Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
File: ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft (raw, json)
Hash identifier: auhF8DWuP1Qd3faw7zN5jEZGo0X038qy/VzYILKRG50=
Subject key identifier: 32:50:B1:E5:2E:12:7A:7C:CE:45:80:1B:D0:58:8F:76:85:EE:D8:BD
Authority key identifier: CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
Certificate issuer: /CN=ca5154158905d1d44c4588dfd25802f324a93d61
Certificate serial: 019764A845343059AAB589238F50937C56BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
Manifest number: 03E1
Signing time: Thu 12 Jun 2025 15:00:38 +0000
Manifest this update: Thu 12 Jun 2025 15:00:38 +0000
Manifest next update: Fri 13 Jun 2025 15:00:38 +0000
Files and hashes: 1: AVYBUHDR8cllHf1Clp-tHJ3mnJM.roa (hash: AnG8BWUfPxV5o1EC1SevW/uoDYd+aQAPwe1f/26+nZM=)
2: ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl (hash: lU3Q7IUacstSerI+7OE5VRZCEqhC2V3T5orFWYrPADo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:a8:45:34:30:59:aa:b5:89:23:8f:50:93:7c:56:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5154158905d1d44c4588dfd25802f324a93d61
Validity
Not Before: Jun 12 15:00:38 2025 GMT
Not After : Jun 13 15:00:38 2025 GMT
Subject: CN=3250b1e52e127a7cce45801bd0588f7685eed8bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f4:a9:5b:de:1c:a8:6c:aa:d7:f9:e7:be:2a:
49:1b:46:e8:a8:86:62:d7:f5:88:5f:4e:84:63:c5:
a1:fb:13:db:d5:54:97:23:bc:80:f3:18:7b:c1:34:
94:90:17:1d:80:74:72:04:87:4f:58:6a:a3:8c:04:
91:35:2a:7e:de:b3:2e:ee:52:89:4e:bf:0e:50:2a:
1d:f4:f2:df:b6:fb:ab:4c:39:ee:bb:a6:0e:30:1c:
2a:1b:82:8b:b3:11:41:80:38:3a:8d:f6:bc:59:3b:
c2:d0:d0:ee:65:07:d2:5e:b1:69:9b:84:8e:7c:63:
78:bc:8b:f0:6e:b9:af:df:27:e3:5e:e4:14:22:7b:
7f:d9:ce:6e:e5:24:12:7a:52:8d:e3:27:1c:25:92:
5d:88:6a:d5:cc:c3:0b:ae:04:4e:7a:00:94:57:77:
8a:ee:4a:63:5f:80:4f:87:6d:9e:24:9f:6b:3f:4c:
e9:d4:ac:54:fc:fb:6d:c3:b7:b4:47:67:14:76:3e:
48:b1:88:f4:81:ec:93:c5:01:fc:45:67:3a:87:bd:
80:97:85:e5:7f:4a:89:dc:83:67:ef:ae:27:58:8c:
48:44:9f:b6:46:89:dc:98:72:45:60:88:4a:5d:ee:
7f:eb:b7:a0:cf:85:05:73:9e:c9:ac:a5:ba:0c:48:
06:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:50:B1:E5:2E:12:7A:7C:CE:45:80:1B:D0:58:8F:76:85:EE:D8:BD
X509v3 Authority Key Identifier:
keyid:CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:b9:48:15:80:98:62:12:61:23:b9:f6:46:3e:dd:a3:ff:fe:
ee:8c:30:f6:0a:82:6b:52:5f:71:92:9b:d1:6e:82:01:03:74:
d8:65:d2:77:4c:f9:0d:3d:a8:8f:b1:1f:cc:4e:d6:0f:04:f6:
af:f3:57:09:a6:ee:1a:61:84:2a:43:3a:25:4f:07:1e:2a:fa:
87:e7:a1:c3:bd:b1:b3:99:89:58:dc:60:24:d8:4a:84:40:98:
13:40:84:e3:12:b3:78:1a:5e:f7:24:ac:c5:d7:6a:b6:8b:8d:
3d:68:b5:d8:95:98:7c:e9:e1:3d:5f:4a:df:8c:f2:26:76:3c:
e0:0f:b8:ac:4d:44:94:94:a4:98:4c:b0:01:4e:51:db:7e:74:
74:a9:98:6f:24:e0:0d:bf:ab:1e:34:7d:7a:b3:d8:03:1b:8d:
c0:c5:6a:ca:72:9c:97:98:6d:b0:54:92:36:1d:66:d5:bb:2b:
75:b8:48:0e:0e:17:da:1b:a3:83:d4:31:86:aa:c8:f2:64:fe:
7d:c3:dd:91:65:e2:18:29:b8:a5:76:8b:e5:be:06:7f:76:f7:
1f:c9:b5:d0:e7:8b:ef:dc:28:5d:7d:57:1b:01:b4:37:14:83:
d0:ed:71:89:eb:ec:c1:aa:7c:7b:ce:70:7f:0b:cd:54:c7:52:
6b:ba:c8:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdkqEU0MFmqtYkjj1CTfFa+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNTE1NDE1ODkwNWQxZDQ0YzQ1ODhkZmQyNTgwMmYzMjRh
OTNkNjEwHhcNMjUwNjEyMTUwMDM4WhcNMjUwNjEzMTUwMDM4WjAzMTEwLwYDVQQD
EygzMjUwYjFlNTJlMTI3YTdjY2U0NTgwMWJkMDU4OGY3Njg1ZWVkOGJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2vSpW94cqGyq1/nnvipJG0boqIZi
1/WIX06EY8Wh+xPb1VSXI7yA8xh7wTSUkBcdgHRyBIdPWGqjjASRNSp+3rMu7lKJ
Tr8OUCod9PLftvurTDnuu6YOMBwqG4KLsxFBgDg6jfa8WTvC0NDuZQfSXrFpm4SO
fGN4vIvwbrmv3yfjXuQUInt/2c5u5SQSelKN4yccJZJdiGrVzMMLrgROegCUV3eK
7kpjX4BPh22eJJ9rP0zp1KxU/Pttw7e0R2cUdj5IsYj0geyTxQH8RWc6h72Al4Xl
f0qJ3INn764nWIxIRJ+2RoncmHJFYIhKXe5/67egz4UFc57JrKW6DEgGkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDJQseUuEnp8zkWAG9BYj3aF7ti9MB8GA1UdIwQY
MBaAFMpRVBWJBdHUTEWI39JYAvMkqT1hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWxGVUZZa0YwZFJNUllqZjBsZ0M4eVNwUFdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9mNTU4YWEtNTVlZi00NTBmLThiOTct
MTAwOTBkMWU3ZDk0LzEveWxGVUZZa0YwZFJNUllqZjBsZ0M4eVNwUFdFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi9mNTU4YWEtNTVlZi00NTBmLThiOTctMTAwOTBkMWU3ZDk0
LzEveWxGVUZZa0YwZFJNUllqZjBsZ0M4eVNwUFdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjblIFYCY
YhJhI7n2Rj7do//+7oww9gqCa1JfcZKb0W6CAQN02GXSd0z5DT2oj7EfzE7WDwT2
r/NXCabuGmGEKkM6JU8HHir6h+ehw72xs5mJWNxgJNhKhECYE0CE4xKzeBpe9ySs
xddqtouNPWi12JWYfOnhPV9K34zyJnY84A+4rE1ElJSkmEywAU5R2350dKmYbyTg
Db+rHjR9erPYAxuNwMVqynKcl5htsFSSNh1m1bsrdbhIDg4X2hujg9QxhqrI8mT+
fcPdkWXiGCm4pXaL5b4Gf3b3H8m10OeL79woXX1XGwG0NxSD0O1xievswap8e85w
fwvNVMdSa7rIrg==
-----END CERTIFICATE-----
Generated at Thu Jun 12 17:42:41 2025 by rpki-client