
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
File: YsTHQ9XCr88n8QTrbgMWEWyFx94.mft (raw, json)
Hash identifier: 6Nm9BtoRF/lAUePFc+jrdQeEal/MPBAgfwWpjaYF+yg=
Subject key identifier: F6:36:A7:83:83:66:A4:B2:0F:71:6D:EF:D6:C7:D4:E1:8D:74:62:C2
Authority key identifier: 62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE
Certificate issuer: /CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de
Certificate serial: 01976696B0D9869D9E5BA5CC96342229191F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
Manifest number: 0B57
Signing time: Fri 13 Jun 2025 00:00:41 +0000
Manifest this update: Fri 13 Jun 2025 00:00:41 +0000
Manifest next update: Sat 14 Jun 2025 00:00:41 +0000
Files and hashes: 1: O5Qp4JElVe0um1Rnuz-9xQyVCpc.roa (hash: 73YKFKe5WyNrwSKLy76+GejDIV4ldqnve1bMw3FlzZM=)
2: YsTHQ9XCr88n8QTrbgMWEWyFx94.crl (hash: Zdt1qoDWneGq4BStNBrkB8uckrmKdTABo7rV4/L5Zf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:66:96:b0:d9:86:9d:9e:5b:a5:cc:96:34:22:29:19:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de
Validity
Not Before: Jun 13 00:00:41 2025 GMT
Not After : Jun 14 00:00:41 2025 GMT
Subject: CN=f636a7838366a4b20f716defd6c7d4e18d7462c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:99:ed:e4:a9:95:d4:ff:f8:f5:ea:f2:6a:78:
71:3a:49:7d:1c:b2:da:dd:6a:77:b2:34:e0:06:37:
2d:25:31:64:34:0f:89:e9:28:7e:0b:45:86:4b:4f:
91:78:35:6d:f8:5d:ce:f8:28:9a:f4:76:2d:b1:0b:
f4:f1:92:80:b7:08:79:54:86:30:00:34:bc:82:4a:
95:ef:a2:b3:2a:77:b4:9d:2b:d5:87:f8:f7:b7:af:
ae:bc:8e:38:9d:5e:bb:99:04:2e:9b:d1:08:82:5b:
c3:f4:8f:2a:9c:6b:28:4e:64:e6:b6:1e:7c:38:35:
e5:02:ce:68:4b:86:cd:da:98:6d:0c:15:bf:25:89:
f1:90:10:02:14:67:79:66:e0:4b:b2:01:8d:20:e6:
11:b5:f9:ce:99:1f:47:08:61:fa:10:76:63:ed:70:
e7:8e:e8:82:98:32:1d:5c:76:c0:ab:a7:39:3c:d2:
49:2e:18:93:7a:b9:cf:97:83:22:b1:e0:e2:ab:e7:
a8:3b:a9:f2:44:6e:f3:f2:c2:56:7a:27:43:11:0b:
28:e0:14:c3:77:1f:5b:9a:f4:15:20:cd:92:34:dd:
58:c5:36:fe:48:bb:f2:f7:d3:13:21:ae:45:58:fb:
63:f7:fc:6c:49:88:09:6e:92:95:24:f3:51:88:df:
f3:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:36:A7:83:83:66:A4:B2:0F:71:6D:EF:D6:C7:D4:E1:8D:74:62:C2
X509v3 Authority Key Identifier:
keyid:62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:2c:c2:41:79:6b:9f:16:2d:f4:38:f7:a9:7d:79:ad:cf:c3:
05:9c:3d:15:96:d3:0d:af:d7:7b:aa:9a:eb:a4:7d:97:b0:41:
9e:79:84:85:eb:8a:6d:03:d9:be:5d:3c:e6:57:a5:fa:47:32:
42:84:fe:37:86:7d:4f:ca:3f:fc:45:a2:39:ab:0f:fc:11:98:
59:85:ad:c9:25:73:bb:1b:74:d2:af:75:16:93:24:55:7b:38:
2b:d4:30:a8:e6:6e:f3:f6:9d:66:9f:cc:c6:8b:c9:73:ed:49:
ff:8c:b2:2b:c8:37:8d:f1:7d:a9:1a:97:da:2c:fd:0c:b1:f9:
4c:e1:19:2a:51:eb:10:15:c7:6d:db:06:be:e2:ef:05:41:af:
64:b4:1e:80:cd:c0:dd:8e:27:cf:c6:77:6e:3e:3f:3c:6c:06:
ef:e6:82:a4:4d:24:50:96:47:f7:f0:dd:db:1b:99:39:de:f0:
3a:a3:95:c9:91:6a:8b:82:71:c1:53:b7:80:c0:a9:1c:7f:2f:
3f:85:a6:4a:51:27:8e:20:1b:24:91:71:21:f4:43:32:3b:65:
1b:8c:6b:9e:f8:e7:86:e9:22:51:ae:03:99:21:2b:02:ef:80:
4b:1f:de:58:ce:34:9c:dc:a7:fd:d4:c4:e5:a4:c4:61:69:b0:
58:a4:f7:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdmlrDZhp2eW6XMljQiKRkfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyYzRjNzQzZDVjMmFmY2YyN2YxMDRlYjZlMDMxNjExNmM4
NWM3ZGUwHhcNMjUwNjEzMDAwMDQxWhcNMjUwNjE0MDAwMDQxWjAzMTEwLwYDVQQD
EyhmNjM2YTc4MzgzNjZhNGIyMGY3MTZkZWZkNmM3ZDRlMThkNzQ2MmMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlpnt5KmV1P/49eryanhxOkl9HLLa
3Wp3sjTgBjctJTFkNA+J6Sh+C0WGS0+ReDVt+F3O+Cia9HYtsQv08ZKAtwh5VIYw
ADS8gkqV76KzKne0nSvVh/j3t6+uvI44nV67mQQum9EIglvD9I8qnGsoTmTmth58
ODXlAs5oS4bN2phtDBW/JYnxkBACFGd5ZuBLsgGNIOYRtfnOmR9HCGH6EHZj7XDn
juiCmDIdXHbAq6c5PNJJLhiTernPl4MiseDiq+eoO6nyRG7z8sJWeidDEQso4BTD
dx9bmvQVIM2SNN1YxTb+SLvy99MTIa5FWPtj9/xsSYgJbpKVJPNRiN/zzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPY2p4ODZqSyD3Ft79bH1OGNdGLCMB8GA1UdIwQY
MBaAFGLEx0PVwq/PJ/EE624DFhFshcfeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXNUSFE5WENyODhuOFFUcmJnTVdFV3lGeDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My83MjhjNDAtZjcxMi00ZmVmLTg5NDUt
ZGUzNTJhOTJmNmJhLzEvWXNUSFE5WENyODhuOFFUcmJnTVdFV3lGeDk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My83MjhjNDAtZjcxMi00ZmVmLTg5NDUtZGUzNTJhOTJmNmJh
LzEvWXNUSFE5WENyODhuOFFUcmJnTVdFV3lGeDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArizCQXlr
nxYt9Dj3qX15rc/DBZw9FZbTDa/Xe6qa66R9l7BBnnmEheuKbQPZvl085lel+kcy
QoT+N4Z9T8o//EWiOasP/BGYWYWtySVzuxt00q91FpMkVXs4K9QwqOZu8/adZp/M
xovJc+1J/4yyK8g3jfF9qRqX2iz9DLH5TOEZKlHrEBXHbdsGvuLvBUGvZLQegM3A
3Y4nz8Z3bj4/PGwG7+aCpE0kUJZH9/Dd2xuZOd7wOqOVyZFqi4JxwVO3gMCpHH8v
P4WmSlEnjiAbJJFxIfRDMjtlG4xrnvjnhukiUa4DmSErAu+ASx/eWM40nNyn/dTE
5aTEYWmwWKT3Zw==
-----END CERTIFICATE-----
Generated at Fri Jun 13 05:54:25 2025 by rpki-client