
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
File: YcXtDe2GJbMrZTMgcinyxGclmEg.mft (raw, json)
Hash identifier: FCLfnGhHYLkYeCp8UKJ497mh/XljSfDdpoPeFiN3g38=
Subject key identifier: 0B:23:1C:8B:04:B1:7F:A0:81:76:F7:0F:FA:56:5D:44:85:56:E3:97
Authority key identifier: 61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48
Certificate issuer: /CN=61c5ed0ded8625b32b6533207229f2c467259848
Certificate serial: 019760948C2A17CF28462B175108602A19DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
Manifest number: 1589
Signing time: Wed 11 Jun 2025 20:00:37 +0000
Manifest this update: Wed 11 Jun 2025 20:00:37 +0000
Manifest next update: Thu 12 Jun 2025 20:00:37 +0000
Files and hashes: 1: CYWLmYxcCQgki-Xk5YRvuSHALzs.roa (hash: 61Fic0FYH+kK7MaPnl8UV3ohGlvf2gRHDh8nlfVoQGY=)
2: YcXtDe2GJbMrZTMgcinyxGclmEg.crl (hash: VSeaabC0ZzmshYacbmX6T4+eKEUbTjA+/u59SvM63Y8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 15:40:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:60:94:8c:2a:17:cf:28:46:2b:17:51:08:60:2a:19:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c5ed0ded8625b32b6533207229f2c467259848
Validity
Not Before: Jun 11 20:00:37 2025 GMT
Not After : Jun 12 20:00:37 2025 GMT
Subject: CN=0b231c8b04b17fa08176f70ffa565d448556e397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:04:a1:70:02:d3:31:fa:72:4e:a9:b1:1f:38:
1a:59:0d:fd:a1:e0:65:58:57:e9:e6:e1:1b:2e:22:
fe:d1:3d:9a:3a:95:d1:38:80:e9:7f:b4:4e:bb:77:
51:ee:98:e5:9a:81:d7:0b:e1:97:08:47:37:85:d2:
c2:f6:83:c7:da:4f:db:17:00:55:43:c9:85:b0:a7:
12:16:1c:e1:d9:8f:a9:56:57:f4:ee:c2:3f:7c:91:
0d:20:92:af:9d:18:c4:96:8a:a4:ef:b4:3d:27:2a:
0f:82:d0:a2:33:2b:32:89:b0:5b:36:8c:27:0e:30:
d4:45:8e:a7:7d:67:ed:37:8f:41:a3:58:8d:9d:51:
67:1c:71:db:a8:8b:53:4d:f7:fa:7d:77:6e:a9:ec:
18:89:1c:0f:fc:14:da:be:32:f1:9a:98:bb:cb:b5:
83:b2:63:c6:c3:c4:2c:92:80:6b:4e:76:a0:50:18:
9c:95:ec:00:1e:4d:9b:53:22:45:05:1f:21:c2:77:
42:b4:1f:30:ae:40:bb:53:14:34:b8:a4:2f:de:d4:
c3:92:ef:b1:01:39:99:52:10:89:8a:76:df:a2:25:
02:e1:ab:bb:4f:cf:0f:ea:96:b1:c8:9d:34:36:e2:
fc:a9:bf:38:d8:cd:9f:60:6d:8c:dc:9b:a2:6e:42:
89:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:23:1C:8B:04:B1:7F:A0:81:76:F7:0F:FA:56:5D:44:85:56:E3:97
X509v3 Authority Key Identifier:
keyid:61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:f5:38:e4:3e:2f:f8:cd:c7:1b:b0:73:b7:96:a0:f9:d4:1f:
40:10:73:5d:ce:37:40:ac:1f:19:ab:c1:81:c3:b1:69:d0:d8:
e4:41:f3:61:aa:39:cc:91:ee:b9:25:e4:ad:fe:66:1c:e3:a6:
23:ae:c6:00:8b:6b:50:59:e2:91:ff:2b:e0:f5:f9:88:23:f4:
d1:74:b2:c3:99:34:4f:b5:4a:b4:de:37:f1:1d:bb:4f:8e:e1:
23:3e:a7:fc:79:74:64:bd:27:27:a1:98:3e:a2:c3:aa:77:71:
21:75:5e:f9:79:4c:5b:88:19:ed:8d:96:d3:7c:46:19:d3:c2:
36:05:b4:e5:74:40:2a:96:00:49:69:f6:31:31:78:6d:f3:4c:
93:51:76:53:f2:a8:67:d5:f1:4a:03:4d:ad:67:6d:24:15:41:
fa:62:e4:f8:d5:c3:f0:71:ab:2b:5a:c7:f3:43:d2:81:2d:97:
1e:64:07:a1:73:94:53:33:f4:37:42:ad:f7:11:a2:db:8d:c2:
3c:28:13:cc:63:f4:cf:a9:ab:a2:cc:28:e6:5e:e7:60:36:5e:
7c:cc:fc:7c:0e:c6:97:57:b1:da:48:fc:20:9e:81:db:e8:e8:
b6:45:90:25:14:d3:ef:53:f4:49:c5:49:b4:fe:ec:39:4d:44:
aa:b8:db:6e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdglIwqF88oRisXUQhgKhnaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxYzVlZDBkZWQ4NjI1YjMyYjY1MzMyMDcyMjlmMmM0Njcy
NTk4NDgwHhcNMjUwNjExMjAwMDM3WhcNMjUwNjEyMjAwMDM3WjAzMTEwLwYDVQQD
EygwYjIzMWM4YjA0YjE3ZmEwODE3NmY3MGZmYTU2NWQ0NDg1NTZlMzk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQShcALTMfpyTqmxHzgaWQ39oeBl
WFfp5uEbLiL+0T2aOpXROIDpf7ROu3dR7pjlmoHXC+GXCEc3hdLC9oPH2k/bFwBV
Q8mFsKcSFhzh2Y+pVlf07sI/fJENIJKvnRjEloqk77Q9JyoPgtCiMysyibBbNown
DjDURY6nfWftN49Bo1iNnVFnHHHbqItTTff6fXduqewYiRwP/BTavjLxmpi7y7WD
smPGw8QskoBrTnagUBiclewAHk2bUyJFBR8hwndCtB8wrkC7UxQ0uKQv3tTDku+x
ATmZUhCJinbfoiUC4au7T88P6paxyJ00NuL8qb842M2fYG2M3JuibkKJzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAsjHIsEsX+ggXb3D/pWXUSFVuOXMB8GA1UdIwQY
MBaAFGHF7Q3thiWzK2UzIHIp8sRnJZhIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWNYdERlMkdKYk1yWlRNZ2Npbnl4R2NsbUVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS82MDYyYWYtNTNiYy00MzVkLWI1ZmIt
YTExODQ5ODMyNWY3LzEvWWNYdERlMkdKYk1yWlRNZ2Npbnl4R2NsbUVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS82MDYyYWYtNTNiYy00MzVkLWI1ZmItYTExODQ5ODMyNWY3
LzEvWWNYdERlMkdKYk1yWlRNZ2Npbnl4R2NsbUVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiPU45D4v
+M3HG7Bzt5ag+dQfQBBzXc43QKwfGavBgcOxadDY5EHzYao5zJHuuSXkrf5mHOOm
I67GAItrUFnikf8r4PX5iCP00XSyw5k0T7VKtN438R27T47hIz6n/Hl0ZL0nJ6GY
PqLDqndxIXVe+XlMW4gZ7Y2W03xGGdPCNgW05XRAKpYASWn2MTF4bfNMk1F2U/Ko
Z9XxSgNNrWdtJBVB+mLk+NXD8HGrK1rH80PSgS2XHmQHoXOUUzP0N0Kt9xGi243C
PCgTzGP0z6mroswo5l7nYDZefMz8fA7Gl1ex2kj8IJ6B2+jotkWQJRTT71P0ScVJ
tP7sOU1Eqrjbbg==
-----END CERTIFICATE-----
Generated at Wed Jun 11 22:42:05 2025 by rpki-client