wOAk+RMbMB8GA1UdIwQY
MBaAFMkqlhyHrJBRjqdS8YW7ZRKKuihmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVNxV0hJZXNrRkdPcDFMeGhidGxFb3E2S0dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9lNTA1NWYtZGQ3Ny00ZTY2LWI3NmUt
ZjFlMThiMzEyOTJjLzEveVNxV0hJZXNrRkdPcDFMeGhidGxFb3E2S0dZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS9lNTA1NWYtZGQ3Ny00ZTY2LWI3NmUtZjFlMThiMzEyOTJj
LzEveVNxV0hJZXNrRkdPcDFMeGhidGxFb3E2S0dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt7DZ2Lub
wRZl3WVINdFUN2W501sHiTRRFSw4/v+jFKnl1kKoi0Jsb7ODQRVex3NZoCKxHaYz
pS76aRKP8lxhIOOw32B8by228aDlJiYfzyKkwjMXziJYxcBKtrIAMs/7ikvH/4b7
5BkHTWVeupokmaANeQBdxztXN68BkZkVdkHOlhwnUh/ISBTnrOAaC7wbYWzeoneS
6/Hc7OspdOo5ixYUw3l4kEgk40Kx7PU/A8XWCYjY0yvJk/s1jtUO38hi7vz+b3Ab
CQRKrMuRz16GBk0wj8/TJKnrnlklL4DObAaTbKf+P8/2Z7UoAMOFuQY0CISN8+6T
6KCwzU+c+OcaKA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 22:51:16 2025 by rpki-client