Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
File: oYanahiZ2_kCnhrv2QUXe7CdNo0.mft (raw, json)
Hash identifier: 41rc/c0yJe9GM628MH3ZoYzanNk57R/1lgQUugc86dI=
Subject key identifier: 6B:F9:22:9A:81:A7:A8:B4:46:42:E7:BE:C5:98:29:FA:F0:1D:16:49
Authority key identifier: A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
Certificate issuer: /CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Certificate serial: 0199FBEABD71658789D254B3B6A22B9A7CFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
Manifest number: 0B73
Signing time: Sun 19 Oct 2025 10:01:29 +0000
Manifest this update: Sun 19 Oct 2025 10:01:29 +0000
Manifest next update: Mon 20 Oct 2025 10:01:29 +0000
Files and hashes: 1: bcgHeTecNhcHR9QWO6gmvpmmI5c.roa (hash: EV6/wlUYGCbS7xEazmx8eI5Bar/BgAFt51P9o3UlOuQ=)
2: oYanahiZ2_kCnhrv2QUXe7CdNo0.crl (hash: 7ajsN7CuQgatjJWDpOJg/DlPVywyInT9pdXP4KqmDcE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:bd:71:65:87:89:d2:54:b3:b6:a2:2b:9a:7c:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Validity
Not Before: Oct 19 10:01:29 2025 GMT
Not After : Oct 20 10:01:29 2025 GMT
Subject: CN=6bf9229a81a7a8b44642e7bec59829faf01d1649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:da:ac:24:46:e3:50:8b:56:6d:8d:0b:6b:ee:
ba:a2:06:b8:6a:0c:91:97:a6:57:83:da:b6:22:4f:
c0:06:de:c3:a9:03:8c:d0:46:f3:0b:64:4d:dd:90:
6f:3e:45:d6:3a:05:c0:18:95:0c:6b:77:17:cc:c3:
fe:4d:76:aa:20:01:f2:a8:c8:b0:39:aa:4d:1c:7d:
32:e2:e5:0c:a6:bc:f2:16:33:45:09:1e:24:8c:ba:
81:83:fd:01:f4:bd:a4:1f:6a:54:3d:ed:a6:e8:02:
d7:01:63:ba:cd:35:ab:c6:9c:d0:f7:9d:3f:44:d4:
cf:04:c0:9a:15:f7:16:74:b3:3b:ba:ce:29:45:65:
e3:5a:71:29:8f:83:a8:ce:90:76:75:4a:48:85:ee:
51:28:a7:45:a7:a6:c2:d6:f8:95:3b:3e:76:3e:f7:
18:98:39:1f:12:75:2f:74:94:35:b9:ef:f7:15:c4:
7e:b3:7e:d1:3c:08:6a:28:10:43:a7:92:41:90:2a:
3b:84:60:f6:22:77:98:ba:0e:43:99:2b:7c:ed:9a:
c4:3d:02:a1:c9:dd:0c:bb:4e:75:8e:95:00:75:04:
0f:02:34:20:41:83:d3:dc:e8:30:ce:25:f8:ac:e4:
df:ac:78:e0:4b:9a:01:8d:78:7a:ed:06:e7:2c:3d:
bf:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:F9:22:9A:81:A7:A8:B4:46:42:E7:BE:C5:98:29:FA:F0:1D:16:49
X509v3 Authority Key Identifier:
keyid:A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:e5:a2:f4:64:4c:f9:bf:7d:5e:dc:27:10:a8:d0:c5:82:5c:
57:dd:23:7a:da:c7:09:de:8e:27:19:5f:2b:46:e1:13:b9:46:
20:79:b9:59:d3:d7:df:56:bd:0b:b7:b4:45:f2:5a:61:f0:d8:
c6:f0:00:38:d4:c8:3e:84:80:53:bc:26:af:68:14:be:c5:3c:
54:7b:d5:dd:81:dd:14:03:9d:a1:3c:ca:4c:fd:f4:b5:21:8c:
92:41:95:ad:d3:19:fa:d9:ad:5f:8d:96:bb:93:1d:e4:2e:dd:
b2:b0:1e:a6:38:0f:af:c4:84:c0:44:3e:ea:83:a2:44:5d:0c:
9d:5b:92:24:96:a2:d0:25:d9:f6:46:24:0a:ae:2b:04:e3:1b:
c6:65:7b:7e:1f:ab:04:21:14:d4:c9:9e:07:66:93:5e:1c:0b:
eb:08:0b:b3:61:51:66:56:90:31:d1:64:5f:74:4e:aa:bb:2a:
89:f7:7b:6e:b5:18:5d:99:71:47:6e:11:14:f6:16:0e:e3:41:
15:1d:e5:9f:b1:31:a1:e9:ba:48:c0:14:6d:9a:89:45:4d:fa:
7e:87:b5:2f:1a:c1:76:e6:f5:8b:d3:32:5a:6e:8c:53:04:8a:
9a:85:d9:9c:09:d3:1d:06:91:00:36:d1:39:3a:ed:9a:ef:a8:
9d:56:ef:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76r1xZYeJ0lSztqIrmnz6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExODZhNzZhMTg5OWRiZjkwMjllMWFlZmQ5MDUxNzdiYjA5
ZDM2OGQwHhcNMjUxMDE5MTAwMTI5WhcNMjUxMDIwMTAwMTI5WjAzMTEwLwYDVQQD
Eyg2YmY5MjI5YTgxYTdhOGI0NDY0MmU3YmVjNTk4MjlmYWYwMWQxNjQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy9qsJEbjUItWbY0La+66oga4agyR
l6ZXg9q2Ik/ABt7DqQOM0EbzC2RN3ZBvPkXWOgXAGJUMa3cXzMP+TXaqIAHyqMiw
OapNHH0y4uUMprzyFjNFCR4kjLqBg/0B9L2kH2pUPe2m6ALXAWO6zTWrxpzQ950/
RNTPBMCaFfcWdLM7us4pRWXjWnEpj4OozpB2dUpIhe5RKKdFp6bC1viVOz52PvcY
mDkfEnUvdJQ1ue/3FcR+s37RPAhqKBBDp5JBkCo7hGD2IneYug5DmSt87ZrEPQKh
yd0Mu051jpUAdQQPAjQgQYPT3OgwziX4rOTfrHjgS5oBjXh67QbnLD2/dQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGv5IpqBp6i0RkLnvsWYKfrwHRZJMB8GA1UdIwQY
MBaAFKGGp2oYmdv5Ap4a79kFF3uwnTaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEt
MzEyZTViNDkxMTQ2LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEtMzEyZTViNDkxMTQ2
LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ+Wi9GRM
+b99XtwnEKjQxYJcV90jetrHCd6OJxlfK0bhE7lGIHm5WdPX31a9C7e0RfJaYfDY
xvAAONTIPoSAU7wmr2gUvsU8VHvV3YHdFAOdoTzKTP30tSGMkkGVrdMZ+tmtX42W
u5Md5C7dsrAepjgPr8SEwEQ+6oOiRF0MnVuSJJai0CXZ9kYkCq4rBOMbxmV7fh+r
BCEU1MmeB2aTXhwL6wgLs2FRZlaQMdFkX3ROqrsqifd7brUYXZlxR24RFPYWDuNB
FR3ln7Exoem6SMAUbZqJRU36foe1LxrBdub1i9MyWm6MUwSKmoXZnAnTHQaRADbR
OTrtmu+onVbvUw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:39:25 2025 by rpki-client