Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
File: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft (raw, json)
Hash identifier: zY7CPTGt+lFZ03nFOry04hFKRZ+AT9FvheAiJ5wQmiw=
Subject key identifier: E3:6B:2C:82:94:28:E9:F4:4D:98:92:C8:1F:18:19:B9:9E:75:C5:27
Authority key identifier: 63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
Certificate issuer: /CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Certificate serial: 01974B8D500091784B163B00D97D36856AA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
Manifest number: 0B60
Signing time: Sat 07 Jun 2025 18:00:41 +0000
Manifest this update: Sat 07 Jun 2025 18:00:41 +0000
Manifest next update: Sun 08 Jun 2025 18:00:41 +0000
Files and hashes: 1: 2ATvNbnGawNlZZ5eknfDSbXFIzQ.roa (hash: tXSd9lU5fCgD64Z/fTQv/A1ZJJrB3ZcLdqsIZET5sKI=)
2: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl (hash: Qf2TI6Rn913WdAUDopx8LlU4bdmtIewbPWfGjuNayIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:50:00:91:78:4b:16:3b:00:d9:7d:36:85:6a:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Validity
Not Before: Jun 7 18:00:41 2025 GMT
Not After : Jun 8 18:00:41 2025 GMT
Subject: CN=e36b2c829428e9f44d9892c81f1819b99e75c527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d1:24:5d:21:2c:28:86:7e:b6:f5:bd:4b:d8:
c3:66:32:9d:cb:71:be:35:d3:2d:82:07:70:88:6e:
64:d0:77:ba:88:e1:aa:1c:e7:00:e4:e8:40:a6:65:
85:5d:d1:0c:a5:3c:af:d0:82:2f:c8:ca:06:63:47:
a8:dc:15:61:cb:b3:06:33:00:6d:93:8a:dd:fc:10:
cc:96:fb:8f:5b:3e:27:5f:8d:6c:30:94:3d:a2:1a:
53:0c:b3:64:7b:a7:d2:0b:81:fb:ee:61:a4:e4:f1:
af:d7:75:b8:c2:30:01:d2:12:ea:d5:31:41:da:ce:
4f:72:2c:7e:19:b6:e9:ab:eb:24:d6:69:7f:fa:14:
1d:df:ef:2c:4e:6a:5a:15:1e:6a:05:94:89:de:8f:
3d:6b:65:23:d7:d8:fb:f4:31:04:3e:fd:70:f2:01:
7a:e8:93:30:16:fb:d5:77:a8:6a:27:78:14:e7:7d:
06:2c:2f:45:39:38:48:11:e7:42:d9:96:2d:d5:64:
2f:e0:5d:10:e6:21:4b:e7:c9:37:45:11:e1:08:2b:
f9:41:d8:15:ea:75:4a:87:4f:93:33:d1:af:fd:19:
e0:cf:ad:b1:79:90:c8:29:d4:d7:9b:08:8c:c5:86:
7b:37:a5:12:39:c5:69:0c:d9:50:73:43:64:b6:a9:
f7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:6B:2C:82:94:28:E9:F4:4D:98:92:C8:1F:18:19:B9:9E:75:C5:27
X509v3 Authority Key Identifier:
keyid:63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:0a:c3:d5:5d:cf:4d:00:d6:3b:c8:41:37:8f:b7:46:cd:f4:
89:d2:d8:76:6d:d8:e9:8e:70:1d:65:a3:9e:47:94:3c:18:d2:
02:54:34:c8:0b:65:d2:eb:b4:04:0d:89:9a:e7:5a:ba:c3:53:
d5:36:ce:52:d0:0f:0b:d4:76:c6:74:1b:e7:01:e5:bf:c8:82:
ae:4c:93:51:b4:f2:4c:13:f3:d2:55:7d:4b:93:60:47:2c:84:
1f:d8:d4:15:02:10:90:4e:df:2d:5c:89:72:19:4e:f2:dd:22:
79:96:a8:76:be:4b:6a:fe:64:1a:80:77:c8:fa:9c:bd:13:7d:
93:3d:f5:97:ce:00:d2:b3:86:40:79:bf:7f:d7:a5:e8:31:3a:
6b:6e:34:7f:ae:ba:08:be:23:97:1e:d1:98:6b:21:dd:93:77:
15:99:7b:84:cc:b2:99:f1:fe:8b:b4:4c:4b:79:3c:8f:7b:b0:
4d:b4:a5:47:1b:1e:97:19:54:14:60:31:c5:c7:ab:1e:96:f1:
d1:0c:bf:ab:e8:48:22:5d:7c:62:b0:39:f9:7a:cf:44:79:76:
5f:9b:c2:83:86:3e:a9:1a:18:e6:17:ef:52:3f:89:68:93:02:
66:55:21:32:84:36:d1:d9:21:85:cb:b6:f8:be:0f:1a:72:36:
64:bc:dc:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLjVAAkXhLFjsA2X02hWqkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzOGM4M2Y5YTNhM2QyMTYwYTAxNzhjYTE5Y2NiNDNhMGQy
ZjE4OTAwHhcNMjUwNjA3MTgwMDQxWhcNMjUwNjA4MTgwMDQxWjAzMTEwLwYDVQQD
EyhlMzZiMmM4Mjk0MjhlOWY0NGQ5ODkyYzgxZjE4MTliOTllNzVjNTI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0NEkXSEsKIZ+tvW9S9jDZjKdy3G+
NdMtggdwiG5k0He6iOGqHOcA5OhApmWFXdEMpTyv0IIvyMoGY0eo3BVhy7MGMwBt
k4rd/BDMlvuPWz4nX41sMJQ9ohpTDLNke6fSC4H77mGk5PGv13W4wjAB0hLq1TFB
2s5Pcix+Gbbpq+sk1ml/+hQd3+8sTmpaFR5qBZSJ3o89a2Uj19j79DEEPv1w8gF6
6JMwFvvVd6hqJ3gU530GLC9FOThIEedC2ZYt1WQv4F0Q5iFL58k3RRHhCCv5QdgV
6nVKh0+TM9Gv/Rngz62xeZDIKdTXmwiMxYZ7N6USOcVpDNlQc0Nktqn3fwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFONrLIKUKOn0TZiSyB8YGbmedcUnMB8GA1UdIwQY
MBaAFGOMg/mjo9IWCgF4yhnMtDoNLxiQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWTR5RC1hT2owaFlLQVhqS0djeTBPZzB2R0pBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jYzNjMjgtN2IxMy00MzQzLWFmMzct
MjU1NTBiYTI5MTI3LzEvWTR5RC1hT2owaFlLQVhqS0djeTBPZzB2R0pBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9jYzNjMjgtN2IxMy00MzQzLWFmMzctMjU1NTBiYTI5MTI3
LzEvWTR5RC1hT2owaFlLQVhqS0djeTBPZzB2R0pBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhQrD1V3P
TQDWO8hBN4+3Rs30idLYdm3Y6Y5wHWWjnkeUPBjSAlQ0yAtl0uu0BA2JmudausNT
1TbOUtAPC9R2xnQb5wHlv8iCrkyTUbTyTBPz0lV9S5NgRyyEH9jUFQIQkE7fLVyJ
chlO8t0ieZaodr5Lav5kGoB3yPqcvRN9kz31l84A0rOGQHm/f9el6DE6a240f666
CL4jlx7RmGsh3ZN3FZl7hMyymfH+i7RMS3k8j3uwTbSlRxselxlUFGAxxcerHpbx
0Qy/q+hIIl18YrA5+XrPRHl2X5vCg4Y+qRoY5hfvUj+JaJMCZlUhMoQ20dkhhcu2
+L4PGnI2ZLzcaA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 23:09:32 2025 by rpki-client