Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
File: YL83NiAUbm8piugtLIqDccrLexs.mft (raw, json)
Hash identifier: O4wDyr3q/ZWsZizeP6WN9RYqmlrlxQU5RS/ngcozyUg=
Subject key identifier: 74:A2:9F:E7:51:BC:0D:6D:AD:02:86:AB:83:A8:36:6A:47:C1:4C:68
Authority key identifier: 60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
Certificate issuer: /CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Certificate serial: 01974C698A7EA007A628715E43D2646BB112
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 22:01:14 +0000
Manifest this update: Sat 07 Jun 2025 22:01:14 +0000
Manifest next update: Sun 08 Jun 2025 22:01:14 +0000
Files and hashes: 1: FcPpw1IibzSy4BenkulclpDum4U.roa (hash: HSUDUncC0CCpqaUKBhWSJTD0GmSsEAzCocsfF6H1tqA=)
2: YL83NiAUbm8piugtLIqDccrLexs.crl (hash: qvjWGho2dFcXSpt7w7DHiPWJlXNjdJxQCFyjeS3YXho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:8a:7e:a0:07:a6:28:71:5e:43:d2:64:6b:b1:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Validity
Not Before: Jun 7 22:01:14 2025 GMT
Not After : Jun 8 22:01:14 2025 GMT
Subject: CN=74a29fe751bc0d6dad0286ab83a8366a47c14c68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e7:dc:f0:ac:9a:9c:8e:06:53:8d:77:74:87:
d9:be:e5:39:81:30:59:1d:c6:11:fe:39:52:59:78:
f5:c0:fb:66:2f:17:4b:de:36:71:9d:9c:35:e3:5c:
25:55:c4:67:0d:ed:20:46:a3:d1:19:ee:e7:22:b6:
cb:b1:d7:96:03:3c:ae:ee:f5:24:1b:f5:28:a2:57:
53:32:b9:a7:86:c0:41:22:75:43:1d:7f:ef:3b:46:
c7:fa:53:25:d9:9b:18:5a:3d:39:4c:b4:d4:69:74:
ab:fd:84:dd:9e:99:9a:e3:8a:67:0e:fc:31:56:d7:
08:80:81:88:19:25:7e:08:6c:5a:c8:80:e3:b9:fc:
ba:10:a1:03:68:34:df:88:86:f6:d7:93:7c:fd:cc:
9f:e6:e7:ae:61:45:14:aa:05:c6:70:03:0a:b9:d9:
8f:a9:fa:56:3d:d5:03:00:80:93:db:72:37:9a:cf:
34:16:ae:8d:64:fa:d1:cc:20:86:7a:13:35:af:29:
69:da:19:7e:3c:e0:87:85:6f:6f:10:a4:aa:5e:ee:
66:a1:34:66:d7:f2:74:80:e4:e2:cd:c2:ca:28:fd:
ec:f6:d5:3d:e9:7a:6f:97:9f:86:61:fa:f3:eb:25:
80:c8:e8:37:24:ba:fe:ad:dd:df:01:43:45:d2:d6:
5e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:A2:9F:E7:51:BC:0D:6D:AD:02:86:AB:83:A8:36:6A:47:C1:4C:68
X509v3 Authority Key Identifier:
keyid:60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:c3:c4:af:59:d9:17:49:5f:67:87:4f:7a:42:53:40:9e:02:
77:d8:08:48:b0:3d:ad:23:6c:68:b8:c6:19:d4:92:d6:35:f3:
6d:13:21:98:80:a6:ff:a6:e8:fb:91:1a:e5:fc:50:e0:58:5f:
a8:4c:47:24:d4:17:54:4c:2d:c0:4d:24:42:f7:40:f3:ec:12:
0e:35:d7:68:ff:2c:be:2c:e5:86:f3:e4:49:ef:26:cc:27:af:
fa:c4:c0:32:f9:4d:f2:e0:fa:11:7a:ce:47:f0:dd:a7:a9:71:
52:fe:37:60:23:04:29:d6:82:e5:bd:d1:3b:80:08:15:a1:8a:
6d:0e:67:74:6e:1f:2c:9b:39:47:d2:97:4f:e9:5f:45:2a:89:
fc:9e:05:7d:dc:7d:d3:c8:54:47:16:45:dc:89:75:cf:3f:90:
9f:e2:83:1c:64:37:98:0e:46:85:9d:ed:d0:66:01:37:9e:bb:
52:24:d5:3c:e5:6f:63:32:3c:a0:d2:ae:e3:1a:d5:d9:ba:c8:
7e:0a:23:ce:cb:37:1c:61:a9:bf:bd:7e:f4:57:98:fb:2a:56:
b2:73:a0:3c:d5:05:0a:5e:0f:c5:3d:2d:ed:ba:3a:47:c0:24:
bf:16:00:88:3e:96:2c:8b:ff:8c:7c:d5:6c:f7:e9:af:42:8f:
2a:a9:e5:b9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMaYp+oAemKHFeQ9Jka7ESMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwYmYzNzM2MjAxNDZlNmYyOThhZTgyZDJjOGE4MzcxY2Fj
YjdiMWIwHhcNMjUwNjA3MjIwMTE0WhcNMjUwNjA4MjIwMTE0WjAzMTEwLwYDVQQD
Eyg3NGEyOWZlNzUxYmMwZDZkYWQwMjg2YWI4M2E4MzY2YTQ3YzE0YzY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxufc8KyanI4GU413dIfZvuU5gTBZ
HcYR/jlSWXj1wPtmLxdL3jZxnZw141wlVcRnDe0gRqPRGe7nIrbLsdeWAzyu7vUk
G/UooldTMrmnhsBBInVDHX/vO0bH+lMl2ZsYWj05TLTUaXSr/YTdnpma44pnDvwx
VtcIgIGIGSV+CGxayIDjufy6EKEDaDTfiIb215N8/cyf5ueuYUUUqgXGcAMKudmP
qfpWPdUDAICT23I3ms80Fq6NZPrRzCCGehM1rylp2hl+POCHhW9vEKSqXu5moTRm
1/J0gOTizcLKKP3s9tU96Xpvl5+GYfrz6yWAyOg3JLr+rd3fAUNF0tZeKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHSin+dRvA1trQKGq4OoNmpHwUxoMB8GA1UdIwQY
MBaAFGC/NzYgFG5vKYroLSyKg3HKy3sbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9kZWNkZTMtMjc3YS00OTU2LWJmOTIt
ZjBhODEyM2U3MGY5LzEvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi9kZWNkZTMtMjc3YS00OTU2LWJmOTItZjBhODEyM2U3MGY5
LzEvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARcPEr1nZ
F0lfZ4dPekJTQJ4Cd9gISLA9rSNsaLjGGdSS1jXzbRMhmICm/6bo+5Ea5fxQ4Fhf
qExHJNQXVEwtwE0kQvdA8+wSDjXXaP8svizlhvPkSe8mzCev+sTAMvlN8uD6EXrO
R/Ddp6lxUv43YCMEKdaC5b3RO4AIFaGKbQ5ndG4fLJs5R9KXT+lfRSqJ/J4Ffdx9
08hURxZF3Il1zz+Qn+KDHGQ3mA5GhZ3t0GYBN567UiTVPOVvYzI8oNKu4xrV2brI
fgojzss3HGGpv71+9FeY+ypWsnOgPNUFCl4PxT0t7bo6R8AkvxYAiD6WLIv/jHzV
bPfpr0KPKqnluQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 06:19:24 2025 by rpki-client