Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
File: cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft (raw, json)
Hash identifier: ZB09VgxFQIsTHSWXnVgTbKlQeXdrhWqmowesf/pKrmk=
Subject key identifier: E1:5C:71:46:50:D8:95:02:D4:69:50:9B:D5:26:00:38:5B:73:7A:F7
Authority key identifier: 71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
Certificate issuer: /CN=718b138ba935234f11ca1025d667f133f07d55fd
Certificate serial: 0199FC58FFAEC9BA87B85225A5368D70E0AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 12:01:55 +0000
Manifest this update: Sun 19 Oct 2025 12:01:55 +0000
Manifest next update: Mon 20 Oct 2025 12:01:55 +0000
Files and hashes: 1: X75BC-oQSIZ_Eow4PmOQdnEFFSA.roa (hash: 9fCRye0I7SNN/gpC5nOojc7Nk1BoVgXxf8JAD5uwXBE=)
2: cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl (hash: eBu3fCdJDR/90Hst3Xp+MKXDNzUF+T6ihMsn0MhHSpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:ff:ae:c9:ba:87:b8:52:25:a5:36:8d:70:e0:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=718b138ba935234f11ca1025d667f133f07d55fd
Validity
Not Before: Oct 19 12:01:55 2025 GMT
Not After : Oct 20 12:01:55 2025 GMT
Subject: CN=e15c714650d89502d469509bd52600385b737af7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:47:f7:79:3b:fb:b7:56:5a:d7:ee:b5:31:8c:
1c:d2:0e:98:29:9f:ff:a7:cc:0e:2f:c1:9f:c6:18:
93:22:e4:04:d7:0a:bb:72:56:7c:4a:f5:57:25:7d:
60:f3:ec:a6:70:d9:07:b4:51:0e:b5:a7:cc:ef:1e:
b7:80:42:46:2a:da:56:ea:66:cd:33:1d:86:41:b6:
7f:40:6f:c7:ff:7c:54:e6:26:6e:60:9e:b0:2d:94:
33:fe:f8:e0:4e:63:06:e8:c0:3d:bf:15:7a:3f:c4:
82:0b:d8:98:b2:24:fd:54:5e:c0:69:87:33:69:12:
0c:56:2c:65:7f:be:50:3f:85:c3:a9:f3:a8:d6:3b:
ba:93:3a:a0:8c:bb:17:06:1d:2d:b3:3b:50:71:25:
16:d0:37:4e:ff:6c:f7:4a:6c:c4:19:c2:78:75:48:
47:58:ce:22:8a:26:04:8a:6e:b0:13:12:31:5b:af:
56:29:5b:54:bd:67:ec:9d:dd:f1:03:f5:ed:1a:73:
a2:34:ae:c3:b6:fb:86:45:a0:d4:5e:5f:72:4d:94:
ef:00:1c:60:29:03:d2:c4:9b:88:93:12:2c:a5:bf:
57:d6:25:aa:25:cd:89:18:f5:4a:99:21:1f:5d:a6:
6a:5e:9d:cb:b6:24:f9:30:b5:10:db:a4:0e:09:3d:
79:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:5C:71:46:50:D8:95:02:D4:69:50:9B:D5:26:00:38:5B:73:7A:F7
X509v3 Authority Key Identifier:
keyid:71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:9b:dc:68:83:29:40:26:1c:35:92:87:46:9a:3f:ab:9f:37:
9d:91:cf:ff:5c:de:b1:76:e7:73:d4:f8:35:17:7b:4e:2e:03:
44:e5:c7:2e:07:3b:8b:a5:6b:b0:c3:95:69:3d:6c:b3:aa:25:
4a:e2:a5:5b:97:25:dd:ad:34:cf:20:18:ab:af:c8:ef:70:bc:
45:16:2e:b3:29:06:1c:e0:55:13:e6:12:7d:24:71:6b:1d:fd:
b5:67:7f:be:3b:22:ac:75:9a:a2:5a:f3:03:b9:57:fa:19:16:
78:05:17:5b:7f:c8:55:eb:a8:e2:de:71:dd:35:68:e3:a9:c7:
1f:8a:2e:36:c9:14:56:13:d7:83:3d:6e:90:90:5e:d2:0d:9f:
57:5a:b4:2d:ac:6e:17:d7:25:4f:fa:d5:bc:93:cd:f5:e3:b0:
16:0a:34:69:4e:d6:7a:e8:bd:99:34:a1:5d:a8:2e:ae:ae:80:
e3:6d:66:aa:36:64:db:33:e4:4b:55:fa:4d:11:a4:22:ed:15:
62:a5:22:21:9e:1b:cf:23:66:33:7a:2a:b5:0c:10:b6:ce:35:
37:df:18:b3:dc:ad:77:b4:18:93:b3:4d:68:0f:ac:c7:52:77:
d0:b5:b5:b7:49:23:53:23:f7:b9:2c:22:4e:40:62:7f:b4:5d:
bc:80:d0:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WP+uybqHuFIlpTaNcOCrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxOGIxMzhiYTkzNTIzNGYxMWNhMTAyNWQ2NjdmMTMzZjA3
ZDU1ZmQwHhcNMjUxMDE5MTIwMTU1WhcNMjUxMDIwMTIwMTU1WjAzMTEwLwYDVQQD
EyhlMTVjNzE0NjUwZDg5NTAyZDQ2OTUwOWJkNTI2MDAzODViNzM3YWY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUf3eTv7t1Za1+61MYwc0g6YKZ//
p8wOL8GfxhiTIuQE1wq7clZ8SvVXJX1g8+ymcNkHtFEOtafM7x63gEJGKtpW6mbN
Mx2GQbZ/QG/H/3xU5iZuYJ6wLZQz/vjgTmMG6MA9vxV6P8SCC9iYsiT9VF7AaYcz
aRIMVixlf75QP4XDqfOo1ju6kzqgjLsXBh0tsztQcSUW0DdO/2z3SmzEGcJ4dUhH
WM4iiiYEim6wExIxW69WKVtUvWfsnd3xA/XtGnOiNK7DtvuGRaDUXl9yTZTvABxg
KQPSxJuIkxIspb9X1iWqJc2JGPVKmSEfXaZqXp3LtiT5MLUQ26QOCT15CwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOFccUZQ2JUC1GlQm9UmADhbc3r3MB8GA1UdIwQY
MBaAFHGLE4upNSNPEcoQJdZn8TPwfVX9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1lzVGk2azFJMDhSeWhBbDFtZnhNX0I5VmYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9kNDMwODUtZDk0ZS00NjlkLTk3Nzgt
M2I4ZWMxYTY1ODgwLzEvY1lzVGk2azFJMDhSeWhBbDFtZnhNX0I5VmYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9kNDMwODUtZDk0ZS00NjlkLTk3NzgtM2I4ZWMxYTY1ODgw
LzEvY1lzVGk2azFJMDhSeWhBbDFtZnhNX0I5VmYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX5vcaIMp
QCYcNZKHRpo/q583nZHP/1zesXbnc9T4NRd7Ti4DROXHLgc7i6VrsMOVaT1ss6ol
SuKlW5cl3a00zyAYq6/I73C8RRYusykGHOBVE+YSfSRxax39tWd/vjsirHWaolrz
A7lX+hkWeAUXW3/IVeuo4t5x3TVo46nHH4ouNskUVhPXgz1ukJBe0g2fV1q0Laxu
F9clT/rVvJPN9eOwFgo0aU7Weui9mTShXagurq6A421mqjZk2zPkS1X6TRGkIu0V
YqUiIZ4bzyNmM3oqtQwQts41N98Ys9ytd7QYk7NNaA+sx1J30LW1t0kjUyP3uSwi
TkBif7RdvIDQwg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:07:02 2025 by rpki-client