Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.mft
File: YdnzrFCGTRj_Jokzx04qia7GEJ0.mft (raw, json)
Hash identifier: Gdn03LkxPDHW1IdTvUD1v6EKDa0g99Fy9Qy6bZ9gTwE=
Subject key identifier: 68:C8:07:78:BB:CE:9D:CE:D1:C5:04:89:D8:DB:29:EF:81:CC:79:7E
Authority key identifier: 61:D9:F3:AC:50:86:4D:18:FF:26:89:33:C7:4E:2A:89:AE:C6:10:9D
Certificate issuer: /CN=61d9f3ac50864d18ff268933c74e2a89aec6109d
Certificate serial: 0199FBEBD015B612BA7F2FC2635325F8EE16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YdnzrFCGTRj_Jokzx04qia7GEJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.mft
Manifest number: 041D
Signing time: Sun 19 Oct 2025 10:02:39 +0000
Manifest this update: Sun 19 Oct 2025 10:02:39 +0000
Manifest next update: Mon 20 Oct 2025 10:02:39 +0000
Files and hashes: 1: Q0gUuxATATDf6JEQ9fzt1u3IZsc.roa (hash: 3y/S39XmNPx0DoVA3l0EHWQrU4S+Z88s+G6ph2XRAwc=)
2: YdnzrFCGTRj_Jokzx04qia7GEJ0.crl (hash: pVnfwrHnXySl3EAWr2gOmsmYlva81zebRJHiIj/TObg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YdnzrFCGTRj_Jokzx04qia7GEJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:d0:15:b6:12:ba:7f:2f:c2:63:53:25:f8:ee:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61d9f3ac50864d18ff268933c74e2a89aec6109d
Validity
Not Before: Oct 19 10:02:39 2025 GMT
Not After : Oct 20 10:02:39 2025 GMT
Subject: CN=68c80778bbce9dced1c50489d8db29ef81cc797e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8c:95:b4:75:13:fe:54:c2:0f:51:81:f2:49:
04:3b:b4:2b:1e:fc:5f:78:08:c9:e1:ee:d7:a1:91:
75:15:6f:a0:d0:9c:1b:e1:e0:59:3c:04:e7:3a:e8:
17:f8:c4:55:ad:76:81:3f:f9:06:29:ee:c0:2c:31:
52:1b:ee:9a:f0:53:98:19:9a:3b:7d:f0:50:50:43:
b6:ef:51:fb:78:71:4d:3f:cf:15:84:33:02:be:6b:
6d:4f:4a:3a:4a:0e:d0:94:01:f7:25:fb:ec:31:78:
95:c8:c1:ab:15:79:ce:2b:3e:a2:85:eb:7b:39:7d:
46:cd:97:f6:c3:aa:67:92:d8:d0:f9:0d:20:e8:19:
6c:fb:7c:c0:4e:6d:84:32:45:bd:d5:12:cd:ff:ee:
a6:09:2a:4f:10:a7:3d:fb:24:7b:d8:8f:74:69:6a:
76:00:c4:91:53:d9:00:0a:ac:98:ef:d8:3c:9b:17:
c2:6d:66:b7:c4:e3:0e:60:bb:d8:0e:e8:9d:c8:85:
1b:96:1b:56:52:8b:1f:93:ce:9b:56:52:fa:0e:aa:
4e:8b:e1:a0:b7:33:a3:40:d9:65:97:47:63:33:ca:
08:5b:c7:99:e1:bc:7d:ec:5b:21:fc:e7:c9:73:4f:
99:d7:a6:13:cf:ad:5d:54:db:22:f6:41:02:83:4c:
fc:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C8:07:78:BB:CE:9D:CE:D1:C5:04:89:D8:DB:29:EF:81:CC:79:7E
X509v3 Authority Key Identifier:
keyid:61:D9:F3:AC:50:86:4D:18:FF:26:89:33:C7:4E:2A:89:AE:C6:10:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YdnzrFCGTRj_Jokzx04qia7GEJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:c8:21:10:9e:86:71:57:35:dc:ee:c8:54:72:b0:b5:b9:ba:
ed:ef:f0:e8:2a:b5:6c:56:cd:31:00:2b:8d:46:6a:13:f3:76:
16:dc:0d:05:e7:06:f7:ec:9e:c8:cd:7d:e8:c6:29:69:c6:6d:
4d:d2:f8:0c:1e:4b:b7:03:6f:ad:21:dd:db:c0:8e:7b:93:ed:
20:7d:30:42:73:88:8f:81:6f:28:f8:af:f2:28:4b:91:43:60:
57:dc:ee:89:9c:36:b8:20:78:80:d7:e5:ce:8f:7a:06:53:6b:
08:b2:f7:85:25:96:5c:6e:e9:9c:9b:94:b7:e0:31:3f:b1:57:
b4:11:de:33:be:15:eb:9e:88:f2:3a:0e:d3:57:db:7d:a1:74:
fa:60:14:1c:32:ff:f7:7d:5c:dd:d1:ed:ff:13:24:fc:69:a5:
4a:dc:1b:39:87:fa:cd:ed:fc:f6:2a:81:a1:c1:9d:ce:18:96:
07:64:64:7b:13:47:27:91:12:25:74:a9:69:8a:c1:40:ce:77:
df:ce:20:99:a0:37:cc:3d:e8:67:9a:87:0b:9e:70:7f:8c:2f:
cf:af:e4:06:2c:3c:d8:d4:bf:df:89:47:6a:56:af:6f:7c:36:
90:93:0f:13:1f:9e:81:4c:f5:24:a8:43:7a:a6:64:02:48:67:
70:7a:f7:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn769AVthK6fy/CY1Ml+O4WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxZDlmM2FjNTA4NjRkMThmZjI2ODkzM2M3NGUyYTg5YWVj
NjEwOWQwHhcNMjUxMDE5MTAwMjM5WhcNMjUxMDIwMTAwMjM5WjAzMTEwLwYDVQQD
Eyg2OGM4MDc3OGJiY2U5ZGNlZDFjNTA0ODlkOGRiMjllZjgxY2M3OTdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYyVtHUT/lTCD1GB8kkEO7QrHvxf
eAjJ4e7XoZF1FW+g0Jwb4eBZPATnOugX+MRVrXaBP/kGKe7ALDFSG+6a8FOYGZo7
ffBQUEO271H7eHFNP88VhDMCvmttT0o6Sg7QlAH3JfvsMXiVyMGrFXnOKz6ihet7
OX1GzZf2w6pnktjQ+Q0g6Bls+3zATm2EMkW91RLN/+6mCSpPEKc9+yR72I90aWp2
AMSRU9kACqyY79g8mxfCbWa3xOMOYLvYDuidyIUblhtWUosfk86bVlL6DqpOi+Gg
tzOjQNlll0djM8oIW8eZ4bx97Fsh/OfJc0+Z16YTz61dVNsi9kECg0z88QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGjIB3i7zp3O0cUEidjbKe+BzHl+MB8GA1UdIwQY
MBaAFGHZ86xQhk0Y/yaJM8dOKomuxhCdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWRuenJGQ0dUUmpfSm9rengwNHFpYTdHRUowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8zMmM4MDctMzBhZS00YjIyLTkwNWYt
ZGMzM2VhYTEwZDI4LzEvWWRuenJGQ0dUUmpfSm9rengwNHFpYTdHRUowLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS8zMmM4MDctMzBhZS00YjIyLTkwNWYtZGMzM2VhYTEwZDI4
LzEvWWRuenJGQ0dUUmpfSm9rengwNHFpYTdHRUowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqcghEJ6G
cVc13O7IVHKwtbm67e/w6Cq1bFbNMQArjUZqE/N2FtwNBecG9+yeyM196MYpacZt
TdL4DB5LtwNvrSHd28COe5PtIH0wQnOIj4FvKPiv8ihLkUNgV9zuiZw2uCB4gNfl
zo96BlNrCLL3hSWWXG7pnJuUt+AxP7FXtBHeM74V656I8joO01fbfaF0+mAUHDL/
931c3dHt/xMk/GmlStwbOYf6ze389iqBocGdzhiWB2RkexNHJ5ESJXSpaYrBQM53
384gmaA3zD3oZ5qHC55wf4wvz6/kBiw82NS/34lHalavb3w2kJMPEx+egUz1JKhD
eqZkAkhncHr3hA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:43:47 2025 by rpki-client