
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
File: You5JTbCD0KwW-UywNuquYt1XzU.mft (raw, json)
Hash identifier: K+nEyG2Gq4ruNtZtgs585CVvzVzkegN//BJ5Pj2PIRc=
Subject key identifier: 80:FD:DD:A5:81:8A:D6:11:17:56:ED:4A:B8:6E:56:CB:AC:FB:AB:A9
Authority key identifier: 62:8B:B9:25:36:C2:0F:42:B0:5B:E5:32:C0:DB:AA:B9:8B:75:5F:35
Certificate issuer: /CN=628bb92536c20f42b05be532c0dbaab98b755f35
Certificate serial: 019767046346933B1F0C0869AF336C347C04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/You5JTbCD0KwW-UywNuquYt1XzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
Manifest number: 41
Signing time: Fri 13 Jun 2025 02:00:30 +0000
Manifest this update: Fri 13 Jun 2025 02:00:30 +0000
Manifest next update: Sat 14 Jun 2025 02:00:30 +0000
Files and hashes: 1: You5JTbCD0KwW-UywNuquYt1XzU.crl (hash: dclErwNChNLYGMERXJACE5LmeRj+th+xkPtskeHsSKU=)
2: lUZIxGhzOYxZGWoE_bPIsAcvBns.roa (hash: 181xs0vbEO2Q9NjKNLp5nMH7XagJ9a8i0PdC3k4WAwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/You5JTbCD0KwW-UywNuquYt1XzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:67:04:63:46:93:3b:1f:0c:08:69:af:33:6c:34:7c:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=628bb92536c20f42b05be532c0dbaab98b755f35
Validity
Not Before: Jun 13 02:00:30 2025 GMT
Not After : Jun 14 02:00:30 2025 GMT
Subject: CN=80fddda5818ad6111756ed4ab86e56cbacfbaba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5d:6e:35:8d:57:c8:c4:ee:9e:aa:56:56:aa:
26:35:20:c6:d1:12:42:c1:b6:d3:7c:00:5c:e3:21:
74:9e:da:cc:75:4f:55:1a:24:c9:c2:d2:0b:48:4f:
dd:35:51:79:92:7d:c5:49:b7:63:66:77:6f:80:8f:
75:a6:a1:c9:b4:c4:e2:f1:39:7f:05:91:e4:9e:62:
d5:64:fe:cf:68:7d:ad:f6:73:d9:52:b7:10:53:d1:
64:b8:a7:cc:1f:dc:67:67:0d:f4:55:16:75:f8:9f:
82:9f:91:85:e9:bd:41:48:10:41:17:d1:dd:96:24:
5a:7b:7f:af:2b:8f:d1:f7:13:12:67:72:4b:ee:90:
89:6f:cd:3a:9c:23:b0:13:75:7a:55:e7:8f:9e:66:
19:b5:09:0f:f3:e7:88:09:0a:49:51:6b:8a:38:d7:
34:63:76:40:85:98:b5:f5:5c:6c:d9:35:1b:f1:b9:
22:68:db:a6:83:bb:ac:6e:b8:bd:8a:de:e2:7f:81:
ad:f3:1c:36:3d:0f:8e:72:f9:21:b2:f9:b1:15:c8:
84:e4:0e:46:3a:87:1f:ee:b3:59:b6:49:f2:71:43:
cb:cb:cb:0b:b4:a0:76:8f:78:24:06:5d:ca:45:60:
47:40:d6:a5:15:c7:cf:63:57:39:c2:14:06:c6:30:
6a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:FD:DD:A5:81:8A:D6:11:17:56:ED:4A:B8:6E:56:CB:AC:FB:AB:A9
X509v3 Authority Key Identifier:
keyid:62:8B:B9:25:36:C2:0F:42:B0:5B:E5:32:C0:DB:AA:B9:8B:75:5F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/You5JTbCD0KwW-UywNuquYt1XzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:89:b0:47:e7:7b:8c:cb:f6:bd:46:01:20:5d:25:2c:00:4e:
c7:c1:b3:52:b5:08:5e:8d:0c:3f:99:b9:cf:88:3a:63:ac:e0:
70:9c:71:6c:96:da:e4:90:80:cf:35:9e:d1:65:df:c5:b2:ad:
58:54:a4:70:3c:04:5b:0e:c8:f3:6b:48:25:99:9a:ef:8d:11:
01:91:84:2b:17:cc:ff:8a:5c:b3:98:56:00:a8:be:01:7a:bc:
6c:b2:8e:57:ec:d7:07:c7:26:8a:66:c4:27:4d:51:6e:cd:92:
ac:01:3e:4d:ca:fd:e0:9e:27:3f:b1:6d:8b:d4:75:ce:c3:a7:
67:2f:3b:28:80:7a:17:35:79:f9:c4:33:ef:ae:11:a9:2b:84:
8c:73:eb:58:38:df:b8:37:2b:5a:8d:f7:3c:e7:69:2e:97:6c:
18:d2:e9:9c:e5:74:6f:fc:b6:80:e3:47:c8:75:c1:8b:9e:13:
d6:3b:a9:1b:6c:c8:d3:ee:2e:4a:47:74:4f:7e:72:72:95:b5:
a0:0e:e4:2a:d2:37:36:80:32:0a:4b:3c:be:0f:8f:8b:e7:2c:
5f:28:4a:1b:d5:c2:9c:80:93:50:b6:97:0f:7c:e7:d7:61:59:
9f:fe:e0:b1:d3:8e:55:9e:75:9c:9f:4e:84:4c:e7:63:88:8d:
60:76:49:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdnBGNGkzsfDAhprzNsNHwEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyOGJiOTI1MzZjMjBmNDJiMDViZTUzMmMwZGJhYWI5OGI3
NTVmMzUwHhcNMjUwNjEzMDIwMDMwWhcNMjUwNjE0MDIwMDMwWjAzMTEwLwYDVQQD
Eyg4MGZkZGRhNTgxOGFkNjExMTc1NmVkNGFiODZlNTZjYmFjZmJhYmE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApV1uNY1XyMTunqpWVqomNSDG0RJC
wbbTfABc4yF0ntrMdU9VGiTJwtILSE/dNVF5kn3FSbdjZndvgI91pqHJtMTi8Tl/
BZHknmLVZP7PaH2t9nPZUrcQU9FkuKfMH9xnZw30VRZ1+J+Cn5GF6b1BSBBBF9Hd
liRae3+vK4/R9xMSZ3JL7pCJb806nCOwE3V6VeePnmYZtQkP8+eICQpJUWuKONc0
Y3ZAhZi19Vxs2TUb8bkiaNumg7usbri9it7if4Gt8xw2PQ+OcvkhsvmxFciE5A5G
Oocf7rNZtknycUPLy8sLtKB2j3gkBl3KRWBHQNalFcfPY1c5whQGxjBqSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFID93aWBitYRF1btSrhuVsus+6upMB8GA1UdIwQY
MBaAFGKLuSU2wg9CsFvlMsDbqrmLdV81MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWW91NUpUYkNEMEt3Vy1VeXdOdXF1WXQxWHpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8yMDVkYmUtNzcxNC00ZDBlLTk0NzMt
MmJjZTgxYTQzMWViLzEvWW91NUpUYkNEMEt3Vy1VeXdOdXF1WXQxWHpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni8yMDVkYmUtNzcxNC00ZDBlLTk0NzMtMmJjZTgxYTQzMWVi
LzEvWW91NUpUYkNEMEt3Vy1VeXdOdXF1WXQxWHpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP4mwR+d7
jMv2vUYBIF0lLABOx8GzUrUIXo0MP5m5z4g6Y6zgcJxxbJba5JCAzzWe0WXfxbKt
WFSkcDwEWw7I82tIJZma740RAZGEKxfM/4pcs5hWAKi+AXq8bLKOV+zXB8cmimbE
J01Rbs2SrAE+Tcr94J4nP7Fti9R1zsOnZy87KIB6FzV5+cQz764RqSuEjHPrWDjf
uDcrWo33POdpLpdsGNLpnOV0b/y2gONHyHXBi54T1jupG2zI0+4uSkd0T35ycpW1
oA7kKtI3NoAyCks8vg+Pi+csXyhKG9XCnICTULaXD3zn12FZn/7gsdOOVZ51nJ9O
hEznY4iNYHZJpg==
-----END CERTIFICATE-----
Generated at Fri Jun 13 08:18:32 2025 by rpki-client