Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
File: ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft (raw, json)
Hash identifier: Lczf9D1yv3eyIEZ07m6C/1dBU4OJ3zcZpQ8zVp6Smzs=
Subject key identifier: 63:B8:E8:40:4F:05:2D:1E:35:81:C1:F4:63:71:09:C6:D0:8E:88:2A
Authority key identifier: CA:09:14:9F:34:78:4F:5B:20:2C:56:76:1B:01:D3:5D:D0:25:69:CD
Certificate issuer: /CN=ca09149f34784f5b202c56761b01d35dd02569cd
Certificate serial: 01974B56320A14587DDEB2153B5A01B2498B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygkUnzR4T1sgLFZ2GwHTXdAlac0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
Manifest number: 0320
Signing time: Sat 07 Jun 2025 17:00:29 +0000
Manifest this update: Sat 07 Jun 2025 17:00:29 +0000
Manifest next update: Sun 08 Jun 2025 17:00:29 +0000
Files and hashes: 1: 9hSS_TvQhCvC8fhsSyJYV-rq3kg.roa (hash: IKnNzHp7XVRMYKLUBlGGbOEdrSNJK7VVnYm2JR8nfXc=)
2: ygkUnzR4T1sgLFZ2GwHTXdAlac0.crl (hash: +s8E5t4OjjAJRnJqS3a9eS1k39Gu4ThUkGf7WXcYH6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygkUnzR4T1sgLFZ2GwHTXdAlac0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:32:0a:14:58:7d:de:b2:15:3b:5a:01:b2:49:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca09149f34784f5b202c56761b01d35dd02569cd
Validity
Not Before: Jun 7 17:00:29 2025 GMT
Not After : Jun 8 17:00:29 2025 GMT
Subject: CN=63b8e8404f052d1e3581c1f4637109c6d08e882a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:31:9b:71:96:d2:88:75:52:9c:e2:bb:a3:2e:
5c:5d:64:f0:c4:89:5b:4d:2c:41:e4:08:18:8f:54:
fe:9d:04:8e:0b:e2:d5:eb:86:20:9d:7b:7b:63:15:
df:18:89:f0:ee:c3:39:b6:ef:77:13:0b:4d:7e:f8:
c4:3f:ba:74:e2:59:1a:03:64:f8:ab:0b:4d:53:0d:
70:55:55:d5:59:13:cc:86:ba:9a:b2:ce:2a:b6:8b:
2a:0d:94:eb:a6:43:f9:b2:d9:cb:cb:37:f5:e1:a3:
13:55:99:63:cc:90:84:0b:9c:ee:53:69:ce:f5:03:
06:ec:22:bd:8c:77:2c:4d:da:3e:2e:24:48:ba:79:
6b:42:a8:6e:b8:0f:25:5a:2c:ff:96:85:e9:9d:d5:
60:25:f4:8c:d8:7c:a7:34:07:39:63:57:a8:8e:cc:
0b:16:ac:e6:9d:50:b9:f5:1b:ae:bd:b0:04:fa:e7:
12:a8:63:5b:6e:e9:e9:6e:f3:7d:ac:04:1f:39:b6:
d6:af:49:85:55:92:87:c1:73:25:87:d6:5b:1a:82:
7e:91:94:4f:ab:f2:ce:c4:13:22:de:3b:5b:65:2b:
6b:8c:b6:34:b5:35:68:88:40:8d:a9:36:5b:98:06:
97:9d:2b:a4:6e:a3:db:b6:c3:33:e4:40:22:87:a2:
3d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B8:E8:40:4F:05:2D:1E:35:81:C1:F4:63:71:09:C6:D0:8E:88:2A
X509v3 Authority Key Identifier:
keyid:CA:09:14:9F:34:78:4F:5B:20:2C:56:76:1B:01:D3:5D:D0:25:69:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygkUnzR4T1sgLFZ2GwHTXdAlac0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:15:72:e5:8e:e5:d5:09:62:1e:fa:ae:37:2c:37:3c:91:b7:
e9:46:ea:a3:00:60:2e:ca:e2:5b:4f:2b:9e:c0:e1:7c:bf:bb:
fb:0a:97:be:2d:d0:15:17:80:6a:ab:85:7e:5e:fd:5e:8e:26:
7a:09:6a:98:d2:ab:43:13:59:8c:41:2c:79:33:a9:a8:56:a2:
5b:13:52:4e:0b:72:2a:17:25:b4:e9:20:83:d8:f1:17:b5:98:
ad:c8:be:7b:29:54:33:c0:c6:9b:49:7e:2a:23:67:22:07:d3:
ae:48:0b:58:66:f9:0c:50:06:36:a3:81:3d:50:28:9a:0b:bc:
1d:b6:12:5c:2d:33:bf:bd:14:b7:d4:c5:f1:99:e0:74:60:85:
60:9f:01:00:c0:e5:6b:9c:ae:0d:95:80:3e:61:66:8b:7c:48:
15:3f:b7:28:da:b2:5d:9b:5d:1f:3b:4f:07:71:02:f1:99:78:
6e:8e:bb:b2:35:a6:bd:44:9b:3d:dd:ab:9d:c8:74:8f:45:9c:
5b:04:17:85:f6:0f:0b:72:4a:24:64:49:5b:0f:db:e5:9a:7f:
2b:5c:b4:b6:7f:0e:fe:f7:21:85:da:75:3f:13:3b:66:93:1a:
c9:7e:6b:6c:a2:fc:de:c5:f9:ef:bd:3f:fc:b0:8b:4e:b6:01:
65:33:3c:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLVjIKFFh93rIVO1oBskmLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMDkxNDlmMzQ3ODRmNWIyMDJjNTY3NjFiMDFkMzVkZDAy
NTY5Y2QwHhcNMjUwNjA3MTcwMDI5WhcNMjUwNjA4MTcwMDI5WjAzMTEwLwYDVQQD
Eyg2M2I4ZTg0MDRmMDUyZDFlMzU4MWMxZjQ2MzcxMDljNmQwOGU4ODJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwTGbcZbSiHVSnOK7oy5cXWTwxIlb
TSxB5AgYj1T+nQSOC+LV64YgnXt7YxXfGInw7sM5tu93EwtNfvjEP7p04lkaA2T4
qwtNUw1wVVXVWRPMhrqass4qtosqDZTrpkP5stnLyzf14aMTVZljzJCEC5zuU2nO
9QMG7CK9jHcsTdo+LiRIunlrQqhuuA8lWiz/loXpndVgJfSM2HynNAc5Y1eojswL
FqzmnVC59RuuvbAE+ucSqGNbbunpbvN9rAQfObbWr0mFVZKHwXMlh9ZbGoJ+kZRP
q/LOxBMi3jtbZStrjLY0tTVoiECNqTZbmAaXnSukbqPbtsMz5EAih6I9mQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGO46EBPBS0eNYHB9GNxCcbQjogqMB8GA1UdIwQY
MBaAFMoJFJ80eE9bICxWdhsB013QJWnNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWdrVW56UjRUMXNnTEZaMkd3SFRYZEFsYWMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9iMGRjZGEtYTM3ZS00NzAzLThkNWEt
OWFhZDkwM2E3Mjc2LzEveWdrVW56UjRUMXNnTEZaMkd3SFRYZEFsYWMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy9iMGRjZGEtYTM3ZS00NzAzLThkNWEtOWFhZDkwM2E3Mjc2
LzEveWdrVW56UjRUMXNnTEZaMkd3SFRYZEFsYWMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKhVy5Y7l
1QliHvquNyw3PJG36UbqowBgLsriW08rnsDhfL+7+wqXvi3QFReAaquFfl79Xo4m
eglqmNKrQxNZjEEseTOpqFaiWxNSTgtyKhcltOkgg9jxF7WYrci+eylUM8DGm0l+
KiNnIgfTrkgLWGb5DFAGNqOBPVAomgu8HbYSXC0zv70Ut9TF8ZngdGCFYJ8BAMDl
a5yuDZWAPmFmi3xIFT+3KNqyXZtdHztPB3EC8Zl4bo67sjWmvUSbPd2rnch0j0Wc
WwQXhfYPC3JKJGRJWw/b5Zp/K1y0tn8O/vchhdp1PxM7ZpMayX5rbKL83sX5770/
/LCLTrYBZTM8OA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 22:06:36 2025 by rpki-client