Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
File: YAluN0CSzDAL0LsGxBZAky7Pi0k.mft (raw, json)
Hash identifier: GAPqA1V6hHfqAfeWK1jUa0c5Ffk/DP1sHtGzDuXCTyo=
Subject key identifier: B0:95:82:FD:87:07:21:E8:F9:19:F1:85:87:BF:50:1F:DB:46:DE:85
Authority key identifier: 60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
Certificate issuer: /CN=60096e374092cc300bd0bb06c41640932ecf8b49
Certificate serial: 0197469EC8B540CD0D9F33EB843FF8FE55F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
Manifest number: 150D
Signing time: Fri 06 Jun 2025 19:01:40 +0000
Manifest this update: Fri 06 Jun 2025 19:01:40 +0000
Manifest next update: Sat 07 Jun 2025 19:01:40 +0000
Files and hashes: 1: 526G98YrX5YRgU8kSVFlOR-68SU.roa (hash: EfmIyH+1frBE08mLPE+N4lUdJCEbw7QSSljLZgrUP1M=)
2: YAluN0CSzDAL0LsGxBZAky7Pi0k.crl (hash: Bds7Icrj+gYiFE/xSLrdNBrxaIDmE8kxGoufzyxk7bc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:c8:b5:40:cd:0d:9f:33:eb:84:3f:f8:fe:55:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60096e374092cc300bd0bb06c41640932ecf8b49
Validity
Not Before: Jun 6 19:01:40 2025 GMT
Not After : Jun 7 19:01:40 2025 GMT
Subject: CN=b09582fd870721e8f919f18587bf501fdb46de85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:15:11:37:e2:d7:8e:92:fd:ef:7e:c7:f1:81:
c2:f6:ab:d9:a4:5c:7d:e2:ed:28:71:b4:04:53:cf:
0d:42:03:c4:17:51:19:2f:bd:f3:c1:23:63:57:83:
fe:59:14:98:06:1e:ef:bb:a1:68:7d:80:64:d4:0a:
e3:10:fb:db:94:2d:5b:54:df:76:49:82:39:e0:74:
b6:b8:e7:a6:90:aa:b6:70:45:56:85:0b:13:99:22:
11:70:a7:12:0f:ae:6e:33:4c:c4:e6:dd:8a:e8:2c:
77:c2:dc:37:9d:f9:ba:42:32:b0:2e:06:59:48:f4:
39:ba:a6:74:1a:7b:a1:22:f7:d0:b1:53:00:e4:97:
c0:93:4d:8a:cb:1b:bd:0e:24:18:ad:76:ff:a5:cf:
3a:48:e1:4e:22:01:c6:06:95:c8:2e:cf:af:f0:9e:
ba:5d:1d:49:a4:8f:57:a6:1f:d8:70:9f:4a:48:c8:
c0:fb:8a:9b:e6:0f:7d:d9:89:9e:43:5c:2d:06:99:
a6:21:be:37:fa:19:6a:c7:e1:b2:1f:d2:eb:d2:9a:
50:95:29:ab:44:8c:89:b4:7f:d4:f7:60:d8:dc:c5:
b1:40:92:83:64:ec:5f:dc:c1:97:2d:63:5c:67:3e:
a5:79:66:af:b8:0b:15:04:8d:de:f2:07:a7:07:5e:
c1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:95:82:FD:87:07:21:E8:F9:19:F1:85:87:BF:50:1F:DB:46:DE:85
X509v3 Authority Key Identifier:
keyid:60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:2f:db:bf:cf:e6:b5:15:8c:d8:2e:24:3e:dd:48:ab:66:c1:
bd:d4:8f:77:82:41:e0:bf:3b:a5:ca:ae:28:15:52:77:47:11:
3c:a6:1f:88:51:39:e0:c7:77:f1:13:8e:86:38:81:3e:dd:8f:
7e:da:4b:17:13:c3:e3:1f:bf:1b:3d:44:37:5f:26:23:c9:1c:
3e:84:c6:02:2e:40:c8:11:d3:28:8c:10:8c:0c:87:42:d8:79:
00:54:f2:7b:e5:6a:4f:35:3c:4d:1d:ba:1d:26:07:1f:60:1d:
93:98:ef:2f:fe:e4:d3:f0:77:d6:64:15:19:0c:24:84:b5:92:
b2:3d:6e:ee:2c:78:8a:93:e3:ae:41:87:00:c4:53:01:c6:44:
8e:f8:12:9b:ec:3e:5a:cc:c8:b4:b0:55:f6:89:91:5b:79:1c:
13:56:d5:e2:ba:ba:c5:dd:33:70:af:c6:d2:64:a6:44:7a:23:
74:44:e7:53:f0:28:32:d4:82:2c:2a:d4:1c:23:b1:34:f8:3d:
09:6a:d1:f3:dc:b1:4f:2c:5b:40:c6:c9:a2:a9:0d:48:8b:47:
58:0e:8e:f3:4d:e8:6e:75:f7:76:71:de:7d:15:a9:d1:1e:83:
22:b8:4a:00:74:40:40:5e:b6:7a:ac:f5:72:83:fd:61:9e:72:
1b:4c:9a:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGnsi1QM0NnzPrhD/4/lX1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwMDk2ZTM3NDA5MmNjMzAwYmQwYmIwNmM0MTY0MDkzMmVj
ZjhiNDkwHhcNMjUwNjA2MTkwMTQwWhcNMjUwNjA3MTkwMTQwWjAzMTEwLwYDVQQD
EyhiMDk1ODJmZDg3MDcyMWU4ZjkxOWYxODU4N2JmNTAxZmRiNDZkZTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxxURN+LXjpL9737H8YHC9qvZpFx9
4u0ocbQEU88NQgPEF1EZL73zwSNjV4P+WRSYBh7vu6FofYBk1ArjEPvblC1bVN92
SYI54HS2uOemkKq2cEVWhQsTmSIRcKcSD65uM0zE5t2K6Cx3wtw3nfm6QjKwLgZZ
SPQ5uqZ0GnuhIvfQsVMA5JfAk02Kyxu9DiQYrXb/pc86SOFOIgHGBpXILs+v8J66
XR1JpI9Xph/YcJ9KSMjA+4qb5g992YmeQ1wtBpmmIb43+hlqx+GyH9Lr0ppQlSmr
RIyJtH/U92DY3MWxQJKDZOxf3MGXLWNcZz6leWavuAsVBI3e8genB17BiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLCVgv2HByHo+RnxhYe/UB/bRt6FMB8GA1UdIwQY
MBaAFGAJbjdAkswwC9C7BsQWQJMuz4tJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUFsdU4wQ1N6REFMMExzR3hCWkFreTdQaTBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC85MWNmZTctNWMyZC00NzRhLWI1ODct
YzQ1ODUyYzdiZTIwLzEvWUFsdU4wQ1N6REFMMExzR3hCWkFreTdQaTBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC85MWNmZTctNWMyZC00NzRhLWI1ODctYzQ1ODUyYzdiZTIw
LzEvWUFsdU4wQ1N6REFMMExzR3hCWkFreTdQaTBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABi/bv8/m
tRWM2C4kPt1Iq2bBvdSPd4JB4L87pcquKBVSd0cRPKYfiFE54Md38ROOhjiBPt2P
ftpLFxPD4x+/Gz1EN18mI8kcPoTGAi5AyBHTKIwQjAyHQth5AFTye+VqTzU8TR26
HSYHH2Adk5jvL/7k0/B31mQVGQwkhLWSsj1u7ix4ipPjrkGHAMRTAcZEjvgSm+w+
WszItLBV9omRW3kcE1bV4rq6xd0zcK/G0mSmRHojdETnU/AoMtSCLCrUHCOxNPg9
CWrR89yxTyxbQMbJoqkNSItHWA6O803obnX3dnHefRWp0R6DIrhKAHRAQF62eqz1
coP9YZ5yG0yajQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:05:27 2025 by rpki-client