Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
File: y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft (raw, json)
Hash identifier: 9aLUNTIjDzp4H6bPKLPhWgAEHcPk6O1BSK6aD8teQB4=
Subject key identifier: 40:14:EE:22:55:75:D0:E0:74:17:53:CB:C6:FC:6D:64:A7:2E:E5:F0
Authority key identifier: CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
Certificate issuer: /CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Certificate serial: 01974742D86DD397A89D1642206561F2636C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
Manifest number: 111A
Signing time: Fri 06 Jun 2025 22:00:52 +0000
Manifest this update: Fri 06 Jun 2025 22:00:52 +0000
Manifest next update: Sat 07 Jun 2025 22:00:52 +0000
Files and hashes: 1: nPtNOVhjTVbNoPzqUJGa-Eqnb0Y.roa (hash: Yuz9f1rxV7S4atM+GycUQVhSQinvjc3oT1lXV1zOVuE=)
2: y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl (hash: ejsMwzE2gql0Y7TiHxqDtjzmSgxk0ZEg3S8wIGj3eCU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:d8:6d:d3:97:a8:9d:16:42:20:65:61:f2:63:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Validity
Not Before: Jun 6 22:00:52 2025 GMT
Not After : Jun 7 22:00:52 2025 GMT
Subject: CN=4014ee225575d0e0741753cbc6fc6d64a72ee5f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7c:68:4b:7f:ed:e7:de:64:08:1c:be:7a:b0:
5f:4a:64:5f:39:02:ab:0a:3c:9b:db:6d:af:95:49:
46:7c:da:0b:5a:72:ab:ff:68:05:fe:a8:fd:78:01:
68:a3:a6:51:a6:79:9b:4a:47:72:60:aa:6f:1e:65:
44:a2:0b:eb:64:80:7a:4c:77:ef:f8:6e:64:d2:6f:
f9:46:f5:c1:50:02:21:d3:2f:22:7b:98:5f:38:54:
7b:bf:4b:1f:cb:83:a4:6b:d9:80:24:0e:a7:d7:98:
f3:7e:d1:48:b3:64:43:1e:38:e2:6f:91:4c:df:29:
6c:f0:57:c8:73:65:0b:bc:13:c2:cc:a9:8d:88:2e:
92:d0:c6:5b:53:33:c4:81:14:c8:97:c4:b2:d4:d6:
cc:bb:a9:ab:b5:75:cb:8b:c8:ec:3d:49:a4:57:1f:
00:04:a2:13:b8:d7:44:17:6c:ec:73:f9:33:4f:cb:
69:0b:a2:80:c3:fb:d8:c1:c4:7e:cd:7c:94:04:80:
2f:6e:fc:1b:d9:04:ac:f1:a9:d0:02:d2:e0:90:a8:
d8:a4:45:04:8c:6c:47:78:62:63:f5:66:33:0e:32:
d6:83:13:50:78:d9:45:ff:53:e3:3e:77:32:78:da:
0c:02:51:6b:7c:b9:03:21:d8:87:fc:d5:e4:2c:39:
b5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:14:EE:22:55:75:D0:E0:74:17:53:CB:C6:FC:6D:64:A7:2E:E5:F0
X509v3 Authority Key Identifier:
keyid:CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:12:c8:b0:63:40:2d:80:e4:4a:66:99:04:27:21:24:7f:ec:
37:80:a4:02:80:80:22:b6:12:e8:ce:f3:e4:6c:c8:7c:7c:e6:
d5:c7:81:68:3f:0c:5a:08:6e:aa:2d:c3:6a:65:2b:bd:70:9d:
7e:46:95:8e:bd:c5:04:cf:75:25:c8:1c:88:08:12:8c:c5:ad:
78:ed:d1:dd:f9:2f:3f:da:6d:0a:47:47:93:6b:a2:c8:25:aa:
b0:0a:c8:11:83:a1:7d:05:0c:f6:9d:3e:a4:b9:ee:27:1f:ca:
e9:66:20:c6:97:ae:c3:e5:92:38:01:67:2b:29:0f:f2:f7:fe:
6a:c7:44:05:18:ff:01:da:27:60:9f:15:89:9d:14:b9:58:37:
3e:b6:76:f1:c1:3b:2a:7f:fe:54:5e:e5:7c:d6:de:21:43:e7:
d4:40:ca:d9:55:a1:4a:8a:02:11:db:d6:29:fe:7a:85:69:fd:
e0:22:4e:ad:ef:33:11:8b:d0:a2:2f:31:33:9d:ee:47:d7:7f:
a4:a7:76:c7:9b:81:17:08:61:39:a6:43:a0:00:80:6f:82:3f:
cc:15:22:dd:13:cf:5d:8d:8b:31:16:d0:43:cf:ec:47:89:64:
7b:d2:3a:a1:9b:bf:29:69:d2:3f:78:e0:26:8a:95:5d:c3:e8:
7b:5f:da:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHQtht05eonRZCIGVh8mNsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiNjQ1YmMwZmRiODYyNmJjZTJjMDQyNWM0MDg3YjU0ZTE1
MGQzODYwHhcNMjUwNjA2MjIwMDUyWhcNMjUwNjA3MjIwMDUyWjAzMTEwLwYDVQQD
Eyg0MDE0ZWUyMjU1NzVkMGUwNzQxNzUzY2JjNmZjNmQ2NGE3MmVlNWYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHxoS3/t595kCBy+erBfSmRfOQKr
Cjyb222vlUlGfNoLWnKr/2gF/qj9eAFoo6ZRpnmbSkdyYKpvHmVEogvrZIB6THfv
+G5k0m/5RvXBUAIh0y8ie5hfOFR7v0sfy4Oka9mAJA6n15jzftFIs2RDHjjib5FM
3yls8FfIc2ULvBPCzKmNiC6S0MZbUzPEgRTIl8Sy1NbMu6mrtXXLi8jsPUmkVx8A
BKITuNdEF2zsc/kzT8tpC6KAw/vYwcR+zXyUBIAvbvwb2QSs8anQAtLgkKjYpEUE
jGxHeGJj9WYzDjLWgxNQeNlF/1PjPncyeNoMAlFrfLkDIdiH/NXkLDm1OQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEAU7iJVddDgdBdTy8b8bWSnLuXwMB8GA1UdIwQY
MBaAFMtkW8D9uGJrziwEJcQIe1ThUNOGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTJSYndQMjRZbXZPTEFRbHhBaDdWT0ZRMDRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC81N2JmODktZmUzYi00YzIxLThmZmIt
ZTg3NTRkMDA1ZWJlLzEveTJSYndQMjRZbXZPTEFRbHhBaDdWT0ZRMDRZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC81N2JmODktZmUzYi00YzIxLThmZmItZTg3NTRkMDA1ZWJl
LzEveTJSYndQMjRZbXZPTEFRbHhBaDdWT0ZRMDRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgBLIsGNA
LYDkSmaZBCchJH/sN4CkAoCAIrYS6M7z5GzIfHzm1ceBaD8MWghuqi3DamUrvXCd
fkaVjr3FBM91JcgciAgSjMWteO3R3fkvP9ptCkdHk2uiyCWqsArIEYOhfQUM9p0+
pLnuJx/K6WYgxpeuw+WSOAFnKykP8vf+asdEBRj/AdonYJ8ViZ0UuVg3PrZ28cE7
Kn/+VF7lfNbeIUPn1EDK2VWhSooCEdvWKf56hWn94CJOre8zEYvQoi8xM53uR9d/
pKd2x5uBFwhhOaZDoACAb4I/zBUi3RPPXY2LMRbQQ8/sR4lke9I6oZu/KWnSP3jg
JoqVXcPoe1/a2Q==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:25:22 2025 by rpki-client