Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
File: ygHfSTk2pi4uyamAWo-ja4M1vVA.mft (raw, json)
Hash identifier: NttjtumbRSkdxJ5K/PSvdRiWbDKHFJcuUUp3WjNrlx4=
Subject key identifier: 85:F3:07:6E:C2:0C:DD:09:42:87:A7:57:A3:46:35:6E:75:77:3E:4C
Authority key identifier: CA:01:DF:49:39:36:A6:2E:2E:C9:A9:80:5A:8F:A3:6B:83:35:BD:50
Certificate issuer: /CN=ca01df493936a62e2ec9a9805a8fa36b8335bd50
Certificate serial: 01975B005343EDD085C3E00DE81DCA861A5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
Manifest number: 0713
Signing time: Tue 10 Jun 2025 18:00:37 +0000
Manifest this update: Tue 10 Jun 2025 18:00:37 +0000
Manifest next update: Wed 11 Jun 2025 18:00:37 +0000
Files and hashes: 1: VJejrkbQcGz8ZtoJmN8x1bw4bkc.roa (hash: fTHkpU+4ZrTAo/sH1aFITBDz8Ocuvc9wBymMbgUJLms=)
2: ygHfSTk2pi4uyamAWo-ja4M1vVA.crl (hash: U4WNAQV/k+lWyyygoH/ccTklaOcz3YH0K+NuCa7QyGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 18:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:00:53:43:ed:d0:85:c3:e0:0d:e8:1d:ca:86:1a:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca01df493936a62e2ec9a9805a8fa36b8335bd50
Validity
Not Before: Jun 10 18:00:37 2025 GMT
Not After : Jun 11 18:00:37 2025 GMT
Subject: CN=85f3076ec20cdd094287a757a346356e75773e4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:37:d7:fb:bd:0a:2d:82:ea:b8:c5:84:48:6a:
cd:43:54:d9:6b:e2:d8:50:15:b0:ad:e0:5b:a8:d8:
1f:09:98:da:c6:99:ac:b7:e0:dd:ed:53:02:da:4e:
c8:b7:63:a0:03:0c:a9:f3:c7:ee:1c:7f:ae:40:d5:
85:c2:97:55:f0:0e:06:24:40:07:d5:e9:01:88:76:
b3:eb:8c:9b:ea:2c:6b:cf:89:2e:4a:47:3e:2a:56:
01:d3:40:d3:4a:37:7f:3d:6b:cd:f0:cf:fd:ca:0c:
91:8c:83:28:d1:63:39:b8:d8:2a:a6:c1:75:b3:6c:
a5:d4:23:5c:12:4c:d0:7d:87:a3:0e:e2:98:ff:06:
dc:c0:36:be:a6:af:12:b6:94:b4:a5:13:46:c6:92:
e3:7c:9a:38:e7:09:60:44:9f:f6:cd:1d:89:36:86:
e5:b6:78:d3:75:bb:dc:7c:a1:59:03:5c:be:9d:0b:
09:97:af:f1:7c:bb:30:1e:c3:4a:58:f4:22:e1:23:
5c:f9:fe:68:cf:61:b3:18:64:15:6b:3e:a2:77:21:
ed:8d:f9:3f:db:c0:f3:3e:39:c2:c1:c2:cd:9a:cd:
63:1c:f7:12:1a:8c:1d:31:c1:70:94:90:bc:fd:80:
b3:2c:f9:83:4a:9d:8e:ef:63:79:4b:6e:c8:59:3d:
82:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F3:07:6E:C2:0C:DD:09:42:87:A7:57:A3:46:35:6E:75:77:3E:4C
X509v3 Authority Key Identifier:
keyid:CA:01:DF:49:39:36:A6:2E:2E:C9:A9:80:5A:8F:A3:6B:83:35:BD:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:ee:01:af:47:97:93:c0:bf:43:d6:50:47:c4:59:89:cf:0c:
6f:22:aa:30:4b:65:05:4e:ba:eb:cb:72:13:da:65:0d:02:32:
05:bf:c1:f3:24:fa:e8:6a:1e:81:be:64:5b:1d:04:4f:b3:f7:
68:6d:8a:e5:34:ce:70:93:43:cb:e2:88:85:ef:16:bf:d1:e2:
4a:0b:46:05:46:82:3e:19:1b:d2:37:bf:95:c7:a2:fd:d9:dc:
81:aa:ff:a8:0d:3f:6d:69:85:42:c9:a0:4a:a4:11:bf:a5:da:
d9:e7:53:cc:da:bc:00:b2:d9:df:fb:55:ea:42:8f:fb:21:19:
3e:19:53:d4:99:38:53:5d:ba:81:63:8b:87:fe:54:b0:63:00:
76:c7:42:dc:f8:83:e1:c6:84:f6:f0:62:09:68:5c:20:0c:04:
ef:65:d6:e3:2f:56:fa:00:26:bc:4c:ab:c7:68:3f:26:42:da:
48:7a:50:dc:ab:e0:c9:71:56:83:de:e5:65:8f:6f:e6:62:35:
df:1e:85:4b:28:47:b8:3c:9d:b0:86:b9:c4:5b:3b:3f:b2:2e:
b6:0d:b6:f3:ee:e7:5d:a7:14:cb:e3:b8:00:d8:cd:bc:45:ac:
03:28:26:65:a7:f4:64:20:90:c6:eb:8d:46:83:04:c8:5d:bb:
08:1f:55:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdbAFND7dCFw+AN6B3KhhpdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMDFkZjQ5MzkzNmE2MmUyZWM5YTk4MDVhOGZhMzZiODMz
NWJkNTAwHhcNMjUwNjEwMTgwMDM3WhcNMjUwNjExMTgwMDM3WjAzMTEwLwYDVQQD
Eyg4NWYzMDc2ZWMyMGNkZDA5NDI4N2E3NTdhMzQ2MzU2ZTc1NzczZTRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiDfX+70KLYLquMWESGrNQ1TZa+LY
UBWwreBbqNgfCZjaxpmst+Dd7VMC2k7It2OgAwyp88fuHH+uQNWFwpdV8A4GJEAH
1ekBiHaz64yb6ixrz4kuSkc+KlYB00DTSjd/PWvN8M/9ygyRjIMo0WM5uNgqpsF1
s2yl1CNcEkzQfYejDuKY/wbcwDa+pq8StpS0pRNGxpLjfJo45wlgRJ/2zR2JNobl
tnjTdbvcfKFZA1y+nQsJl6/xfLswHsNKWPQi4SNc+f5oz2GzGGQVaz6idyHtjfk/
28DzPjnCwcLNms1jHPcSGowdMcFwlJC8/YCzLPmDSp2O72N5S27IWT2ClwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIXzB27CDN0JQoenV6NGNW51dz5MMB8GA1UdIwQY
MBaAFMoB30k5NqYuLsmpgFqPo2uDNb1QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWdIZlNUazJwaTR1eWFtQVdvLWphNE0xdlZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC82NDllODEtY2NhMi00MDRjLTk4YTUt
OTYyNzU4YTNkNWVhLzEveWdIZlNUazJwaTR1eWFtQVdvLWphNE0xdlZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC82NDllODEtY2NhMi00MDRjLTk4YTUtOTYyNzU4YTNkNWVh
LzEveWdIZlNUazJwaTR1eWFtQVdvLWphNE0xdlZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAre4Br0eX
k8C/Q9ZQR8RZic8MbyKqMEtlBU6668tyE9plDQIyBb/B8yT66Goegb5kWx0ET7P3
aG2K5TTOcJNDy+KIhe8Wv9HiSgtGBUaCPhkb0je/lcei/dncgar/qA0/bWmFQsmg
SqQRv6Xa2edTzNq8ALLZ3/tV6kKP+yEZPhlT1Jk4U126gWOLh/5UsGMAdsdC3PiD
4caE9vBiCWhcIAwE72XW4y9W+gAmvEyrx2g/JkLaSHpQ3KvgyXFWg97lZY9v5mI1
3x6FSyhHuDydsIa5xFs7P7Iutg228+7nXacUy+O4ANjNvEWsAygmZaf0ZCCQxuuN
RoMEyF27CB9VDA==
-----END CERTIFICATE-----
Generated at Wed Jun 11 04:28:24 2025 by rpki-client