Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
File: Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft (raw, json)
Hash identifier: Jou067JfBnBNrmwihugT7nrj12MhnpVyRDsKF0gSL80=
Subject key identifier: 76:B7:CC:A0:E8:61:67:E4:D5:6E:62:46:74:F5:16:87:54:DD:59:C1
Authority key identifier: 63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
Certificate issuer: /CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Certificate serial: 0197488D1ED6EC2D1A253383BEA5EF06666A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
Manifest number: 02A8
Signing time: Sat 07 Jun 2025 04:01:37 +0000
Manifest this update: Sat 07 Jun 2025 04:01:37 +0000
Manifest next update: Sun 08 Jun 2025 04:01:37 +0000
Files and hashes: 1: Qzda_dpxvv_9oCqZ0rKtNjYGFYA.roa (hash: yhmVIZybj8mBYPvdFgcuCe4v8sYhgAuDZKiw+Hdv0f4=)
2: Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl (hash: lz5qB3L0EeKen4I6vCdMtuX64hwOXyyra+PqFJmVevI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8d:1e:d6:ec:2d:1a:25:33:83:be:a5:ef:06:66:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Validity
Not Before: Jun 7 04:01:37 2025 GMT
Not After : Jun 8 04:01:37 2025 GMT
Subject: CN=76b7cca0e86167e4d56e624674f5168754dd59c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:64:7e:e0:e6:20:f8:27:b1:11:66:84:13:98:
19:7f:6f:65:65:78:92:c9:9d:42:ba:a5:12:fb:28:
f0:32:36:45:32:e8:f3:ea:ac:57:b6:7e:94:4e:8f:
a7:35:17:80:29:5d:52:84:0a:43:38:35:fd:d2:76:
49:b5:57:fb:25:91:57:0d:2a:7b:38:83:6a:36:04:
90:01:bb:63:c9:01:fd:27:ee:55:fe:c8:a7:3a:d5:
a4:21:9c:85:90:9b:54:3f:6d:26:3f:e9:7e:d0:a7:
ff:51:27:92:50:c4:29:45:46:fa:ab:44:5e:98:34:
a5:27:ea:61:26:99:57:95:c6:0e:c3:f8:30:bf:ef:
19:0b:5b:7b:5a:0a:e6:e1:54:c6:67:cf:3a:42:8f:
04:7e:d7:04:9f:d3:f6:9b:48:ca:21:5b:a6:b0:48:
4a:3c:df:19:fd:f7:f6:4c:29:e6:a5:e2:f7:12:08:
f9:56:e9:b2:48:15:1a:81:9a:bf:e8:f2:f7:d7:61:
f5:d4:1b:1c:a3:87:e0:f1:6a:6b:76:e7:88:d6:ce:
04:25:df:15:57:df:98:e8:1a:d9:c0:7b:69:15:4a:
91:85:2f:cf:ad:07:16:03:3c:dc:30:70:2b:17:36:
d2:69:77:ed:71:79:43:da:e3:0a:64:05:0f:ab:75:
73:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B7:CC:A0:E8:61:67:E4:D5:6E:62:46:74:F5:16:87:54:DD:59:C1
X509v3 Authority Key Identifier:
keyid:63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:bd:31:99:00:73:78:4e:dd:9b:69:04:8b:1b:42:88:0a:c0:
76:6b:9f:0f:a6:c2:ce:87:0e:5e:5d:52:21:46:65:db:f7:11:
d5:55:ef:4b:9c:72:e9:ba:85:1c:4b:07:94:a7:c7:4f:00:78:
82:ab:fa:d7:51:86:d3:e0:62:55:b3:55:5c:c0:98:9b:46:80:
62:68:48:a0:bb:33:21:4a:69:7d:fb:19:f3:41:62:6a:35:c8:
e4:4d:9a:82:4a:30:a5:aa:52:4d:a5:31:23:ad:71:77:3a:f1:
9d:57:2f:71:2a:bc:71:ce:40:34:e1:b8:ad:f2:ae:79:16:cf:
f4:c3:bf:11:12:a5:f1:92:ac:4a:2b:6e:3b:21:e0:ca:c8:ed:
f1:fa:74:01:fb:a9:ae:ea:7f:c4:fe:98:14:6c:6d:2a:d8:1d:
6a:af:99:42:a1:32:24:63:d5:5f:e2:4e:de:b5:1c:98:19:22:
1e:43:30:2c:3d:6b:3b:57:4f:74:f6:c5:66:fc:92:09:74:96:
d0:66:de:37:83:4c:94:e8:8c:bd:98:1f:36:72:16:90:0c:b7:
a1:ba:84:09:0f:55:97:00:83:4c:ca:57:15:49:59:35:56:0d:
d6:7d:51:2c:66:50:da:82:31:d4:f9:3a:cd:53:5b:4d:3a:fa:
35:07:db:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIjR7W7C0aJTODvqXvBmZqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzNjQyYzFjYTNkMzhjN2UxNWU2ODdlMGQ5NDg1Yzc4MjY5
MzhjMTAwHhcNMjUwNjA3MDQwMTM3WhcNMjUwNjA4MDQwMTM3WjAzMTEwLwYDVQQD
Eyg3NmI3Y2NhMGU4NjE2N2U0ZDU2ZTYyNDY3NGY1MTY4NzU0ZGQ1OWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumR+4OYg+CexEWaEE5gZf29lZXiS
yZ1CuqUS+yjwMjZFMujz6qxXtn6UTo+nNReAKV1ShApDODX90nZJtVf7JZFXDSp7
OINqNgSQAbtjyQH9J+5V/sinOtWkIZyFkJtUP20mP+l+0Kf/USeSUMQpRUb6q0Re
mDSlJ+phJplXlcYOw/gwv+8ZC1t7Wgrm4VTGZ886Qo8EftcEn9P2m0jKIVumsEhK
PN8Z/ff2TCnmpeL3Egj5VumySBUagZq/6PL312H11Bsco4fg8WprdueI1s4EJd8V
V9+Y6BrZwHtpFUqRhS/PrQcWAzzcMHArFzbSaXftcXlD2uMKZAUPq3VzcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHa3zKDoYWfk1W5iRnT1FodU3VnBMB8GA1UdIwQY
MBaAFGNkLByj04x+FeaH4NlIXHgmk4wQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWTJRc0hLUFRqSDRWNW9mZzJVaGNlQ2FUakJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS80ZjU5MDMtZmY5Zi00ZWM2LTg2YzAt
MDdiMGVhNzVjMjRiLzEvWTJRc0hLUFRqSDRWNW9mZzJVaGNlQ2FUakJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS80ZjU5MDMtZmY5Zi00ZWM2LTg2YzAtMDdiMGVhNzVjMjRi
LzEvWTJRc0hLUFRqSDRWNW9mZzJVaGNlQ2FUakJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmb0xmQBz
eE7dm2kEixtCiArAdmufD6bCzocOXl1SIUZl2/cR1VXvS5xy6bqFHEsHlKfHTwB4
gqv611GG0+BiVbNVXMCYm0aAYmhIoLszIUppffsZ80FiajXI5E2agkowpapSTaUx
I61xdzrxnVcvcSq8cc5ANOG4rfKueRbP9MO/ERKl8ZKsSituOyHgysjt8fp0Afup
rup/xP6YFGxtKtgdaq+ZQqEyJGPVX+JO3rUcmBkiHkMwLD1rO1dPdPbFZvySCXSW
0GbeN4NMlOiMvZgfNnIWkAy3obqECQ9VlwCDTMpXFUlZNVYN1n1RLGZQ2oIx1Pk6
zVNbTTr6NQfbEw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:00:11 2025 by rpki-client