Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
File: JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft (raw, json)
Hash identifier: WOUhmpWq4Q8RvjzpNpkitjxWTZvJn2/yNk95e9yXwUw=
Subject key identifier: 72:A8:B8:AB:18:7F:BD:D0:7E:D8:CA:52:9A:F3:46:21:E0:F7:A5:C7
Authority key identifier: 25:89:06:55:4D:8C:8B:42:8E:DE:8C:B3:50:26:86:0D:3D:77:71:DF
Certificate issuer: /CN=258906554d8c8b428ede8cb35026860d3d7771df
Certificate serial: 01974EC4FBC3E905EBE6C5B4E426D30915A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
Manifest number: 0C5F
Signing time: Sun 08 Jun 2025 09:00:21 +0000
Manifest this update: Sun 08 Jun 2025 09:00:21 +0000
Manifest next update: Mon 09 Jun 2025 09:00:21 +0000
Files and hashes: 1: JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl (hash: uBD8Otlcj96tpQPE0bEotrSt53PTd34mzr0lOTe5jzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c4:fb:c3:e9:05:eb:e6:c5:b4:e4:26:d3:09:15:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258906554d8c8b428ede8cb35026860d3d7771df
Validity
Not Before: Jun 8 09:00:21 2025 GMT
Not After : Jun 9 09:00:21 2025 GMT
Subject: CN=72a8b8ab187fbdd07ed8ca529af34621e0f7a5c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:58:65:64:ff:9e:c7:fe:44:cb:be:01:69:6c:
f4:d6:d5:95:ac:7c:e1:d6:83:d2:87:e4:83:2a:10:
9c:26:e9:7f:fa:48:13:b2:9d:23:34:35:22:a1:e6:
8d:b3:3b:d7:5d:f1:0f:4b:a3:9c:13:e1:e6:c2:04:
61:1e:d0:1b:6a:59:4d:5d:91:06:16:a0:7d:07:39:
24:a0:49:68:b4:83:e6:10:59:78:ba:d1:7f:6e:86:
ed:07:18:48:16:b9:bf:60:bd:d2:6a:de:7d:8f:4e:
45:4f:38:d4:90:b3:76:b9:73:d8:6d:f2:0e:fc:93:
10:04:bd:8f:fc:42:fa:65:84:a7:27:59:9c:fc:7d:
3e:13:97:aa:ec:9c:12:d7:f4:00:5f:84:0d:d5:2e:
50:5a:7e:33:21:a6:5b:1b:e1:eb:e6:97:15:e2:c0:
8a:cf:b0:5e:7c:60:0c:55:c1:0a:b3:50:7e:4b:53:
1f:e9:b3:c7:9d:6e:89:3d:01:4c:6d:ef:84:fb:ad:
92:07:02:93:1c:61:47:8e:87:13:00:58:c0:a4:0a:
47:c7:31:60:fd:e9:cd:96:27:b3:33:35:04:03:67:
7d:dc:cb:ae:65:9b:b8:e9:89:80:4c:51:37:bf:67:
6e:a2:83:a0:ac:42:c1:ec:e7:b9:b2:58:ef:56:1e:
88:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:A8:B8:AB:18:7F:BD:D0:7E:D8:CA:52:9A:F3:46:21:E0:F7:A5:C7
X509v3 Authority Key Identifier:
keyid:25:89:06:55:4D:8C:8B:42:8E:DE:8C:B3:50:26:86:0D:3D:77:71:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:e5:d0:ed:3c:26:29:1b:b2:86:28:b1:ed:d6:4b:70:90:ee:
30:fc:88:1d:a2:c3:a6:f4:ff:7d:cc:27:9c:9c:97:d5:7b:a0:
14:65:ab:cc:c8:60:76:93:92:6f:19:80:d1:1c:8b:f1:32:dc:
c6:4d:39:7b:64:18:04:ee:ca:25:1b:3b:53:be:49:2d:8c:c1:
31:7a:ed:32:7f:aa:ae:6b:d3:86:a2:32:8c:3d:a3:9e:d2:b1:
29:e6:fb:0f:37:f0:98:c0:73:d0:72:be:85:6d:af:fe:09:20:
98:e3:96:f1:7d:1f:cd:94:dc:32:4a:76:c9:48:e7:9f:22:ae:
78:60:0c:d5:1b:26:77:b4:e2:8e:0e:88:b2:c1:cc:78:d8:fb:
28:cb:d8:e5:2a:ee:7a:c1:5d:ee:16:02:d6:39:36:ec:93:a0:
7d:77:fb:de:4c:78:8e:b3:79:03:35:47:93:e4:f6:57:f8:d0:
4c:26:7e:51:c9:7e:24:01:db:21:12:d0:60:0d:02:9d:04:b0:
50:12:a9:bd:ef:42:1c:c6:21:b0:75:d2:f7:d1:ee:c0:42:8f:
23:ea:5e:3a:13:04:55:32:4c:21:ef:23:28:43:85:b1:8f:b3:
c4:dd:96:a1:16:94:2e:0b:fe:6f:ef:fc:74:99:fb:28:73:d8:
f7:b1:50:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdOxPvD6QXr5sW05CbTCRWhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1ODkwNjU1NGQ4YzhiNDI4ZWRlOGNiMzUwMjY4NjBkM2Q3
NzcxZGYwHhcNMjUwNjA4MDkwMDIxWhcNMjUwNjA5MDkwMDIxWjAzMTEwLwYDVQQD
Eyg3MmE4YjhhYjE4N2ZiZGQwN2VkOGNhNTI5YWYzNDYyMWUwZjdhNWM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlhlZP+ex/5Ey74BaWz01tWVrHzh
1oPSh+SDKhCcJul/+kgTsp0jNDUioeaNszvXXfEPS6OcE+HmwgRhHtAballNXZEG
FqB9BzkkoElotIPmEFl4utF/bobtBxhIFrm/YL3Sat59j05FTzjUkLN2uXPYbfIO
/JMQBL2P/EL6ZYSnJ1mc/H0+E5eq7JwS1/QAX4QN1S5QWn4zIaZbG+Hr5pcV4sCK
z7BefGAMVcEKs1B+S1Mf6bPHnW6JPQFMbe+E+62SBwKTHGFHjocTAFjApApHxzFg
/enNliezMzUEA2d93MuuZZu46YmATFE3v2duooOgrELB7Oe5sljvVh6IZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHKouKsYf73QftjKUprzRiHg96XHMB8GA1UdIwQY
MBaAFCWJBlVNjItCjt6Ms1Amhg09d3HfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSllrR1ZVMk1pMEtPM295elVDYUdEVDEzY2Q4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi85YjU3YWItNmNhMi00YWE4LTgzODct
YWZkZDUzODI3ZTkzLzEvSllrR1ZVMk1pMEtPM295elVDYUdEVDEzY2Q4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi85YjU3YWItNmNhMi00YWE4LTgzODctYWZkZDUzODI3ZTkz
LzEvSllrR1ZVMk1pMEtPM295elVDYUdEVDEzY2Q4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABOXQ7Twm
KRuyhiix7dZLcJDuMPyIHaLDpvT/fcwnnJyX1XugFGWrzMhgdpOSbxmA0RyL8TLc
xk05e2QYBO7KJRs7U75JLYzBMXrtMn+qrmvThqIyjD2jntKxKeb7DzfwmMBz0HK+
hW2v/gkgmOOW8X0fzZTcMkp2yUjnnyKueGAM1Rsmd7Tijg6IssHMeNj7KMvY5Sru
esFd7hYC1jk27JOgfXf73kx4jrN5AzVHk+T2V/jQTCZ+Ucl+JAHbIRLQYA0CnQSw
UBKpve9CHMYhsHXS99HuwEKPI+peOhMEVTJMIe8jKEOFsY+zxN2WoRaULgv+b+/8
dJn7KHPY97FQLw==
-----END CERTIFICATE-----
Generated at Sun Jun 8 13:35:03 2025 by rpki-client