Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
File: RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft (raw, json)
Hash identifier: nvtUixp3ocbzyqcvMvsts12ceXiGnJLJjsfkgRyQcSY=
Subject key identifier: CE:3B:60:D6:D9:00:B7:24:DD:6D:A4:6E:81:92:17:CF:C0:04:77:54
Authority key identifier: 44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
Certificate issuer: /CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Certificate serial: 0198D6CD63F1624D6620467EC690BF89C2D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 12:00:41 +0000
Manifest this update: Sat 23 Aug 2025 12:00:41 +0000
Manifest next update: Sun 24 Aug 2025 12:00:41 +0000
Files and hashes: 1: RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl (hash: z5w9xVN87t963jIE3xSHZ21UYFBSZujF4UpD8aKbe7A=)
2: ZmJk3i0UqR_uJ_XLaSjGUe2aH00.roa (hash: BCwdh7j1ZUyJ+mVEfLtfrzwX+n9rg9YN807VJjPHsUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:63:f1:62:4d:66:20:46:7e:c6:90:bf:89:c2:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Validity
Not Before: Aug 23 12:00:41 2025 GMT
Not After : Aug 24 12:00:41 2025 GMT
Subject: CN=ce3b60d6d900b724dd6da46e819217cfc0047754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:73:99:58:42:fb:ce:22:97:05:a8:f6:bf:c5:
08:2a:b4:56:92:28:bf:ac:f0:78:6a:94:b8:9e:15:
37:fe:a7:86:42:e7:94:09:b9:6e:ec:e8:0c:40:f0:
d5:51:03:5b:7c:9f:17:ba:a7:ad:eb:5e:3a:6a:1b:
f9:42:07:0d:1c:ee:b5:0d:1f:89:fc:a4:83:b9:cc:
a4:67:62:7f:37:3e:8c:8d:a4:57:e3:21:a2:ae:4c:
af:6b:a7:bd:ea:3b:a9:80:4f:e1:9e:3b:a3:73:31:
13:dc:cd:18:d0:36:60:d5:e6:10:53:ad:90:2d:bc:
bc:aa:71:ce:a8:79:88:a4:b0:36:a1:4c:0c:ca:c2:
2e:6b:ad:e4:ae:98:c8:3b:92:37:75:7d:d2:ab:01:
df:9b:20:2a:58:64:1b:72:3a:07:3c:b1:ad:96:1a:
83:6f:6f:35:37:fe:d0:06:a4:0c:7f:ad:cb:ee:92:
eb:ce:6d:ae:f3:f6:22:61:c8:3d:d0:23:19:c7:e2:
49:5b:9d:3e:bf:3a:d2:20:2e:68:2e:c5:01:35:ef:
5b:d3:33:02:03:f1:17:fc:f8:64:93:f3:61:84:07:
15:5d:56:8b:80:cf:5e:3c:9f:fb:8b:55:f5:6b:69:
5f:9d:f0:32:78:b9:62:83:fb:07:f8:69:e0:d5:24:
47:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:3B:60:D6:D9:00:B7:24:DD:6D:A4:6E:81:92:17:CF:C0:04:77:54
X509v3 Authority Key Identifier:
keyid:44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:42:78:dc:f8:83:d3:26:75:1a:0b:c7:1b:48:ba:eb:8c:3f:
5b:c6:1c:e8:ce:58:a6:45:83:f9:fc:8e:1c:43:15:7b:ae:d5:
ad:d5:6d:11:30:6f:b0:2a:c0:6a:71:ae:3a:aa:71:de:9a:bb:
15:d9:0b:51:da:64:7a:74:2f:fa:d9:a6:d7:52:f3:7f:5e:c3:
51:b6:56:2f:0c:b7:fd:c7:2d:2f:54:a0:7f:58:90:8f:01:60:
c3:93:eb:af:07:3d:60:f5:83:0b:ba:40:25:ba:25:73:77:b1:
60:9e:58:5c:c4:9f:e0:8b:e7:5f:13:a6:df:ff:e8:67:e2:57:
2f:53:8c:0d:0e:69:40:b2:5d:aa:17:65:df:c8:a1:de:26:21:
24:72:a7:85:ce:22:61:a9:7e:15:b1:bc:44:f8:97:e5:bf:30:
ea:52:01:d2:ce:9a:ff:25:2b:b1:15:08:28:11:c3:bf:07:ac:
be:46:b3:26:db:a0:2c:35:66:0f:f2:c2:d5:3f:f0:02:96:03:
4f:68:14:da:7a:e9:ca:80:85:f0:bf:6c:a5:66:d8:85:b8:8c:
c7:ee:bd:c8:4f:48:6f:85:fd:f0:04:91:8b:54:ff:60:80:f5:
56:0e:da:e5:b9:44:12:86:bb:8f:4b:3e:2b:5a:ae:d3:ba:b0:
ea:ae:46:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWzWPxYk1mIEZ+xpC/icLQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0ZjYxMGY4NzJjZjMxYjdjMzIyNGNkMmMxNjY5Yzk5Njgz
NTBiN2EwHhcNMjUwODIzMTIwMDQxWhcNMjUwODI0MTIwMDQxWjAzMTEwLwYDVQQD
EyhjZTNiNjBkNmQ5MDBiNzI0ZGQ2ZGE0NmU4MTkyMTdjZmMwMDQ3NzU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA13OZWEL7ziKXBaj2v8UIKrRWkii/
rPB4apS4nhU3/qeGQueUCblu7OgMQPDVUQNbfJ8Xuqet6146ahv5QgcNHO61DR+J
/KSDucykZ2J/Nz6MjaRX4yGirkyva6e96jupgE/hnjujczET3M0Y0DZg1eYQU62Q
Lby8qnHOqHmIpLA2oUwMysIua63krpjIO5I3dX3SqwHfmyAqWGQbcjoHPLGtlhqD
b281N/7QBqQMf63L7pLrzm2u8/YiYcg90CMZx+JJW50+vzrSIC5oLsUBNe9b0zMC
A/EX/Phkk/NhhAcVXVaLgM9ePJ/7i1X1a2lfnfAyeLlig/sH+Gng1SRHCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM47YNbZALck3W2kboGSF8/ABHdUMB8GA1UdIwQY
MBaAFET2EPhyzzG3wyJM0sFmnJloNQt6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUlBZUS1ITFBNYmZESWt6U3dXYWNtV2cxQzNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS83MjUzZjAtZDgyNS00ZGFiLTgwMWYt
OWI1MDllNTkzMWY5LzEvUlBZUS1ITFBNYmZESWt6U3dXYWNtV2cxQzNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS83MjUzZjAtZDgyNS00ZGFiLTgwMWYtOWI1MDllNTkzMWY5
LzEvUlBZUS1ITFBNYmZESWt6U3dXYWNtV2cxQzNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd0J43PiD
0yZ1GgvHG0i664w/W8Yc6M5YpkWD+fyOHEMVe67VrdVtETBvsCrAanGuOqpx3pq7
FdkLUdpkenQv+tmm11Lzf17DUbZWLwy3/cctL1Sgf1iQjwFgw5Prrwc9YPWDC7pA
Jbolc3exYJ5YXMSf4IvnXxOm3//oZ+JXL1OMDQ5pQLJdqhdl38ih3iYhJHKnhc4i
Yal+FbG8RPiX5b8w6lIB0s6a/yUrsRUIKBHDvwesvkazJtugLDVmD/LC1T/wApYD
T2gU2nrpyoCF8L9spWbYhbiMx+69yE9Ib4X98ASRi1T/YID1Vg7a5blEEoa7j0s+
K1qu07qw6q5GYA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:44:51 2025 by rpki-client