Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
File: RyyyiCCZANGvGpmLsDnsdX5JPdU.mft (raw, json)
Hash identifier: 93HFS6HRHiRc2uBXzE3Qld6sBwd7I4iOKA18X38IG8Q=
Subject key identifier: D1:E7:FA:9B:19:61:6E:3D:77:61:A8:7C:8F:23:D3:E0:FC:4B:12:D8
Authority key identifier: 47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
Certificate issuer: /CN=472cb288209900d1af1a998bb039ec757e493dd5
Certificate serial: 0198D58357D3D207245CA97C0DBBB0F90B78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
Manifest number: 0872
Signing time: Sat 23 Aug 2025 06:00:11 +0000
Manifest this update: Sat 23 Aug 2025 06:00:11 +0000
Manifest next update: Sun 24 Aug 2025 06:00:11 +0000
Files and hashes: 1: RyyyiCCZANGvGpmLsDnsdX5JPdU.crl (hash: /Giw1tPd+i0CuEuQprpYvHHH9x2015BPcTjW8URpY/A=)
2: S3dIMaIh62_y7HmBxhlxOM_ScHc.roa (hash: wYfLcBDYpc1piz/XiUHEld94m4pY4RAv7rF1GCt4/I0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:57:d3:d2:07:24:5c:a9:7c:0d:bb:b0:f9:0b:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=472cb288209900d1af1a998bb039ec757e493dd5
Validity
Not Before: Aug 23 06:00:11 2025 GMT
Not After : Aug 24 06:00:11 2025 GMT
Subject: CN=d1e7fa9b19616e3d7761a87c8f23d3e0fc4b12d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:46:e9:24:e7:75:db:de:1e:2b:f7:f9:28:d1:
04:07:1b:1a:47:a6:03:99:69:3f:6b:cc:24:ef:6c:
4b:b3:f5:f9:b0:94:b5:79:b0:0c:8d:c9:48:17:4a:
2a:68:ab:00:f1:a3:23:0e:e8:a2:e4:ac:b6:64:cf:
3e:f9:3a:c3:8a:50:93:5b:28:b7:c5:30:b1:c7:ce:
37:22:42:2b:04:6f:1d:36:cb:50:6c:6d:46:bf:55:
e0:52:6b:4b:11:d6:6c:78:8b:64:31:88:61:d1:89:
90:03:b3:77:dd:b9:51:85:68:1f:f9:23:a3:6e:d9:
f6:31:f3:60:44:18:99:ae:a4:20:a2:5e:0e:b3:53:
4e:74:87:ba:d2:c7:a0:fb:6d:93:38:d2:b1:63:74:
05:ce:6b:d0:19:23:c7:c6:39:28:41:f5:6e:b0:91:
ba:71:4a:a2:23:c0:f6:4b:ca:63:38:73:a0:bb:88:
e3:da:2b:a6:19:3a:52:dc:8c:6d:be:12:67:42:f5:
75:29:b6:7c:fd:82:10:34:08:f1:35:85:77:e5:8b:
26:5b:2d:ad:a6:73:6b:47:d2:45:77:b1:cb:e1:ce:
91:57:1e:07:67:60:4f:05:12:21:4e:3f:17:3d:ad:
3c:6b:b5:92:e2:73:1b:7c:9a:cc:bd:f0:8e:00:16:
b1:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:E7:FA:9B:19:61:6E:3D:77:61:A8:7C:8F:23:D3:E0:FC:4B:12:D8
X509v3 Authority Key Identifier:
keyid:47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:bc:37:ff:a3:b0:b4:a8:6b:26:7b:18:1c:80:91:5a:86:31:
a5:b6:e5:19:cb:d0:c4:a0:77:04:34:df:57:af:19:c1:39:72:
86:74:bc:49:40:34:36:a6:55:76:6b:f7:56:5d:27:68:b5:58:
e2:4c:60:b4:e4:02:35:15:e4:1f:56:9a:53:af:84:0d:a1:ce:
b0:23:00:63:19:fa:21:04:fc:56:e5:12:f5:ac:17:eb:3e:6e:
58:ea:bd:b6:40:3b:81:78:cc:bd:d0:2c:a4:a9:2f:46:9d:25:
09:89:48:83:7e:b8:d6:7d:84:c9:15:c2:ed:58:31:a3:28:e9:
97:57:6b:2d:82:a1:6a:2e:78:40:88:bd:71:01:b7:2a:e9:82:
c4:58:2d:ba:90:7b:1b:a4:a4:e9:70:27:47:ee:cb:1e:4d:68:
72:95:e6:5c:80:35:85:1f:61:db:3e:01:22:f8:93:3f:fc:2f:
b2:7c:2d:ab:f2:94:24:ab:a5:92:f8:e4:a9:9f:d3:4c:2f:0b:
d5:0b:f1:31:09:35:85:9e:b9:2a:83:4e:5b:1e:e1:bb:2b:e1:
de:2e:55:72:3c:27:06:df:bb:08:74:c3:a9:1e:ce:39:1a:b8:
1e:34:c8:09:b3:7b:b5:d2:3f:b8:b1:81:3b:20:55:9d:43:4a:
88:58:0e:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg1fT0gckXKl8Dbuw+Qt4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3MmNiMjg4MjA5OTAwZDFhZjFhOTk4YmIwMzllYzc1N2U0
OTNkZDUwHhcNMjUwODIzMDYwMDExWhcNMjUwODI0MDYwMDExWjAzMTEwLwYDVQQD
EyhkMWU3ZmE5YjE5NjE2ZTNkNzc2MWE4N2M4ZjIzZDNlMGZjNGIxMmQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0bpJOd1294eK/f5KNEEBxsaR6YD
mWk/a8wk72xLs/X5sJS1ebAMjclIF0oqaKsA8aMjDuii5Ky2ZM8++TrDilCTWyi3
xTCxx843IkIrBG8dNstQbG1Gv1XgUmtLEdZseItkMYhh0YmQA7N33blRhWgf+SOj
btn2MfNgRBiZrqQgol4Os1NOdIe60seg+22TONKxY3QFzmvQGSPHxjkoQfVusJG6
cUqiI8D2S8pjOHOgu4jj2iumGTpS3IxtvhJnQvV1KbZ8/YIQNAjxNYV35YsmWy2t
pnNrR9JFd7HL4c6RVx4HZ2BPBRIhTj8XPa08a7WS4nMbfJrMvfCOABaxmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNHn+psZYW49d2GofI8j0+D8SxLYMB8GA1UdIwQY
MBaAFEcssoggmQDRrxqZi7A57HV+ST3VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUnl5eWlDQ1pBTkd2R3BtTHNEbnNkWDVKUGRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9mOWI2YjktYjc4Ny00ZTI4LWIwYmYt
YWE5MDJkYmFlOTI4LzEvUnl5eWlDQ1pBTkd2R3BtTHNEbnNkWDVKUGRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy9mOWI2YjktYjc4Ny00ZTI4LWIwYmYtYWE5MDJkYmFlOTI4
LzEvUnl5eWlDQ1pBTkd2R3BtTHNEbnNkWDVKUGRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWbw3/6Ow
tKhrJnsYHICRWoYxpbblGcvQxKB3BDTfV68ZwTlyhnS8SUA0NqZVdmv3Vl0naLVY
4kxgtOQCNRXkH1aaU6+EDaHOsCMAYxn6IQT8VuUS9awX6z5uWOq9tkA7gXjMvdAs
pKkvRp0lCYlIg3641n2EyRXC7Vgxoyjpl1drLYKhai54QIi9cQG3KumCxFgtupB7
G6Sk6XAnR+7LHk1ocpXmXIA1hR9h2z4BIviTP/wvsnwtq/KUJKulkvjkqZ/TTC8L
1QvxMQk1hZ65KoNOWx7huyvh3i5VcjwnBt+7CHTDqR7OORq4HjTICbN7tdI/uLGB
OyBVnUNKiFgOtQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:30:47 2025 by rpki-client