Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
File: A_P-YHUIK-jliDKbQ9dhv257AdA.mft (raw, json)
Hash identifier: InDv8U08DZgCUohAWWRbkUUS1Zk69TSShHypNfnWZHc=
Subject key identifier: ED:73:DB:B5:81:41:20:3F:08:08:84:4E:E8:D6:E2:E4:1F:C7:84:F5
Authority key identifier: 03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
Certificate issuer: /CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Certificate serial: 01974D0E001B59292052697521E9EDDB6163
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
Manifest number: 07B1
Signing time: Sun 08 Jun 2025 01:00:52 +0000
Manifest this update: Sun 08 Jun 2025 01:00:52 +0000
Manifest next update: Mon 09 Jun 2025 01:00:52 +0000
Files and hashes: 1: A_P-YHUIK-jliDKbQ9dhv257AdA.crl (hash: /Flel3vxykxqdHC4UiZTCdohXnoRVsASEf1AVc2CRLQ=)
2: l0K6PAqN9Gt27j_CVXz67WejrWo.roa (hash: 791A1HYehBk0Xv4a4YcluI/Rrf5zyMUHKzRR42V6uDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0e:00:1b:59:29:20:52:69:75:21:e9:ed:db:61:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Validity
Not Before: Jun 8 01:00:52 2025 GMT
Not After : Jun 9 01:00:52 2025 GMT
Subject: CN=ed73dbb58141203f0808844ee8d6e2e41fc784f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:68:ab:a0:00:3a:d0:58:15:94:6f:f7:46:6d:
ef:c7:47:b6:e2:d2:14:96:f7:14:ce:bd:3c:27:8e:
93:68:e6:7a:3d:9d:f4:80:42:d3:e4:9a:d0:c8:7f:
5d:e1:90:1a:bd:f8:63:86:23:dd:95:1e:4c:49:98:
a5:73:a9:7c:89:9b:56:a7:59:bf:df:b3:e9:ed:22:
bd:7e:f8:a4:36:59:f9:c3:12:d3:4e:73:10:4c:c0:
f5:d6:8e:2e:81:98:39:1f:50:e2:4e:5f:6c:3a:28:
36:54:07:e2:73:b2:ed:d7:4a:d5:b9:3c:67:0c:e0:
71:ee:1a:1a:3d:67:93:26:57:bb:16:54:5b:6b:8c:
ce:9c:b6:b4:dc:64:21:40:5c:e1:8c:5e:1b:f0:73:
87:54:7b:a7:b6:84:fb:4e:9a:08:76:e5:c9:45:e4:
1e:21:7d:7c:5e:fb:bc:3f:bb:6e:8f:85:e5:5d:39:
17:7a:d0:5f:b4:02:df:1f:ca:ab:0c:c2:77:3b:38:
a5:6f:fb:d8:4f:28:e0:70:96:ef:ba:ad:f2:8e:64:
a4:6d:95:d2:3e:d5:91:4a:08:02:41:d0:18:f0:33:
9e:76:d0:86:39:c4:6c:3d:64:68:7c:ad:e9:82:32:
3c:1f:66:ec:89:98:e1:47:81:2b:89:ed:0f:4e:44:
31:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:73:DB:B5:81:41:20:3F:08:08:84:4E:E8:D6:E2:E4:1F:C7:84:F5
X509v3 Authority Key Identifier:
keyid:03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:37:59:c7:97:b5:fa:5d:52:34:19:f5:63:6c:8d:8a:ac:51:
8f:44:dc:ad:de:5b:99:ad:9f:3a:98:21:68:e6:81:66:5f:38:
95:1d:77:79:13:b2:77:76:56:42:fb:3d:ee:d7:79:41:9a:c4:
98:00:ce:c4:94:db:61:a8:e0:33:21:d8:5c:16:29:24:fd:3b:
5d:80:58:43:7d:e1:91:74:c8:e6:90:5b:c9:f9:02:ed:d6:10:
23:0a:ee:52:30:3c:c0:e0:1c:4b:06:5b:4d:46:e9:97:06:f7:
4b:d6:4b:c2:65:06:dc:88:4e:89:8c:76:75:52:09:de:de:60:
6a:da:29:25:0e:8b:66:56:5d:f8:d9:45:ab:8a:fe:26:9e:6f:
3f:b6:c9:7a:34:e8:38:76:6c:9f:75:5b:86:37:68:c7:36:bc:
1c:52:14:9d:a9:83:a1:41:c5:9f:8d:f5:b6:f3:00:4c:77:5e:
9d:1e:b6:d2:ae:d5:f1:f0:ec:b8:6d:dc:79:58:3c:17:18:a1:
c9:84:60:aa:4e:5d:d9:62:2b:b5:3c:8a:0f:06:9e:ee:c4:af:
f6:24:45:f9:80:d9:85:b1:c4:00:c1:a3:fb:24:d9:d4:c8:37:
d9:63:d9:50:7d:5a:05:7d:c1:d3:f8:99:bf:f0:4a:8c:97:4d:
74:e4:21:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdNDgAbWSkgUml1Ient22FjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzZjNmZTYwNzUwODJiZThlNTg4MzI5YjQzZDc2MWJmNmU3
YjAxZDAwHhcNMjUwNjA4MDEwMDUyWhcNMjUwNjA5MDEwMDUyWjAzMTEwLwYDVQQD
EyhlZDczZGJiNTgxNDEyMDNmMDgwODg0NGVlOGQ2ZTJlNDFmYzc4NGY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumiroAA60FgVlG/3Rm3vx0e24tIU
lvcUzr08J46TaOZ6PZ30gELT5JrQyH9d4ZAavfhjhiPdlR5MSZilc6l8iZtWp1m/
37Pp7SK9fvikNln5wxLTTnMQTMD11o4ugZg5H1DiTl9sOig2VAfic7Lt10rVuTxn
DOBx7hoaPWeTJle7FlRba4zOnLa03GQhQFzhjF4b8HOHVHuntoT7TpoIduXJReQe
IX18Xvu8P7tuj4XlXTkXetBftALfH8qrDMJ3Ozilb/vYTyjgcJbvuq3yjmSkbZXS
PtWRSggCQdAY8DOedtCGOcRsPWRofK3pgjI8H2bsiZjhR4Erie0PTkQxJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO1z27WBQSA/CAiETujW4uQfx4T1MB8GA1UdIwQY
MBaAFAPz/mB1CCvo5Ygym0PXYb9uewHQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQV9QLVlIVUlLLWpsaURLYlE5ZGh2MjU3QWRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy84YmY3ZWEtODgzYS00YzQzLTk0NmMt
ODJkYWZlMTA0YmM1LzEvQV9QLVlIVUlLLWpsaURLYlE5ZGh2MjU3QWRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy84YmY3ZWEtODgzYS00YzQzLTk0NmMtODJkYWZlMTA0YmM1
LzEvQV9QLVlIVUlLLWpsaURLYlE5ZGh2MjU3QWRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnjdZx5e1
+l1SNBn1Y2yNiqxRj0Tcrd5bma2fOpghaOaBZl84lR13eROyd3ZWQvs97td5QZrE
mADOxJTbYajgMyHYXBYpJP07XYBYQ33hkXTI5pBbyfkC7dYQIwruUjA8wOAcSwZb
TUbplwb3S9ZLwmUG3IhOiYx2dVIJ3t5gatopJQ6LZlZd+NlFq4r+Jp5vP7bJejTo
OHZsn3Vbhjdoxza8HFIUnamDoUHFn431tvMATHdenR620q7V8fDsuG3ceVg8Fxih
yYRgqk5d2WIrtTyKDwae7sSv9iRF+YDZhbHEAMGj+yTZ1Mg32WPZUH1aBX3B0/iZ
v/BKjJdNdOQhGQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 06:39:19 2025 by rpki-client