Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
File: YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft (raw, json)
Hash identifier: 7fQ8AzrX/dyDsAzXhusqEKa5yW2W+do3tz7wFbLUZ58=
Subject key identifier: 88:16:5F:42:C2:51:06:31:46:2F:02:25:9A:EC:8F:05:B6:ED:1B:D9
Authority key identifier: 62:94:DB:0B:87:F6:AE:EC:CE:7F:B2:2F:B1:B1:42:1D:90:6A:63:50
Certificate issuer: /CN=6294db0b87f6aeecce7fb22fb1b1421d906a6350
Certificate serial: 019748FA531707655BE4C7D266B3B0097DC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
Manifest number: 157A
Signing time: Sat 07 Jun 2025 06:00:53 +0000
Manifest this update: Sat 07 Jun 2025 06:00:53 +0000
Manifest next update: Sun 08 Jun 2025 06:00:53 +0000
Files and hashes: 1: Fd7jj4UgNX8KUEunLGyTOECk2zM.roa (hash: 4ykrgJNWkElQuXhdhPDtDMLnIYLOev4Sm6TYtDwClXU=)
2: YpTbC4f2ruzOf7IvsbFCHZBqY1A.crl (hash: E804+pKSR/e3A9GWQwEfcBoYT296UDJEXVAMXh1ap+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:53:17:07:65:5b:e4:c7:d2:66:b3:b0:09:7d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6294db0b87f6aeecce7fb22fb1b1421d906a6350
Validity
Not Before: Jun 7 06:00:53 2025 GMT
Not After : Jun 8 06:00:53 2025 GMT
Subject: CN=88165f42c2510631462f02259aec8f05b6ed1bd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d6:72:2c:7c:80:af:02:48:f0:8e:1e:4a:df:
62:2b:a1:3f:ef:54:5c:42:d8:83:95:c9:02:c1:16:
fb:a3:c2:e8:37:19:c2:6e:7c:c2:b5:83:e0:6c:7a:
f2:82:91:0e:55:b0:8d:82:56:5b:1b:3b:d0:31:0f:
ff:3e:d4:67:e7:5c:bb:1a:66:65:fa:2c:41:45:8a:
89:13:24:7e:d1:cc:51:ac:4a:ba:f5:41:4a:d9:09:
23:50:89:29:ba:3d:21:b6:14:49:95:72:16:a8:2f:
a4:10:bf:49:4e:4d:1c:6b:97:e9:0c:9f:bc:5b:b3:
5f:fd:8e:d6:6f:7a:8a:c2:f4:ca:ca:7d:bf:54:67:
33:5d:ef:ca:8f:6f:be:1e:00:64:9f:d6:b2:c8:01:
21:75:f0:7f:bc:7b:ca:7f:0f:bc:70:cc:f1:27:86:
5c:b0:41:99:45:57:c6:b8:db:dc:18:4c:34:8c:4f:
19:8e:2d:ae:0f:72:36:2a:bb:a4:ac:b5:bf:86:98:
c6:f7:fd:a2:35:6e:df:eb:e7:53:33:b5:13:5f:d8:
69:05:b1:4f:6e:99:09:22:8d:8e:36:9d:ea:dd:c0:
94:e0:92:c9:e8:1a:08:e0:5f:a0:9c:58:00:93:ba:
15:7b:af:04:48:f5:2e:b1:aa:45:d0:c0:6f:45:89:
f8:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:16:5F:42:C2:51:06:31:46:2F:02:25:9A:EC:8F:05:B6:ED:1B:D9
X509v3 Authority Key Identifier:
keyid:62:94:DB:0B:87:F6:AE:EC:CE:7F:B2:2F:B1:B1:42:1D:90:6A:63:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:f3:47:77:6d:9e:17:7a:49:85:1d:ae:16:ef:5b:c2:ce:6a:
16:9c:8b:8b:0b:19:2a:3c:00:e0:f9:11:0c:c1:69:ae:11:04:
2f:ac:dc:d5:27:2d:12:b3:53:54:32:6d:71:b8:26:e6:09:58:
05:d3:55:91:6b:ea:52:b7:75:d4:20:ce:1d:d7:00:b3:8e:ef:
2f:67:72:de:97:2a:f8:a4:69:50:b1:8f:b7:c3:13:89:11:5d:
7c:9c:44:d7:cb:48:5d:c3:19:37:0a:4c:69:7b:76:51:e0:00:
f2:ae:d8:71:a4:28:9a:0e:72:0a:71:1c:b0:99:f8:9d:34:2e:
23:39:30:a3:74:7a:e8:53:7d:7f:3b:a6:c8:b6:c8:74:a9:8c:
52:0b:de:93:a9:56:8a:2d:df:88:c7:7b:1d:72:46:18:f8:40:
2e:ea:2a:08:76:66:9c:df:d4:2f:fd:8f:25:cf:0c:5d:53:99:
e1:30:3d:94:a0:fb:ca:39:8c:2d:bb:1a:21:8f:1e:e2:38:e1:
48:75:d3:3a:43:dd:04:08:27:e7:ea:de:a4:2d:11:0f:a3:a8:
2a:bb:9e:f0:e0:4f:21:2f:57:13:c2:bb:77:26:21:f4:00:35:
9e:e0:dc:c9:3e:ae:70:0e:91:7a:87:ae:f2:68:14:3d:78:6b:
f5:46:ae:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdI+lMXB2Vb5MfSZrOwCX3GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyOTRkYjBiODdmNmFlZWNjZTdmYjIyZmIxYjE0MjFkOTA2
YTYzNTAwHhcNMjUwNjA3MDYwMDUzWhcNMjUwNjA4MDYwMDUzWjAzMTEwLwYDVQQD
Eyg4ODE2NWY0MmMyNTEwNjMxNDYyZjAyMjU5YWVjOGYwNWI2ZWQxYmQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnNZyLHyArwJI8I4eSt9iK6E/71Rc
QtiDlckCwRb7o8LoNxnCbnzCtYPgbHrygpEOVbCNglZbGzvQMQ//PtRn51y7GmZl
+ixBRYqJEyR+0cxRrEq69UFK2QkjUIkpuj0hthRJlXIWqC+kEL9JTk0ca5fpDJ+8
W7Nf/Y7Wb3qKwvTKyn2/VGczXe/Kj2++HgBkn9ayyAEhdfB/vHvKfw+8cMzxJ4Zc
sEGZRVfGuNvcGEw0jE8Zji2uD3I2KrukrLW/hpjG9/2iNW7f6+dTM7UTX9hpBbFP
bpkJIo2ONp3q3cCU4JLJ6BoI4F+gnFgAk7oVe68ESPUusapF0MBvRYn4NQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIgWX0LCUQYxRi8CJZrsjwW27RvZMB8GA1UdIwQY
MBaAFGKU2wuH9q7szn+yL7GxQh2QamNQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXBUYkM0ZjJydXpPZjdJdnNiRkNIWkJxWTFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS81M2QxYTUtOWM2MS00ZmYyLWIyMWIt
NzBjOTUyMDlmZTg5LzEvWXBUYkM0ZjJydXpPZjdJdnNiRkNIWkJxWTFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS81M2QxYTUtOWM2MS00ZmYyLWIyMWItNzBjOTUyMDlmZTg5
LzEvWXBUYkM0ZjJydXpPZjdJdnNiRkNIWkJxWTFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXPNHd22e
F3pJhR2uFu9bws5qFpyLiwsZKjwA4PkRDMFprhEEL6zc1SctErNTVDJtcbgm5glY
BdNVkWvqUrd11CDOHdcAs47vL2dy3pcq+KRpULGPt8MTiRFdfJxE18tIXcMZNwpM
aXt2UeAA8q7YcaQomg5yCnEcsJn4nTQuIzkwo3R66FN9fzumyLbIdKmMUgvek6lW
ii3fiMd7HXJGGPhALuoqCHZmnN/UL/2PJc8MXVOZ4TA9lKD7yjmMLbsaIY8e4jjh
SHXTOkPdBAgn5+repC0RD6OoKrue8OBPIS9XE8K7dyYh9AA1nuDcyT6ucA6Reoeu
8mgUPXhr9Uau9Q==
-----END CERTIFICATE-----
Generated at Sat Jun 7 12:34:10 2025 by rpki-client