Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
File: YEBzL9vKpSkA2yRiB1v07xUVlpU.mft (raw, json)
Hash identifier: DKBkU2KW7UtICsVLkWuNsU9yTHB1XfZeMq0pfJ5uvck=
Subject key identifier: C7:40:A3:B0:1B:58:1D:CF:50:86:0E:E1:50:40:88:18:84:46:AD:71
Authority key identifier: 60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
Certificate issuer: /CN=6040732fdbcaa52900db2462075bf4ef15159695
Certificate serial: 01992330F0252F46004A28E1997E1B66673A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
Manifest number: 0522
Signing time: Sun 07 Sep 2025 08:00:33 +0000
Manifest this update: Sun 07 Sep 2025 08:00:33 +0000
Manifest next update: Mon 08 Sep 2025 08:00:33 +0000
Files and hashes: 1: 2zI93eWS4MAq1q_HzWCmHMK0vvc.roa (hash: OPrS0FrS6pSekQT7FXidaqihz4eIxPAHQ00wl3WWNU8=)
2: YEBzL9vKpSkA2yRiB1v07xUVlpU.crl (hash: iRFvncNMmhSm/rAqIhHJDpj9UxTJkfj3k+Z68E3MZ2Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:f0:25:2f:46:00:4a:28:e1:99:7e:1b:66:67:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6040732fdbcaa52900db2462075bf4ef15159695
Validity
Not Before: Sep 7 08:00:33 2025 GMT
Not After : Sep 8 08:00:33 2025 GMT
Subject: CN=c740a3b01b581dcf50860ee1504088188446ad71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5d:96:21:b4:db:7a:05:7e:52:e8:47:bc:1d:
70:d5:2c:04:25:bf:f6:17:35:dd:b8:87:8f:00:a8:
80:46:11:1c:1e:38:cb:f0:fe:0f:14:80:50:45:fd:
c1:14:58:ed:e3:da:6e:d1:57:2c:a1:a8:79:4a:cb:
cf:9c:38:0f:8a:3f:8e:1b:6a:93:a7:a0:21:29:d1:
2c:4c:a6:4a:86:a0:3d:84:31:65:36:79:11:a0:30:
eb:76:f7:9e:0d:7e:5a:8c:85:90:97:80:29:05:ce:
b1:79:5b:1f:8b:e4:f7:0b:d9:46:8c:da:ed:b7:20:
20:ff:c5:30:a7:12:88:26:0d:f4:58:45:87:cb:77:
c7:a9:a6:3e:10:c1:07:8f:e7:92:bb:6f:3d:85:db:
7d:c5:b8:b2:ef:36:b0:8b:9b:b6:d1:92:c1:e4:8b:
bb:20:17:c1:2a:eb:02:fd:fb:ff:e3:37:35:92:7c:
99:d6:57:4d:13:e2:d2:9b:46:05:21:f9:45:8c:77:
2b:9a:a3:ae:b0:eb:29:cb:62:d7:fd:3e:cc:61:cb:
58:fa:22:1e:bc:ec:7b:fa:47:20:28:c8:e4:43:0a:
0b:c5:cc:93:21:f2:9e:ac:2b:4e:90:04:8f:a6:e0:
e5:73:cb:e2:be:96:b1:8a:31:a5:0d:8e:7e:09:61:
5d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:40:A3:B0:1B:58:1D:CF:50:86:0E:E1:50:40:88:18:84:46:AD:71
X509v3 Authority Key Identifier:
keyid:60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:59:43:04:f2:33:f5:31:13:e9:47:3d:bc:90:75:d6:8b:74:
50:9e:7d:79:94:00:f6:4f:95:95:2e:1c:61:56:58:99:ab:c3:
3e:f8:44:ee:5d:d2:e9:4b:76:31:18:2b:ad:b9:a7:88:63:da:
b4:80:67:65:b3:87:19:b1:6b:94:3a:7c:86:6f:e8:02:40:f7:
85:fc:8b:9b:e6:79:c0:7e:3f:30:d9:3e:1a:94:00:b7:18:3a:
78:fd:42:99:8c:c4:65:cf:41:ec:4e:2c:e5:b0:d2:d6:0f:b0:
68:79:22:7b:4a:e2:1a:a8:89:a5:52:ec:5d:3b:75:9c:16:94:
1f:75:e4:6f:13:b6:58:93:b5:d5:ec:df:ef:75:1a:84:5f:31:
c4:16:28:e0:7b:be:69:05:98:41:a4:cf:89:d4:8c:da:e8:b7:
31:38:af:08:76:a3:4f:31:2d:3b:4e:56:ff:a5:18:9b:b2:3c:
ef:0f:27:d5:92:1b:9e:eb:97:43:ba:df:d2:52:51:18:21:5a:
9c:cf:1c:8e:ab:1b:e0:4a:09:b9:48:ac:46:08:4f:ac:49:f9:
14:81:b2:be:d9:73:7a:2b:74:82:9d:0c:7d:e6:1e:70:8a:84:
46:83:f1:df:ee:99:83:e2:62:9e:1e:69:eb:ab:42:a7:75:1e:
1c:61:d4:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjMPAlL0YASijhmX4bZmc6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNDA3MzJmZGJjYWE1MjkwMGRiMjQ2MjA3NWJmNGVmMTUx
NTk2OTUwHhcNMjUwOTA3MDgwMDMzWhcNMjUwOTA4MDgwMDMzWjAzMTEwLwYDVQQD
EyhjNzQwYTNiMDFiNTgxZGNmNTA4NjBlZTE1MDQwODgxODg0NDZhZDcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsF2WIbTbegV+UuhHvB1w1SwEJb/2
FzXduIePAKiARhEcHjjL8P4PFIBQRf3BFFjt49pu0Vcsoah5SsvPnDgPij+OG2qT
p6AhKdEsTKZKhqA9hDFlNnkRoDDrdveeDX5ajIWQl4ApBc6xeVsfi+T3C9lGjNrt
tyAg/8UwpxKIJg30WEWHy3fHqaY+EMEHj+eSu289hdt9xbiy7zawi5u20ZLB5Iu7
IBfBKusC/fv/4zc1knyZ1ldNE+LSm0YFIflFjHcrmqOusOspy2LX/T7MYctY+iIe
vOx7+kcgKMjkQwoLxcyTIfKerCtOkASPpuDlc8vivpaxijGlDY5+CWFdBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMdAo7AbWB3PUIYO4VBAiBiERq1xMB8GA1UdIwQY
MBaAFGBAcy/byqUpANskYgdb9O8VFZaVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUVCekw5dktwU2tBMnlSaUIxdjA3eFVWbHBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy81Njc2YTMtOWMzOS00ZGIwLTk1MWUt
ZDJiNjk4MmJjNDg0LzEvWUVCekw5dktwU2tBMnlSaUIxdjA3eFVWbHBVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy81Njc2YTMtOWMzOS00ZGIwLTk1MWUtZDJiNjk4MmJjNDg0
LzEvWUVCekw5dktwU2tBMnlSaUIxdjA3eFVWbHBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjVlDBPIz
9TET6Uc9vJB11ot0UJ59eZQA9k+VlS4cYVZYmavDPvhE7l3S6Ut2MRgrrbmniGPa
tIBnZbOHGbFrlDp8hm/oAkD3hfyLm+Z5wH4/MNk+GpQAtxg6eP1CmYzEZc9B7E4s
5bDS1g+waHkie0riGqiJpVLsXTt1nBaUH3XkbxO2WJO11ezf73UahF8xxBYo4Hu+
aQWYQaTPidSM2ui3MTivCHajTzEtO05W/6UYm7I87w8n1ZIbnuuXQ7rf0lJRGCFa
nM8cjqsb4EoJuUisRghPrEn5FIGyvtlzeit0gp0MfeYecIqERoPx3+6Zg+Jinh5p
66tCp3UeHGHUIQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:31 2025 by rpki-client