Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
File: yF0BtEKUbhkkMT1WTzG35C4kVec.mft (raw, json)
Hash identifier: rNjYgyRPE1czJeRvqYmTXHQ0lG/3EuaQW9PxFc2GJg0=
Subject key identifier: E3:79:14:C5:77:26:17:02:7A:72:3A:21:E7:3C:99:89:A6:BD:D1:B9
Authority key identifier: C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
Certificate issuer: /CN=c85d01b442946e1924313d564f31b7e42e2455e7
Certificate serial: 0198D7E11464C1F39C6DE5B5555CBFB1B04C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
Manifest number: 0ACC
Signing time: Sat 23 Aug 2025 17:01:48 +0000
Manifest this update: Sat 23 Aug 2025 17:01:48 +0000
Manifest next update: Sun 24 Aug 2025 17:01:48 +0000
Files and hashes: 1: DpCybAm9bBRoUpHGAuIQ86Lq5pw.roa (hash: 2p6cZB/6xzzCJ7jeUbBrD5Bf0hcHEh4tn/vPl+35cnU=)
2: yF0BtEKUbhkkMT1WTzG35C4kVec.crl (hash: NkonZo0UzvOWhPS8QRUvO2paJmjC5xWVbypxaSQLMRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:e1:14:64:c1:f3:9c:6d:e5:b5:55:5c:bf:b1:b0:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85d01b442946e1924313d564f31b7e42e2455e7
Validity
Not Before: Aug 23 17:01:48 2025 GMT
Not After : Aug 24 17:01:48 2025 GMT
Subject: CN=e37914c5772617027a723a21e73c9989a6bdd1b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f1:a4:d2:8e:1a:c6:7a:e9:59:63:15:64:59:
c4:55:c9:3a:d4:a5:1f:18:97:4e:a6:db:4b:d4:28:
94:58:0c:19:12:0e:b7:dd:4c:77:6f:e2:86:2b:29:
17:3a:17:c9:9d:bd:2f:3e:22:e7:e7:15:1e:bc:a9:
b1:b0:1f:29:64:a7:67:0f:a9:d2:c9:6c:b9:0a:14:
8b:48:94:76:ee:85:9b:6c:eb:44:32:b0:22:2c:97:
f5:6c:6d:87:b4:0b:9b:df:fe:28:22:dd:4b:15:e0:
b9:31:4c:ab:1d:84:ba:65:56:d6:9b:78:5c:ea:72:
2f:04:ac:ed:5d:a6:93:74:48:99:47:f7:8d:77:db:
62:13:07:a6:b4:9b:39:24:1c:53:c8:84:4c:10:c7:
7a:16:c4:64:1f:ae:4b:d6:1e:65:c2:10:fd:29:75:
2e:dc:de:53:b6:d0:74:1d:84:95:91:67:cc:cd:08:
0b:da:73:e8:38:e0:a2:bd:15:f5:08:f5:63:26:bc:
c4:b2:cb:b8:ab:b5:5f:94:0a:2e:4e:c1:d5:30:76:
06:7e:5d:7c:95:cb:bf:84:ce:0d:41:33:91:75:ac:
c6:16:dc:c2:d9:f8:09:57:80:e6:81:02:de:99:1f:
89:68:b5:e0:4b:c5:8d:ef:d7:ee:36:07:bc:8e:b8:
dc:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:79:14:C5:77:26:17:02:7A:72:3A:21:E7:3C:99:89:A6:BD:D1:B9
X509v3 Authority Key Identifier:
keyid:C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:48:ec:35:55:1b:a1:a0:41:e5:f7:a0:87:39:82:44:ef:2b:
52:b3:88:b5:5c:25:f6:11:b9:e6:78:5b:f0:67:53:8e:6b:59:
c8:00:17:e9:7b:2d:96:31:df:0b:7d:8a:24:23:06:73:02:2a:
7e:38:57:50:ab:63:78:c1:09:91:e1:d2:3e:49:3c:24:ae:01:
f3:0d:f6:1a:0a:b5:3b:fb:e2:1e:e1:04:93:53:b9:f6:b2:21:
c9:92:f3:63:4b:98:9b:1f:6e:50:42:4f:73:5f:84:e8:b3:86:
d3:da:7a:7d:71:91:f8:16:3f:d6:34:64:0c:df:0f:05:3e:1a:
3c:22:8f:f9:85:82:ca:f0:7a:08:3a:69:f6:78:cc:dd:dd:04:
ae:69:11:9d:1d:55:a4:57:09:18:16:bf:42:d0:35:92:16:8f:
90:a2:c5:d8:85:c3:9a:fc:23:23:f1:1d:96:e4:20:b6:b8:87:
19:28:fd:a4:1b:43:78:89:f6:6c:7e:e4:fe:ff:ad:67:da:7b:
48:4a:58:67:d5:17:dc:68:10:57:dd:d0:1a:9d:15:68:41:72:
86:60:f8:75:6a:51:6f:ae:e9:f7:8d:3e:0c:4a:7d:8b:b2:cd:
d0:6f:d7:64:7c:3d:ea:17:b4:cf:07:c7:c9:eb:c0:1a:50:35:
d3:50:31:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjX4RRkwfOcbeW1VVy/sbBMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4NWQwMWI0NDI5NDZlMTkyNDMxM2Q1NjRmMzFiN2U0MmUy
NDU1ZTcwHhcNMjUwODIzMTcwMTQ4WhcNMjUwODI0MTcwMTQ4WjAzMTEwLwYDVQQD
EyhlMzc5MTRjNTc3MjYxNzAyN2E3MjNhMjFlNzNjOTk4OWE2YmRkMWI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/Gk0o4axnrpWWMVZFnEVck61KUf
GJdOpttL1CiUWAwZEg633Ux3b+KGKykXOhfJnb0vPiLn5xUevKmxsB8pZKdnD6nS
yWy5ChSLSJR27oWbbOtEMrAiLJf1bG2HtAub3/4oIt1LFeC5MUyrHYS6ZVbWm3hc
6nIvBKztXaaTdEiZR/eNd9tiEwemtJs5JBxTyIRMEMd6FsRkH65L1h5lwhD9KXUu
3N5TttB0HYSVkWfMzQgL2nPoOOCivRX1CPVjJrzEssu4q7VflAouTsHVMHYGfl18
lcu/hM4NQTORdazGFtzC2fgJV4DmgQLemR+JaLXgS8WN79fuNge8jrjc8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFON5FMV3JhcCenI6Iec8mYmmvdG5MB8GA1UdIwQY
MBaAFMhdAbRClG4ZJDE9Vk8xt+QuJFXnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC81NTA4NzMtZDA2My00MjBkLWEwNTEt
MTZiOTdiOWE4ODVlLzEveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC81NTA4NzMtZDA2My00MjBkLWEwNTEtMTZiOTdiOWE4ODVl
LzEveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjUjsNVUb
oaBB5feghzmCRO8rUrOItVwl9hG55nhb8GdTjmtZyAAX6XstljHfC32KJCMGcwIq
fjhXUKtjeMEJkeHSPkk8JK4B8w32Ggq1O/viHuEEk1O59rIhyZLzY0uYmx9uUEJP
c1+E6LOG09p6fXGR+BY/1jRkDN8PBT4aPCKP+YWCyvB6CDpp9njM3d0ErmkRnR1V
pFcJGBa/QtA1khaPkKLF2IXDmvwjI/EdluQgtriHGSj9pBtDeIn2bH7k/v+tZ9p7
SEpYZ9UX3GgQV93QGp0VaEFyhmD4dWpRb67p940+DEp9i7LN0G/XZHw96he0zwfH
yevAGlA101Ax7Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 19:09:22 2025 by rpki-client