Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
File: yohtVYfshfcSQs1XztQJVEUoFo0.mft (raw, json)
Hash identifier: 3BJNkwboY7sTb/PTHxGEQ+OiPWy/U+Jd35C4UG2kW+g=
Subject key identifier: DC:E4:CC:91:54:42:C9:0D:16:85:C0:C3:C6:6D:AB:94:31:1C:99:06
Authority key identifier: CA:88:6D:55:87:EC:85:F7:12:42:CD:57:CE:D4:09:54:45:28:16:8D
Certificate issuer: /CN=ca886d5587ec85f71242cd57ced409544528168d
Certificate serial: 01974C69CFA0BEECBD753FD566985304F198
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
Manifest number: 0331
Signing time: Sat 07 Jun 2025 22:01:32 +0000
Manifest this update: Sat 07 Jun 2025 22:01:32 +0000
Manifest next update: Sun 08 Jun 2025 22:01:32 +0000
Files and hashes: 1: pedXVkU_3_VDst7sTxTSsbn2Em4.roa (hash: 3VM8cHkV3+LaUs7pbcy8XQqPPtDXhoRXeq5taS4kpbU=)
2: yohtVYfshfcSQs1XztQJVEUoFo0.crl (hash: H/tlEvy5kaMd/Bl7q0DbPAQYvCP4MP7xXpAwE05yrD4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:cf:a0:be:ec:bd:75:3f:d5:66:98:53:04:f1:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca886d5587ec85f71242cd57ced409544528168d
Validity
Not Before: Jun 7 22:01:32 2025 GMT
Not After : Jun 8 22:01:32 2025 GMT
Subject: CN=dce4cc915442c90d1685c0c3c66dab94311c9906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:05:58:13:c8:37:50:c8:dc:3d:29:8c:27:3f:
5e:cc:a4:45:66:9c:b1:21:eb:68:d0:11:04:ca:82:
b4:ba:17:a6:5e:1a:2e:a8:47:0a:14:03:70:dd:32:
c1:55:e5:ea:a3:09:63:9e:60:aa:fc:c4:42:4a:9b:
49:81:8e:24:55:ea:ad:90:23:5b:fe:aa:4a:da:ff:
11:72:06:ca:b4:da:10:43:4a:14:14:90:43:38:70:
55:4c:98:aa:16:6f:e9:22:c5:39:23:81:32:b5:96:
11:a6:b8:96:53:52:8a:fb:b1:fa:52:b4:9c:1f:8a:
f6:eb:7a:30:7c:95:bd:c6:6d:21:15:c1:cf:ad:a8:
ba:21:13:6a:f5:ba:38:4b:c8:34:33:ae:80:ef:d4:
c0:4e:88:74:33:a3:f7:90:31:32:00:97:b5:09:84:
3e:82:ed:00:a6:dc:fa:7f:2d:3d:5a:d6:5b:8b:a2:
93:92:3a:e3:67:71:62:84:41:27:c0:75:71:2e:26:
4d:08:77:6f:07:a7:42:7e:96:50:44:a2:8a:a3:32:
d5:b7:d6:b0:87:37:8d:14:c8:26:df:92:c5:9f:f5:
ed:5a:4d:22:99:5d:0b:2f:2c:37:6e:10:3d:4e:f4:
9f:71:78:6c:f0:b1:5a:26:76:82:74:e0:e4:4e:3f:
58:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E4:CC:91:54:42:C9:0D:16:85:C0:C3:C6:6D:AB:94:31:1C:99:06
X509v3 Authority Key Identifier:
keyid:CA:88:6D:55:87:EC:85:F7:12:42:CD:57:CE:D4:09:54:45:28:16:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:36:93:ae:b3:eb:d6:92:de:29:62:a3:12:37:d5:eb:30:6b:
7f:22:7b:65:7d:0a:ae:38:e3:a4:85:1e:23:76:b5:ec:b3:a9:
aa:d6:65:18:b8:41:1f:c3:d6:7b:3f:0f:24:36:2b:f5:5a:ea:
f4:9e:9f:08:cf:04:2a:d5:e0:6f:80:29:43:4e:fe:92:07:cf:
79:23:80:aa:03:87:1b:54:a7:b4:cc:ba:00:af:bb:a8:e0:b2:
06:fe:54:18:e9:ae:51:88:b1:b7:51:85:99:80:17:0e:96:9a:
cf:de:18:f2:e9:ae:19:2a:25:32:c2:43:d8:82:3d:8d:da:46:
03:07:ab:59:76:60:1a:ae:b5:1e:00:30:f0:e4:69:31:49:52:
a2:df:dc:08:f3:c0:1d:1b:1e:45:e4:bb:2d:9a:44:0b:cf:3d:
f8:94:ab:77:4f:fc:70:fc:fb:c2:90:5a:1a:70:a8:d3:30:d4:
89:42:69:0e:8c:b9:8f:83:dc:0c:0b:3a:68:a4:fa:c1:5e:bc:
b0:1f:d4:d5:f9:ca:22:6d:d6:ba:40:78:22:d4:82:ba:fc:f2:
ea:b6:f6:1c:33:44:bc:5d:3e:e1:8a:d1:46:f1:c3:34:d6:4f:
49:7c:3d:fc:4c:53:af:14:5e:d1:21:cf:ec:d4:e3:fd:fe:4a:
4f:59:c4:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMac+gvuy9dT/VZphTBPGYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhODg2ZDU1ODdlYzg1ZjcxMjQyY2Q1N2NlZDQwOTU0NDUy
ODE2OGQwHhcNMjUwNjA3MjIwMTMyWhcNMjUwNjA4MjIwMTMyWjAzMTEwLwYDVQQD
EyhkY2U0Y2M5MTU0NDJjOTBkMTY4NWMwYzNjNjZkYWI5NDMxMWM5OTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1QVYE8g3UMjcPSmMJz9ezKRFZpyx
Ieto0BEEyoK0uhemXhouqEcKFANw3TLBVeXqowljnmCq/MRCSptJgY4kVeqtkCNb
/qpK2v8RcgbKtNoQQ0oUFJBDOHBVTJiqFm/pIsU5I4EytZYRpriWU1KK+7H6UrSc
H4r263owfJW9xm0hFcHPrai6IRNq9bo4S8g0M66A79TAToh0M6P3kDEyAJe1CYQ+
gu0Aptz6fy09WtZbi6KTkjrjZ3FihEEnwHVxLiZNCHdvB6dCfpZQRKKKozLVt9aw
hzeNFMgm35LFn/XtWk0imV0LLyw3bhA9TvSfcXhs8LFaJnaCdODkTj9YzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNzkzJFUQskNFoXAw8Ztq5QxHJkGMB8GA1UdIwQY
MBaAFMqIbVWH7IX3EkLNV87UCVRFKBaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveW9odFZZZnNoZmNTUXMxWHp0UUpWRVVvRm8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9mZTgyZDEtMTU3NS00N2MxLTlmMjIt
YzdlMjUyMGM0Y2VhLzEveW9odFZZZnNoZmNTUXMxWHp0UUpWRVVvRm8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy9mZTgyZDEtMTU3NS00N2MxLTlmMjItYzdlMjUyMGM0Y2Vh
LzEveW9odFZZZnNoZmNTUXMxWHp0UUpWRVVvRm8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkTaTrrPr
1pLeKWKjEjfV6zBrfyJ7ZX0KrjjjpIUeI3a17LOpqtZlGLhBH8PWez8PJDYr9Vrq
9J6fCM8EKtXgb4ApQ07+kgfPeSOAqgOHG1SntMy6AK+7qOCyBv5UGOmuUYixt1GF
mYAXDpaaz94Y8umuGSolMsJD2II9jdpGAwerWXZgGq61HgAw8ORpMUlSot/cCPPA
HRseReS7LZpEC889+JSrd0/8cPz7wpBaGnCo0zDUiUJpDoy5j4PcDAs6aKT6wV68
sB/U1fnKIm3WukB4ItSCuvzy6rb2HDNEvF0+4YrRRvHDNNZPSXw9/ExTrxRe0SHP
7NTj/f5KT1nEKg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 06:20:44 2025 by rpki-client