Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
File: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft (raw, json)
Hash identifier: hYkVN67Hm6pSjTbzyTAqzn0Zj3Q9b8+FnSlb6TB3xQQ=
Subject key identifier: AB:26:DD:22:65:48:21:BE:10:09:2F:C4:FD:DD:50:0D:61:FF:FB:B0
Authority key identifier: CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
Certificate issuer: /CN=ca434d399d93a19d8a8108456c5575096c2ae588
Certificate serial: 01992255DC3862BBDF04EDB2F62DE5ABA10C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
Manifest number: 0692
Signing time: Sun 07 Sep 2025 04:01:16 +0000
Manifest this update: Sun 07 Sep 2025 04:01:16 +0000
Manifest next update: Mon 08 Sep 2025 04:01:16 +0000
Files and hashes: 1: 6KeHOxxWviP0lluNL5sOXVdQY7c.roa (hash: kUeVBsIsjzs7OuA1c4/VFEC1ddAvMO/ONIYaR+/BuFA=)
2: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl (hash: os/eydXrx4EX1webNhZjRBq4bejHg6JSMSRuLGvwYEg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:dc:38:62:bb:df:04:ed:b2:f6:2d:e5:ab:a1:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca434d399d93a19d8a8108456c5575096c2ae588
Validity
Not Before: Sep 7 04:01:16 2025 GMT
Not After : Sep 8 04:01:16 2025 GMT
Subject: CN=ab26dd22654821be10092fc4fddd500d61fffbb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9f:b5:b4:e4:fd:0b:cc:5e:c6:cb:87:0c:4a:
35:b3:48:a6:db:e8:21:4b:ee:7d:8a:20:cd:c4:29:
c6:76:90:cd:e6:23:fb:2b:9f:ff:e5:1d:0c:a9:b2:
af:2d:eb:0e:a3:b1:1d:e1:6a:8e:73:cc:47:d0:1d:
27:22:aa:16:4c:2b:e2:56:35:25:52:19:3a:48:5e:
b7:5b:6e:e3:9b:ff:39:d6:45:68:68:ed:af:f6:7b:
53:40:bc:7f:c8:90:a6:b1:43:48:d5:0a:6a:a1:d2:
fc:76:1b:f5:ac:1c:c4:bd:da:2b:98:36:a6:21:5e:
60:79:f1:ab:3f:7c:2d:a6:8d:c3:8b:74:3f:ff:d8:
22:d0:50:2a:61:02:10:a7:c9:3d:8c:50:6f:20:43:
a9:f7:1f:ba:0f:05:33:4b:f0:ec:15:1d:c0:14:4a:
23:3f:5f:2e:c6:5a:b0:5e:e5:64:83:8b:15:1b:b6:
ca:f6:e5:b0:be:48:69:c6:dd:a4:91:00:9b:5a:7e:
01:05:65:e8:f7:8b:a2:69:c6:21:68:3b:97:4c:4d:
f9:c0:6a:96:df:4c:39:c9:a5:6d:a9:7e:e1:7f:17:
8d:cc:12:b5:0a:27:8d:d3:04:a7:b0:db:9d:37:93:
66:c4:91:cb:dd:70:1d:9c:f0:3a:a2:38:7e:0d:ef:
08:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:26:DD:22:65:48:21:BE:10:09:2F:C4:FD:DD:50:0D:61:FF:FB:B0
X509v3 Authority Key Identifier:
keyid:CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:5e:8f:f1:11:81:4f:03:37:bb:1f:20:5c:1a:9c:12:9e:ef:
ae:59:45:f3:3c:69:8c:6d:1e:6a:64:bb:f6:ae:6f:06:79:25:
24:74:16:84:16:07:9c:b3:53:d9:24:3a:23:ec:d6:7f:00:9b:
6f:27:a1:2c:c3:47:fc:90:54:63:66:7e:36:00:10:03:37:2e:
13:0e:91:75:72:0f:cb:59:41:ab:51:28:fc:db:36:09:16:da:
ee:d5:46:0f:91:54:5b:d5:df:e5:6b:df:45:fc:dd:28:c8:84:
f9:20:3a:ef:a5:1f:fe:4d:8b:13:23:8d:80:79:37:5e:ae:91:
6b:f2:10:3c:a8:97:bd:32:a5:7c:ef:a0:f1:c8:bc:3f:1e:8d:
ca:87:21:15:70:58:3c:f2:3c:68:b9:a3:f0:f8:b4:c6:c7:63:
51:cd:8d:b5:2e:5b:90:19:06:60:f5:6a:57:da:ff:4b:01:3a:
74:ed:a1:7d:36:ee:aa:8a:aa:89:2a:7b:69:2a:58:60:31:dc:
0e:d2:9c:1b:bc:0b:49:08:1b:f0:6f:a0:dd:31:cb:f3:69:6e:
b7:c2:0a:47:44:fd:d6:df:f6:96:e3:81:25:49:67:18:e9:e4:
04:d6:ce:48:91:38:32:b8:f0:a3:f4:f3:ba:c5:28:f0:7a:7d:
f9:be:7d:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiVdw4YrvfBO2y9i3lq6EMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNDM0ZDM5OWQ5M2ExOWQ4YTgxMDg0NTZjNTU3NTA5NmMy
YWU1ODgwHhcNMjUwOTA3MDQwMTE2WhcNMjUwOTA4MDQwMTE2WjAzMTEwLwYDVQQD
EyhhYjI2ZGQyMjY1NDgyMWJlMTAwOTJmYzRmZGRkNTAwZDYxZmZmYmIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJ+1tOT9C8xexsuHDEo1s0im2+gh
S+59iiDNxCnGdpDN5iP7K5//5R0MqbKvLesOo7Ed4WqOc8xH0B0nIqoWTCviVjUl
Uhk6SF63W27jm/851kVoaO2v9ntTQLx/yJCmsUNI1QpqodL8dhv1rBzEvdormDam
IV5gefGrP3wtpo3Di3Q//9gi0FAqYQIQp8k9jFBvIEOp9x+6DwUzS/DsFR3AFEoj
P18uxlqwXuVkg4sVG7bK9uWwvkhpxt2kkQCbWn4BBWXo94uiacYhaDuXTE35wGqW
30w5yaVtqX7hfxeNzBK1CieN0wSnsNudN5NmxJHL3XAdnPA6ojh+De8ILwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKsm3SJlSCG+EAkvxP3dUA1h//uwMB8GA1UdIwQY
MBaAFMpDTTmdk6GdioEIRWxVdQlsKuWIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWtOTk9aMlRvWjJLZ1FoRmJGVjFDV3dxNVlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC82YWVjNmEtMzY4My00MDVhLTllNjEt
ZGIyMzY4MjcxOTEzLzEveWtOTk9aMlRvWjJLZ1FoRmJGVjFDV3dxNVlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC82YWVjNmEtMzY4My00MDVhLTllNjEtZGIyMzY4MjcxOTEz
LzEveWtOTk9aMlRvWjJLZ1FoRmJGVjFDV3dxNVlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALV6P8RGB
TwM3ux8gXBqcEp7vrllF8zxpjG0eamS79q5vBnklJHQWhBYHnLNT2SQ6I+zWfwCb
byehLMNH/JBUY2Z+NgAQAzcuEw6RdXIPy1lBq1Eo/Ns2CRba7tVGD5FUW9Xf5Wvf
RfzdKMiE+SA676Uf/k2LEyONgHk3Xq6Ra/IQPKiXvTKlfO+g8ci8Px6NyochFXBY
PPI8aLmj8Pi0xsdjUc2NtS5bkBkGYPVqV9r/SwE6dO2hfTbuqoqqiSp7aSpYYDHc
DtKcG7wLSQgb8G+g3THL82lut8IKR0T91t/2luOBJUlnGOnkBNbOSJE4Mrjwo/Tz
usUo8Hp9+b59Kg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:50:15 2025 by rpki-client