Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
File: yjuG5lRw-ZTfptb-6OJk22LiSvk.mft (raw, json)
Hash identifier: 3gq96GHYj5HVXK6MIwytlskqLLWs5FcTUJTlFIuWl1w=
Subject key identifier: 84:B5:E9:D1:5C:A6:11:CD:AD:76:91:76:E2:69:97:61:64:07:45:4C
Authority key identifier: CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
Certificate issuer: /CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Certificate serial: 0197500EE053743419F8845B5D6C5AEE6755
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
Manifest number: 1588
Signing time: Sun 08 Jun 2025 15:00:41 +0000
Manifest this update: Sun 08 Jun 2025 15:00:41 +0000
Manifest next update: Mon 09 Jun 2025 15:00:41 +0000
Files and hashes: 1: Db8DTjUYkYFq1VL2utnrt9ZhoOQ.roa (hash: d9GgydKG9uk/HAxIswAdFFBoSDorEX71FTaOERwLhzg=)
2: RfiogXB75ZZcw60YgsMcLXMGreQ.roa (hash: CxagJfgQ+HRjqYYAQUHG4nzSSm5GU9hHUNpe0/HqHLA=)
3: Vsvw7zSK2cjlfLBPzsEjNibepw0.roa (hash: fMTdJF0J/U/sST/3YzLYOWjYa8T84ONedHLdQ86kfmA=)
4: WTl9wt0Rp1_SP8V72BWndXzvVXk.roa (hash: BI9xuqlMchALIUZfnOAm1MAIdvbV4MZUCOFrf3rfZgA=)
5: yjuG5lRw-ZTfptb-6OJk22LiSvk.crl (hash: YmlIT2bToMBPzpJrVwLGfeDBSog9rSG6itGVm34cEOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:0e:e0:53:74:34:19:f8:84:5b:5d:6c:5a:ee:67:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Validity
Not Before: Jun 8 15:00:41 2025 GMT
Not After : Jun 9 15:00:41 2025 GMT
Subject: CN=84b5e9d15ca611cdad769176e26997616407454c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8a:5a:77:bb:1a:c8:57:97:32:93:ef:ff:0e:
2c:f2:a1:0d:62:4a:84:30:3e:a4:e7:eb:e2:2e:3b:
d3:b0:d9:4b:2a:16:54:aa:b9:12:df:4a:7b:59:80:
57:6f:78:fe:0d:cd:4a:72:93:f0:e4:89:4a:3d:ca:
6d:0c:ac:ff:96:64:23:a5:16:38:c3:91:fe:b0:1c:
54:87:34:f3:6b:62:e8:74:9d:a1:27:9d:71:c7:2f:
eb:c8:03:38:97:54:ee:55:3f:45:dd:73:88:1a:fb:
99:4d:aa:7c:9e:1f:f0:f4:09:0e:77:b5:7e:2f:2a:
c0:48:56:32:76:23:96:0c:fd:fb:a3:17:59:87:e9:
b9:bf:b5:2d:fb:b6:4e:c1:95:6b:57:c9:32:4f:df:
6c:f5:d9:cb:f3:cb:3f:f7:ee:16:06:51:d7:51:83:
26:50:f8:0a:47:73:49:31:eb:17:7b:3b:fa:19:e4:
05:86:cd:ca:2e:9c:37:b2:d3:d6:dd:18:a4:29:77:
2d:c0:c7:12:68:a4:d1:b3:62:ad:ed:2b:c2:ce:70:
23:91:f0:81:e8:ff:9f:5a:47:16:80:c0:bd:5b:8c:
cd:75:87:c1:96:50:dd:2c:e8:55:69:08:e0:27:7f:
be:96:a7:21:de:56:2f:a7:70:c2:e5:15:ed:37:3f:
db:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B5:E9:D1:5C:A6:11:CD:AD:76:91:76:E2:69:97:61:64:07:45:4C
X509v3 Authority Key Identifier:
keyid:CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:00:7e:58:8c:1f:52:41:ea:88:91:e3:ac:88:da:4e:8f:35:
38:00:36:f7:9d:84:d2:cf:b4:3f:26:71:c1:54:54:4c:fa:9f:
33:f5:87:2b:22:de:c2:4c:29:92:a7:c1:ce:f0:29:4b:04:8a:
4a:23:3c:84:74:3f:6c:3f:03:9d:5e:74:d8:c2:61:06:77:1a:
86:b2:b8:4f:54:95:bf:69:34:b6:9d:59:39:a2:fd:21:6f:1e:
96:ac:37:de:12:9a:28:48:1a:ba:93:9b:ed:c1:99:21:ac:e1:
71:dd:5a:d1:98:ca:75:cb:d3:aa:da:5d:88:6e:81:73:84:98:
65:92:21:fe:13:a0:11:88:84:98:78:83:ce:34:2d:87:53:35:
53:68:7a:9b:c2:5b:e0:fd:d2:ca:ae:65:65:6a:14:1f:ce:6c:
bb:93:31:69:92:1e:ea:9f:8a:96:85:13:88:b9:9c:66:05:44:
74:69:8a:5e:47:9e:19:b9:d1:d4:87:1c:b5:3e:02:5f:54:86:
fb:39:83:bf:04:fb:a4:d5:88:dd:3f:62:df:ad:7f:27:c1:7f:
48:d7:f6:dc:0c:53:23:3b:91:24:df:89:05:82:1b:e7:e3:a6:
5a:87:a3:24:7b:d6:f9:9b:f2:f0:e3:20:38:52:ab:65:8a:7e:
75:11:cb:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdQDuBTdDQZ+IRbXWxa7mdVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhM2I4NmU2NTQ3MGY5OTRkZmE2ZDZmZWU4ZTI2NGRiNjJl
MjRhZjkwHhcNMjUwNjA4MTUwMDQxWhcNMjUwNjA5MTUwMDQxWjAzMTEwLwYDVQQD
Eyg4NGI1ZTlkMTVjYTYxMWNkYWQ3NjkxNzZlMjY5OTc2MTY0MDc0NTRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYpad7sayFeXMpPv/w4s8qENYkqE
MD6k5+viLjvTsNlLKhZUqrkS30p7WYBXb3j+Dc1KcpPw5IlKPcptDKz/lmQjpRY4
w5H+sBxUhzTza2LodJ2hJ51xxy/ryAM4l1TuVT9F3XOIGvuZTap8nh/w9AkOd7V+
LyrASFYydiOWDP37oxdZh+m5v7Ut+7ZOwZVrV8kyT99s9dnL88s/9+4WBlHXUYMm
UPgKR3NJMesXezv6GeQFhs3KLpw3stPW3RikKXctwMcSaKTRs2Kt7SvCznAjkfCB
6P+fWkcWgMC9W4zNdYfBllDdLOhVaQjgJ3++lqch3lYvp3DC5RXtNz/bYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIS16dFcphHNrXaRduJpl2FkB0VMMB8GA1UdIwQY
MBaAFMo7huZUcPmU36bW/ujiZNti4kr5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWp1RzVsUnctWlRmcHRiLTZPSmsyMkxpU3ZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8zZGFlNzEtMWFjZi00MTk2LTk2MDgt
OTUzMWQyNGUwNjEwLzEveWp1RzVsUnctWlRmcHRiLTZPSmsyMkxpU3ZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni8zZGFlNzEtMWFjZi00MTk2LTk2MDgtOTUzMWQyNGUwNjEw
LzEveWp1RzVsUnctWlRmcHRiLTZPSmsyMkxpU3ZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjgB+WIwf
UkHqiJHjrIjaTo81OAA2952E0s+0PyZxwVRUTPqfM/WHKyLewkwpkqfBzvApSwSK
SiM8hHQ/bD8DnV502MJhBncahrK4T1SVv2k0tp1ZOaL9IW8elqw33hKaKEgaupOb
7cGZIazhcd1a0ZjKdcvTqtpdiG6Bc4SYZZIh/hOgEYiEmHiDzjQth1M1U2h6m8Jb
4P3Syq5lZWoUH85su5MxaZIe6p+KloUTiLmcZgVEdGmKXkeeGbnR1IcctT4CX1SG
+zmDvwT7pNWI3T9i361/J8F/SNf23AxTIzuRJN+JBYIb5+OmWoejJHvW+Zvy8OMg
OFKrZYp+dRHLrg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 16:45:00 2025 by rpki-client