Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
File: yS0-Y6HAGI17pgy4TXDk64m4rlE.mft (raw, json)
Hash identifier: hKtaHIGpue2GTbA4vzE9orYsAYy47/3QmaEZKSRhrBw=
Subject key identifier: 79:4A:FA:AE:F2:67:0D:C6:50:1C:4D:36:B1:9B:5D:A9:81:39:54:0B
Authority key identifier: C9:2D:3E:63:A1:C0:18:8D:7B:A6:0C:B8:4D:70:E4:EB:89:B8:AE:51
Certificate issuer: /CN=c92d3e63a1c0188d7ba60cb84d70e4eb89b8ae51
Certificate serial: 0197CBE05634AFAD48573841BB89CDF6FB5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
Manifest number: 0648
Signing time: Wed 02 Jul 2025 16:02:46 +0000
Manifest this update: Wed 02 Jul 2025 16:02:46 +0000
Manifest next update: Thu 03 Jul 2025 16:02:46 +0000
Files and hashes: 1: yS0-Y6HAGI17pgy4TXDk64m4rlE.crl (hash: 6S39lG7TRXMJ2LV5JuT81bTc8Tdo32D+0VLIsPfMzNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 16:02:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cb:e0:56:34:af:ad:48:57:38:41:bb:89:cd:f6:fb:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c92d3e63a1c0188d7ba60cb84d70e4eb89b8ae51
Validity
Not Before: Jul 2 16:02:46 2025 GMT
Not After : Jul 3 16:02:46 2025 GMT
Subject: CN=794afaaef2670dc6501c4d36b19b5da98139540b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:19:05:f2:a5:fe:cb:93:87:57:68:aa:c8:fe:
00:e1:7d:dc:14:46:a1:fd:0b:70:3a:94:8e:21:cf:
e4:01:e8:95:3b:43:6f:ed:bc:00:a4:5f:f0:e9:01:
66:48:65:5a:16:04:10:b9:9d:16:01:50:37:05:8d:
0b:f8:21:ed:f0:24:9d:7b:fa:44:14:fb:24:33:db:
ff:ca:9f:b6:c0:c4:18:a3:9a:f4:3e:51:75:e9:05:
82:bc:f1:03:5f:cb:7b:b7:d1:64:64:3c:72:12:86:
bc:a1:d9:28:6c:eb:02:20:41:21:28:d0:0c:0f:d3:
36:fe:ec:74:42:e0:19:e8:13:fd:3d:c7:32:0d:20:
02:68:21:20:1e:c8:25:49:f4:17:c6:a2:09:e0:10:
ae:75:81:3a:00:18:07:8f:f0:ca:4f:b9:3b:40:b0:
86:f5:26:40:70:03:91:36:1e:2d:b7:ca:7e:ae:4c:
9d:42:c7:bd:2d:ad:94:6a:ae:70:27:47:78:4e:ad:
f0:08:5f:d5:ae:49:19:11:d3:78:9f:c0:37:a9:bc:
79:78:6c:e3:e1:0b:c1:18:04:02:e0:11:ab:19:0e:
dc:55:29:30:c1:a1:49:99:d6:2d:cc:c1:4d:c8:87:
f9:b9:38:fd:7b:73:19:09:28:6a:30:16:8c:9b:88:
1c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:4A:FA:AE:F2:67:0D:C6:50:1C:4D:36:B1:9B:5D:A9:81:39:54:0B
X509v3 Authority Key Identifier:
keyid:C9:2D:3E:63:A1:C0:18:8D:7B:A6:0C:B8:4D:70:E4:EB:89:B8:AE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:e7:ad:ea:8a:50:f1:e8:cd:ab:50:c4:44:e7:b6:e0:36:45:
e9:65:95:7a:2c:5f:16:59:0a:27:85:e0:2a:7f:c3:74:bb:64:
d1:bd:00:10:04:bb:9e:c3:25:99:24:b9:f9:1c:ee:7f:33:1a:
12:00:30:72:24:b3:b7:e4:c3:f8:40:94:a8:67:a4:b0:0a:83:
78:63:0e:39:99:b2:30:94:1f:ca:e2:6d:af:ae:36:67:86:37:
a3:05:8a:79:17:bb:af:f7:fd:58:48:71:29:46:41:cd:cc:7c:
4a:48:83:6f:11:37:4b:35:e8:76:ba:b9:84:8e:93:b5:7f:c1:
7d:a1:0c:42:2e:55:5d:2f:45:85:e4:40:f2:87:bc:87:4d:56:
17:6a:14:76:d6:7b:f7:36:5b:d0:a1:e1:76:0e:f8:7e:8d:8a:
38:c9:5c:76:33:9c:33:7b:a8:b9:fe:fb:c4:f8:1f:15:37:eb:
91:c8:8a:98:20:f2:0e:02:cb:2b:51:22:70:10:58:51:fb:e8:
df:fa:2a:aa:ad:75:4f:c4:07:49:f2:be:2c:84:c0:0d:d5:44:
37:5b:26:41:b5:06:9e:2d:0c:b4:8b:91:7c:60:ad:da:d6:71:
3e:6d:94:66:7f:7c:19:dd:b9:d2:95:89:2b:b4:ad:f2:ea:4a:
f0:87:79:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfL4FY0r61IVzhBu4nN9vtdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5MmQzZTYzYTFjMDE4OGQ3YmE2MGNiODRkNzBlNGViODli
OGFlNTEwHhcNMjUwNzAyMTYwMjQ2WhcNMjUwNzAzMTYwMjQ2WjAzMTEwLwYDVQQD
Eyg3OTRhZmFhZWYyNjcwZGM2NTAxYzRkMzZiMTliNWRhOTgxMzk1NDBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxhkF8qX+y5OHV2iqyP4A4X3cFEah
/QtwOpSOIc/kAeiVO0Nv7bwApF/w6QFmSGVaFgQQuZ0WAVA3BY0L+CHt8CSde/pE
FPskM9v/yp+2wMQYo5r0PlF16QWCvPEDX8t7t9FkZDxyEoa8odkobOsCIEEhKNAM
D9M2/ux0QuAZ6BP9PccyDSACaCEgHsglSfQXxqIJ4BCudYE6ABgHj/DKT7k7QLCG
9SZAcAORNh4tt8p+rkydQse9La2Uaq5wJ0d4Tq3wCF/VrkkZEdN4n8A3qbx5eGzj
4QvBGAQC4BGrGQ7cVSkwwaFJmdYtzMFNyIf5uTj9e3MZCShqMBaMm4gcUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHlK+q7yZw3GUBxNNrGbXamBOVQLMB8GA1UdIwQY
MBaAFMktPmOhwBiNe6YMuE1w5OuJuK5RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVMwLVk2SEFHSTE3cGd5NFRYRGs2NG00cmxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hN2MzOWMtNjFjNy00MWQ2LWE4MTYt
N2ZlZjIzZjk3YTM0LzEveVMwLVk2SEFHSTE3cGd5NFRYRGs2NG00cmxFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny9hN2MzOWMtNjFjNy00MWQ2LWE4MTYtN2ZlZjIzZjk3YTM0
LzEveVMwLVk2SEFHSTE3cGd5NFRYRGs2NG00cmxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU+et6opQ
8ejNq1DEROe24DZF6WWVeixfFlkKJ4XgKn/DdLtk0b0AEAS7nsMlmSS5+RzufzMa
EgAwciSzt+TD+ECUqGeksAqDeGMOOZmyMJQfyuJtr642Z4Y3owWKeRe7r/f9WEhx
KUZBzcx8SkiDbxE3SzXodrq5hI6TtX/BfaEMQi5VXS9FheRA8oe8h01WF2oUdtZ7
9zZb0KHhdg74fo2KOMlcdjOcM3uouf77xPgfFTfrkciKmCDyDgLLK1EicBBYUfvo
3/oqqq11T8QHSfK+LITADdVEN1smQbUGni0MtIuRfGCt2tZxPm2UZn98Gd250pWJ
K7St8upK8Id5Bw==
-----END CERTIFICATE-----
Generated at Wed Jul 2 23:00:46 2025 by rpki-client