Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
File: RYemiKiamJlJQWqBnMSoDepFTJ0.mft (raw, json)
Hash identifier: Cjz+WAnN5m/PenBmX56z8jNwGtcWwLiz3t8cE+GZfIk=
Subject key identifier: BA:8D:3B:B0:05:1B:4C:CD:43:27:AD:9E:A4:CC:F2:61:E5:32:EC:02
Authority key identifier: 45:87:A6:88:A8:9A:98:99:49:41:6A:81:9C:C4:A8:0D:EA:45:4C:9D
Certificate issuer: /CN=4587a688a89a989949416a819cc4a80dea454c9d
Certificate serial: 019748FA78D829AC5D0AE06E1822C9563482
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RYemiKiamJlJQWqBnMSoDepFTJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
Manifest number: 0236
Signing time: Sat 07 Jun 2025 06:01:03 +0000
Manifest this update: Sat 07 Jun 2025 06:01:03 +0000
Manifest next update: Sun 08 Jun 2025 06:01:03 +0000
Files and hashes: 1: RYemiKiamJlJQWqBnMSoDepFTJ0.crl (hash: DN4BdCcxcMiRRFx3jgm9aSgtkatwMD5QrnD2pEroeJ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/RYemiKiamJlJQWqBnMSoDepFTJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:78:d8:29:ac:5d:0a:e0:6e:18:22:c9:56:34:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4587a688a89a989949416a819cc4a80dea454c9d
Validity
Not Before: Jun 7 06:01:03 2025 GMT
Not After : Jun 8 06:01:03 2025 GMT
Subject: CN=ba8d3bb0051b4ccd4327ad9ea4ccf261e532ec02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:aa:3e:ee:3f:11:41:d1:f0:80:5c:bb:38:96:
8b:d9:9e:b4:04:53:6b:2c:59:7b:80:82:7d:22:ac:
66:bf:a5:5c:a9:51:58:ba:fa:1d:2f:ca:a8:04:3e:
03:f7:e2:70:ac:3e:68:5a:47:e3:e5:fc:75:46:1d:
82:0b:d7:bb:06:90:af:c7:79:fc:cf:46:ea:fc:5f:
bc:07:e6:3e:d0:1d:95:c3:bb:90:18:06:35:ae:85:
e7:da:0e:cb:91:9d:ae:ee:92:56:68:c1:fb:a1:4f:
63:64:d4:05:56:75:43:cb:e9:05:3e:38:3b:4d:cb:
92:55:47:58:8d:1b:8f:d1:d6:1a:3b:1b:2c:bb:7e:
8b:90:c2:94:6a:2a:4a:b4:27:67:c1:ca:bb:10:ac:
6a:62:4b:e8:74:8f:a2:05:c3:4c:0a:89:b8:af:fe:
c9:f6:dc:84:c5:a2:2d:48:b6:14:9c:97:43:71:31:
26:72:c1:20:ff:d3:12:b6:95:3f:da:24:30:46:bd:
42:9e:23:ae:ad:d3:fe:56:a8:b6:53:14:38:1c:bd:
22:ee:52:35:d0:da:13:3b:a0:c6:54:9f:77:28:9d:
4d:cf:fc:5b:65:2f:44:42:be:3d:7f:d7:af:a3:6d:
d6:11:b3:c5:9e:52:4a:a7:61:0b:81:f7:3f:f4:ba:
d7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:8D:3B:B0:05:1B:4C:CD:43:27:AD:9E:A4:CC:F2:61:E5:32:EC:02
X509v3 Authority Key Identifier:
keyid:45:87:A6:88:A8:9A:98:99:49:41:6A:81:9C:C4:A8:0D:EA:45:4C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RYemiKiamJlJQWqBnMSoDepFTJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:a4:4e:0e:90:90:f6:db:c5:50:e0:28:b6:a0:b8:77:2f:20:
e6:11:b1:a8:80:4e:60:cd:3b:53:52:93:53:c7:bb:d7:8a:d6:
21:23:17:8a:eb:33:ec:4a:a3:77:5d:28:e8:ed:42:96:e5:52:
d2:f9:d7:3a:d6:e0:31:b4:01:08:6a:1e:20:e8:29:27:81:d1:
ba:40:3f:e0:99:e1:22:86:ee:35:04:8c:a8:a2:66:fa:0d:ea:
3e:f4:e6:ff:ed:68:1b:06:65:6d:79:79:04:ba:ab:f6:aa:38:
45:9c:f1:64:e4:f5:ca:22:36:26:b0:e5:4f:fe:38:37:3b:94:
38:5a:00:e9:f7:ed:27:1e:56:df:39:c7:a5:bc:a6:26:cd:8f:
66:53:04:5b:a4:22:35:28:86:a3:25:ef:96:5a:f1:6a:bc:6e:
a2:3b:67:5e:4e:73:18:dc:40:01:6e:88:14:93:33:18:98:75:
86:b9:7c:0d:cd:1f:a2:df:3f:d5:1d:20:5d:70:a3:99:2a:fc:
28:eb:0c:ee:ad:b9:d0:cf:78:7d:78:a4:2b:d9:b3:56:fa:be:
7d:0a:2a:36:be:b1:04:e2:33:ec:2b:86:01:35:d7:75:86:0e:
45:34:ef:79:74:2c:ad:c4:4c:d2:a3:46:84:3f:6b:6f:d1:28:
15:04:8d:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdI+njYKaxdCuBuGCLJVjSCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ1ODdhNjg4YTg5YTk4OTk0OTQxNmE4MTljYzRhODBkZWE0
NTRjOWQwHhcNMjUwNjA3MDYwMTAzWhcNMjUwNjA4MDYwMTAzWjAzMTEwLwYDVQQD
EyhiYThkM2JiMDA1MWI0Y2NkNDMyN2FkOWVhNGNjZjI2MWU1MzJlYzAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKo+7j8RQdHwgFy7OJaL2Z60BFNr
LFl7gIJ9Iqxmv6VcqVFYuvodL8qoBD4D9+JwrD5oWkfj5fx1Rh2CC9e7BpCvx3n8
z0bq/F+8B+Y+0B2Vw7uQGAY1roXn2g7LkZ2u7pJWaMH7oU9jZNQFVnVDy+kFPjg7
TcuSVUdYjRuP0dYaOxssu36LkMKUaipKtCdnwcq7EKxqYkvodI+iBcNMCom4r/7J
9tyExaItSLYUnJdDcTEmcsEg/9MStpU/2iQwRr1CniOurdP+Vqi2UxQ4HL0i7lI1
0NoTO6DGVJ93KJ1Nz/xbZS9EQr49f9evo23WEbPFnlJKp2ELgfc/9LrXZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLqNO7AFG0zNQyetnqTM8mHlMuwCMB8GA1UdIwQY
MBaAFEWHpoiompiZSUFqgZzEqA3qRUydMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUlllbWlLaWFtSmxKUVdxQm5NU29EZXBGVEowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ni82MWQyYjMtNzlkYi00ODk5LThiODAt
MmY3MjU5NTYxNDhmLzEvUlllbWlLaWFtSmxKUVdxQm5NU29EZXBGVEowLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ni82MWQyYjMtNzlkYi00ODk5LThiODAtMmY3MjU5NTYxNDhm
LzEvUlllbWlLaWFtSmxKUVdxQm5NU29EZXBGVEowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjaRODpCQ
9tvFUOAotqC4dy8g5hGxqIBOYM07U1KTU8e714rWISMXiusz7Eqjd10o6O1CluVS
0vnXOtbgMbQBCGoeIOgpJ4HRukA/4JnhIobuNQSMqKJm+g3qPvTm/+1oGwZlbXl5
BLqr9qo4RZzxZOT1yiI2JrDlT/44NzuUOFoA6fftJx5W3znHpbymJs2PZlMEW6Qi
NSiGoyXvllrxarxuojtnXk5zGNxAAW6IFJMzGJh1hrl8Dc0fot8/1R0gXXCjmSr8
KOsM7q250M94fXikK9mzVvq+fQoqNr6xBOIz7CuGATXXdYYORTTveXQsrcRM0qNG
hD9rb9EoFQSNNg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:05:48 2025 by rpki-client