Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
File: yRjEAZR0zIHsZh_OZObJOJchlto.mft (raw, json)
Hash identifier: aRM+H+bLMCQ0z40kS42ltpohqfhBZiZfohY1E+jHqoI=
Subject key identifier: 92:67:83:C3:5F:1E:2A:DB:1D:D6:A4:97:9C:C2:0C:ED:3D:19:5F:01
Authority key identifier: C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA
Certificate issuer: /CN=c918c4019474cc81ec661fce64e6c938972196da
Certificate serial: 0199FCFD3CADD8699C1233F30A3B188E6DFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
Manifest number: 0685
Signing time: Sun 19 Oct 2025 15:01:18 +0000
Manifest this update: Sun 19 Oct 2025 15:01:18 +0000
Manifest next update: Mon 20 Oct 2025 15:01:18 +0000
Files and hashes: 1: Jsgd2QMS4v8iKbqKY7mpL6rgdrw.roa (hash: zUKbiJyZKBDLVjXxF3gSP5G2WQgNlz6YzfL6risxYY8=)
2: yRjEAZR0zIHsZh_OZObJOJchlto.crl (hash: neFPpL9Uu6cu8l7D6HQd4QLsPhqdLnj2B02Ooy4Xfrk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:3c:ad:d8:69:9c:12:33:f3:0a:3b:18:8e:6d:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c918c4019474cc81ec661fce64e6c938972196da
Validity
Not Before: Oct 19 15:01:18 2025 GMT
Not After : Oct 20 15:01:18 2025 GMT
Subject: CN=926783c35f1e2adb1dd6a4979cc20ced3d195f01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6e:81:e4:f4:08:05:37:3a:23:0b:48:6f:bf:
bc:54:ce:d0:d0:11:e1:38:c8:0a:89:1a:cc:3a:4e:
0e:f3:77:b5:49:b9:68:96:86:6a:c1:d2:b1:27:6a:
ff:2a:84:f5:d5:cd:0a:19:63:2d:78:d0:a1:bd:ea:
5f:d9:43:7a:c9:38:30:7f:ca:a3:4f:94:98:0f:b8:
5f:58:cf:e6:d5:08:68:8e:9f:d4:aa:19:84:f5:49:
fe:c2:41:9a:0c:e1:3f:58:72:48:95:1c:24:ee:1a:
a8:03:b6:0d:64:87:30:c7:97:0e:96:3c:84:c0:c9:
a1:5f:5b:88:e4:7a:75:ba:6e:c9:58:9c:53:46:cf:
6b:6b:6e:53:94:9a:de:b0:a8:f9:80:9d:cc:ff:46:
08:af:68:b8:5e:28:f8:64:32:a6:84:8d:99:a0:03:
ca:47:a7:8c:e6:3d:eb:3d:f4:5c:e3:4b:c0:6a:64:
cf:41:21:9e:70:aa:8b:ff:92:12:fd:32:a2:50:57:
b4:94:a1:39:40:a6:d4:e6:f5:46:e3:21:3f:47:67:
9b:f1:2d:e5:04:96:2d:ca:c2:a0:bd:71:ca:9d:f7:
c2:1d:d5:cc:43:d5:fe:ec:f6:52:c5:fe:ea:0f:a5:
aa:6c:ec:42:73:7d:b0:fa:05:ad:c6:c5:07:2e:4b:
08:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:67:83:C3:5F:1E:2A:DB:1D:D6:A4:97:9C:C2:0C:ED:3D:19:5F:01
X509v3 Authority Key Identifier:
keyid:C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:c3:d6:5c:6b:4b:3a:b6:25:05:6a:09:9e:cb:0c:2c:f0:5e:
98:f1:40:96:5c:7e:5d:b9:c2:be:bf:1e:cf:6f:c3:5d:b3:a4:
da:f7:60:13:7c:56:a6:c1:74:1b:63:d1:03:0a:d2:0e:78:19:
3c:b5:20:fb:71:62:bc:fe:75:8c:b2:b1:11:5d:68:95:e8:66:
95:1d:07:09:c1:d8:18:f7:15:79:f6:2f:b5:44:c8:7d:ed:bf:
28:cb:d9:4e:2a:97:57:21:cb:ce:9f:ae:7a:6e:c7:bb:94:83:
a7:73:ed:e3:e4:d2:35:3e:37:c2:95:95:e7:73:6c:a2:31:ce:
cc:2a:f0:eb:05:1a:a3:91:f1:a2:62:03:5c:5d:e3:7c:a7:5d:
b6:23:85:12:a1:ce:26:28:ba:16:f1:9e:06:7e:74:62:ce:3e:
80:08:98:6b:8e:da:eb:6b:c8:e3:38:c4:93:71:eb:a3:46:a1:
0e:6a:74:8d:05:1a:b6:37:bc:c3:fd:ba:d1:3f:06:36:0e:9b:
89:fa:74:f5:cb:9b:4d:7f:cc:aa:43:35:b2:65:87:1b:29:9d:
7c:5c:a4:4d:4e:c6:2d:04:88:f7:6c:86:12:82:1b:d2:7a:48:
11:1b:d0:4d:f1:b6:0c:ca:69:b1:56:95:aa:10:c2:13:96:39:
78:d2:de:87
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8/Tyt2GmcEjPzCjsYjm36MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5MThjNDAxOTQ3NGNjODFlYzY2MWZjZTY0ZTZjOTM4OTcy
MTk2ZGEwHhcNMjUxMDE5MTUwMTE4WhcNMjUxMDIwMTUwMTE4WjAzMTEwLwYDVQQD
Eyg5MjY3ODNjMzVmMWUyYWRiMWRkNmE0OTc5Y2MyMGNlZDNkMTk1ZjAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAym6B5PQIBTc6IwtIb7+8VM7Q0BHh
OMgKiRrMOk4O83e1SbloloZqwdKxJ2r/KoT11c0KGWMteNChvepf2UN6yTgwf8qj
T5SYD7hfWM/m1Qhojp/UqhmE9Un+wkGaDOE/WHJIlRwk7hqoA7YNZIcwx5cOljyE
wMmhX1uI5Hp1um7JWJxTRs9ra25TlJresKj5gJ3M/0YIr2i4Xij4ZDKmhI2ZoAPK
R6eM5j3rPfRc40vAamTPQSGecKqL/5IS/TKiUFe0lKE5QKbU5vVG4yE/R2eb8S3l
BJYtysKgvXHKnffCHdXMQ9X+7PZSxf7qD6WqbOxCc32w+gWtxsUHLksIsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJJng8NfHirbHdakl5zCDO09GV8BMB8GA1UdIwQY
MBaAFMkYxAGUdMyB7GYfzmTmyTiXIZbaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVJqRUFaUjB6SUhzWmhfT1pPYkpPSmNobHRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8yOTY4NTItYThmZC00OGU1LThkZDYt
OGFiY2JiNjVjNjIxLzEveVJqRUFaUjB6SUhzWmhfT1pPYkpPSmNobHRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS8yOTY4NTItYThmZC00OGU1LThkZDYtOGFiY2JiNjVjNjIx
LzEveVJqRUFaUjB6SUhzWmhfT1pPYkpPSmNobHRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAscPWXGtL
OrYlBWoJnssMLPBemPFAllx+XbnCvr8ez2/DXbOk2vdgE3xWpsF0G2PRAwrSDngZ
PLUg+3FivP51jLKxEV1olehmlR0HCcHYGPcVefYvtUTIfe2/KMvZTiqXVyHLzp+u
em7Hu5SDp3Pt4+TSNT43wpWV53NsojHOzCrw6wUao5HxomIDXF3jfKddtiOFEqHO
Jii6FvGeBn50Ys4+gAiYa47a62vI4zjEk3Hro0ahDmp0jQUatje8w/260T8GNg6b
ifp09cubTX/MqkM1smWHGymdfFykTU7GLQSI92yGEoIb0npIERvQTfG2DMppsVaV
qhDCE5Y5eNLehw==
-----END CERTIFICATE-----
Generated at Mon Oct 20 01:11:16 2025 by rpki-client