Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.mft
File: r_yn9tponMVFu7uVA5i6xAeXmqM.mft (raw, json)
Hash identifier: BvHXLKNI46NLBDsOQT0QMlePiMG74fB3J3ZMMSvafzg=
Subject key identifier: FD:73:0B:96:52:51:83:65:CF:32:FB:5A:97:E7:6A:89:8E:41:D8:75
Authority key identifier: AF:FC:A7:F6:DA:68:9C:C5:45:BB:BB:95:03:98:BA:C4:07:97:9A:A3
Certificate issuer: /CN=affca7f6da689cc545bbbb950398bac407979aa3
Certificate serial: 019752D8ADC0F72E56AD79B77F7A880ACE57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_yn9tponMVFu7uVA5i6xAeXmqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.mft
Manifest number: 02EB
Signing time: Mon 09 Jun 2025 04:00:21 +0000
Manifest this update: Mon 09 Jun 2025 04:00:21 +0000
Manifest next update: Tue 10 Jun 2025 04:00:21 +0000
Files and hashes: 1: r_yn9tponMVFu7uVA5i6xAeXmqM.crl (hash: Ug01pFiZWn+votQps7h1iDUH+P4yWGtsOeAMyXQUc2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/r_yn9tponMVFu7uVA5i6xAeXmqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:d8:ad:c0:f7:2e:56:ad:79:b7:7f:7a:88:0a:ce:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affca7f6da689cc545bbbb950398bac407979aa3
Validity
Not Before: Jun 9 04:00:21 2025 GMT
Not After : Jun 10 04:00:21 2025 GMT
Subject: CN=fd730b9652518365cf32fb5a97e76a898e41d875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1d:d7:62:e3:58:88:9f:d9:cb:c1:5d:8d:5c:
43:6e:a8:a8:c4:02:37:91:1c:09:25:a3:8c:0b:b6:
d6:94:ab:24:57:74:5c:21:81:58:b0:e2:0d:c5:5a:
32:14:8f:e0:ba:a3:bc:c1:c4:e1:59:fc:44:21:9c:
95:06:aa:20:1b:36:23:72:45:fb:69:3f:7b:c8:a3:
d4:70:db:a5:6d:51:d2:27:c8:a7:6a:ac:fe:33:07:
19:dd:f1:78:16:bf:61:a4:80:98:1b:7c:3f:76:9f:
47:cd:47:f1:af:1f:56:01:13:86:d3:21:9d:0e:cc:
d5:8c:c2:f3:7f:25:1f:c5:0a:70:98:b2:be:b6:7c:
9e:4b:5e:a9:8c:27:89:99:c0:4b:93:7d:98:54:1f:
46:e5:24:b1:e4:df:06:ae:0f:53:82:d2:68:b2:4d:
f6:65:ce:29:10:ca:6d:f5:a3:5c:08:4d:99:ff:62:
23:21:b3:57:e5:9e:4b:97:41:e5:38:cd:36:12:93:
c1:83:55:bf:47:11:ea:c1:c2:3f:01:51:21:0a:3b:
88:37:17:75:90:4a:07:a0:50:95:17:18:4f:7b:7f:
3f:d5:78:77:9c:3d:8d:58:71:32:67:00:d0:10:d0:
8f:6a:3e:a7:32:ac:5c:05:77:b5:52:34:e0:2e:3d:
10:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:73:0B:96:52:51:83:65:CF:32:FB:5A:97:E7:6A:89:8E:41:D8:75
X509v3 Authority Key Identifier:
keyid:AF:FC:A7:F6:DA:68:9C:C5:45:BB:BB:95:03:98:BA:C4:07:97:9A:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_yn9tponMVFu7uVA5i6xAeXmqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:7b:cd:c3:e6:b2:89:21:0d:b4:46:65:a6:d5:e9:22:00:cd:
d2:90:a9:83:bd:a8:f2:f0:e0:f5:18:b7:70:b1:22:3c:ab:16:
b9:67:f6:72:5f:ce:31:37:39:01:68:e3:a6:f4:ee:84:ca:7b:
04:f0:bb:7d:de:e3:d1:28:9c:4b:e1:9d:b3:fe:22:38:58:70:
ac:a0:03:8c:cf:65:e6:8c:e6:c8:57:26:1c:33:7c:3b:de:19:
11:ee:75:ad:67:86:d0:a2:8c:54:aa:b5:e3:f5:ca:43:f7:44:
23:6d:97:88:f9:bc:ff:eb:82:51:fd:9d:ef:93:9d:66:0a:68:
68:b7:29:6b:f7:ba:1c:9a:ef:22:3e:16:0e:f1:63:2e:26:5e:
19:8a:90:f8:6d:bb:15:b7:32:59:76:18:2b:2e:21:31:18:a8:
59:34:d6:69:95:0c:fb:e7:e4:f6:22:3d:32:56:d5:4c:32:5a:
f8:07:61:a0:10:4a:94:05:e4:3c:8b:80:f3:fb:49:b9:a4:81:
c6:28:5b:8b:9f:39:8c:29:64:3b:0c:0a:3b:ad:b5:7c:59:eb:
f9:96:fa:51:fc:79:e6:ff:a7:87:12:a5:e7:ae:69:dd:1a:21:
03:b8:35:52:7b:0a:bd:af:86:7a:bc:c6:02:d0:b6:2f:cb:8d:
06:6e:32:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdS2K3A9y5WrXm3f3qICs5XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmZmNhN2Y2ZGE2ODljYzU0NWJiYmI5NTAzOThiYWM0MDc5
NzlhYTMwHhcNMjUwNjA5MDQwMDIxWhcNMjUwNjEwMDQwMDIxWjAzMTEwLwYDVQQD
EyhmZDczMGI5NjUyNTE4MzY1Y2YzMmZiNWE5N2U3NmE4OThlNDFkODc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArB3XYuNYiJ/Zy8FdjVxDbqioxAI3
kRwJJaOMC7bWlKskV3RcIYFYsOINxVoyFI/guqO8wcThWfxEIZyVBqogGzYjckX7
aT97yKPUcNulbVHSJ8inaqz+MwcZ3fF4Fr9hpICYG3w/dp9HzUfxrx9WAROG0yGd
DszVjMLzfyUfxQpwmLK+tnyeS16pjCeJmcBLk32YVB9G5SSx5N8Grg9TgtJosk32
Zc4pEMpt9aNcCE2Z/2IjIbNX5Z5Ll0HlOM02EpPBg1W/RxHqwcI/AVEhCjuINxd1
kEoHoFCVFxhPe38/1Xh3nD2NWHEyZwDQENCPaj6nMqxcBXe1UjTgLj0QPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP1zC5ZSUYNlzzL7WpfnaomOQdh1MB8GA1UdIwQY
MBaAFK/8p/baaJzFRbu7lQOYusQHl5qjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcl95bjl0cG9uTVZGdTd1VkE1aTZ4QWVYbXFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8xOWJhOTctMTlhZi00Zjg4LTk2YWEt
MTk4NWIwYjA4MjVlLzEvcl95bjl0cG9uTVZGdTd1VkE1aTZ4QWVYbXFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC8xOWJhOTctMTlhZi00Zjg4LTk2YWEtMTk4NWIwYjA4MjVl
LzEvcl95bjl0cG9uTVZGdTd1VkE1aTZ4QWVYbXFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYnvNw+ay
iSENtEZlptXpIgDN0pCpg72o8vDg9Ri3cLEiPKsWuWf2cl/OMTc5AWjjpvTuhMp7
BPC7fd7j0SicS+Gds/4iOFhwrKADjM9l5ozmyFcmHDN8O94ZEe51rWeG0KKMVKq1
4/XKQ/dEI22XiPm8/+uCUf2d75OdZgpoaLcpa/e6HJrvIj4WDvFjLiZeGYqQ+G27
FbcyWXYYKy4hMRioWTTWaZUM++fk9iI9MlbVTDJa+AdhoBBKlAXkPIuA8/tJuaSB
xihbi585jClkOwwKO621fFnr+Zb6Ufx55v+nhxKl565p3RohA7g1UnsKva+GerzG
AtC2L8uNBm4ywg==
-----END CERTIFICATE-----
Generated at Mon Jun 9 10:11:07 2025 by rpki-client