Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: 1gQQUHxgMp26cNhFulB5mN53EUNGJ5VQjgSTRidzVYE=
Subject key identifier: 50:2C:2B:47:30:98:AA:38:17:20:68:14:75:DC:68:99:5E:2E:E2:08
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 0199FC8F48102DBF6C80B8ADFE212FD58C7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 124A
Signing time: Sun 19 Oct 2025 13:01:12 +0000
Manifest this update: Sun 19 Oct 2025 13:01:12 +0000
Manifest next update: Mon 20 Oct 2025 13:01:12 +0000
Files and hashes: 1: HAjyOzGCAwLUy5RivV8kbOy5Vu4.roa (hash: PsK5K2sZtAdplKvTizBojj+ePHRa8hE1Sr8s/0IgHpY=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: RAwUSkJNAgJ3cW3z137cp/CV8UbrCLGyHG0YScwdkKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:48:10:2d:bf:6c:80:b8:ad:fe:21:2f:d5:8c:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Oct 19 13:01:12 2025 GMT
Not After : Oct 20 13:01:12 2025 GMT
Subject: CN=502c2b473098aa381720681475dc68995e2ee208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ea:63:95:6a:09:f3:d7:57:2d:c7:3b:03:74:
01:f9:ff:84:6f:5b:07:a8:30:88:13:52:7d:55:77:
e8:78:71:1c:05:9d:96:61:d6:e6:ff:78:7c:ac:cd:
97:1c:c4:7e:10:06:0d:be:d8:06:2a:b7:ad:5c:e9:
9d:5a:a7:d9:4b:89:ed:38:c2:c0:83:9c:31:9c:d8:
5d:a5:a7:ae:87:71:df:68:29:12:09:a2:3e:96:25:
57:df:09:08:8c:1d:77:bf:94:f5:c9:77:a4:6e:3a:
3f:f7:c5:c5:b7:b4:12:1c:d0:69:b9:a4:85:79:3c:
ef:35:15:c5:39:6c:77:a8:c8:5a:d6:1c:a5:2e:d0:
c3:f0:95:82:0b:12:65:2a:f5:4a:fb:d8:5e:12:81:
67:a7:c0:23:71:6f:21:e7:72:ad:54:81:cd:fd:53:
cf:36:68:1f:10:10:79:35:a3:c8:bf:50:27:e7:0b:
9f:1c:b0:ba:b8:ce:ea:11:4e:eb:ca:9a:84:f1:2c:
da:9c:2e:93:f4:bd:ab:e6:27:28:cc:b6:55:bb:0d:
d5:e6:90:9e:cc:4b:09:c7:69:c6:3c:57:9c:cd:8c:
2c:fb:2f:c0:42:92:2d:98:1e:60:40:ef:21:e7:ad:
e6:f6:54:4e:ae:29:5e:c1:a9:1c:79:c0:a5:31:84:
39:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:2C:2B:47:30:98:AA:38:17:20:68:14:75:DC:68:99:5E:2E:E2:08
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:5c:fe:34:fa:a0:42:5d:e4:c1:8d:d1:2b:5e:7d:0c:cb:c8:
c0:e9:76:a5:40:b3:5d:84:43:15:03:2e:d3:3b:48:51:97:c1:
ca:d2:2b:f6:76:a9:14:13:81:4b:04:8d:40:8a:ac:fb:ed:6e:
c4:f8:13:c3:c5:79:ae:0e:dd:85:d0:d2:98:29:81:a3:64:13:
4e:8f:e3:1d:84:a5:4a:4f:62:3b:73:b6:c0:c8:13:d4:f1:41:
10:d3:02:38:48:97:e3:30:83:0b:c5:31:b4:ab:8d:f9:f5:4e:
39:4b:b6:1f:15:ae:08:13:e2:a7:ef:f1:9f:4b:1e:c6:1f:46:
b7:58:fc:e0:41:60:2a:85:9f:9b:7d:6e:0d:df:1f:6a:c8:8d:
61:bd:5d:7f:9e:0e:f6:8c:e7:9e:dc:69:59:49:8a:c3:ba:be:
5b:7a:03:25:d2:f8:3a:88:2c:17:04:46:22:15:78:b8:e3:2d:
1d:8c:e9:50:ba:56:6c:81:63:23:6d:57:79:68:bd:17:63:91:
a5:e5:a7:9a:7a:5d:6d:59:0f:a2:e0:97:4c:26:a6:fb:a0:cd:
eb:e3:9f:e0:5a:94:34:73:99:9c:8f:a3:1e:c2:8b:71:66:d4:
7d:9e:72:79:fd:e3:d1:68:d0:6d:55:bb:42:e2:6b:f4:92:3a:
b8:d1:08:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8j0gQLb9sgLit/iEv1Yx8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNTE3ODlhMjMxMzVhYzIyNjhjMjJhMjg1NjAwYTVmOWIw
NTM3NzAwHhcNMjUxMDE5MTMwMTEyWhcNMjUxMDIwMTMwMTEyWjAzMTEwLwYDVQQD
Eyg1MDJjMmI0NzMwOThhYTM4MTcyMDY4MTQ3NWRjNjg5OTVlMmVlMjA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuupjlWoJ89dXLcc7A3QB+f+Eb1sH
qDCIE1J9VXfoeHEcBZ2WYdbm/3h8rM2XHMR+EAYNvtgGKretXOmdWqfZS4ntOMLA
g5wxnNhdpaeuh3HfaCkSCaI+liVX3wkIjB13v5T1yXekbjo/98XFt7QSHNBpuaSF
eTzvNRXFOWx3qMha1hylLtDD8JWCCxJlKvVK+9heEoFnp8AjcW8h53KtVIHN/VPP
NmgfEBB5NaPIv1An5wufHLC6uM7qEU7rypqE8SzanC6T9L2r5icozLZVuw3V5pCe
zEsJx2nGPFeczYws+y/AQpItmB5gQO8h563m9lROrilewakcecClMYQ5DQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFAsK0cwmKo4FyBoFHXcaJleLuIIMB8GA1UdIwQY
MBaAFMpReJojE1rCJowiooVgCl+bBTdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMt
MWUxOTE2OGY1ZDczLzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMtMWUxOTE2OGY1ZDcz
LzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARVz+NPqg
Ql3kwY3RK159DMvIwOl2pUCzXYRDFQMu0ztIUZfBytIr9napFBOBSwSNQIqs++1u
xPgTw8V5rg7dhdDSmCmBo2QTTo/jHYSlSk9iO3O2wMgT1PFBENMCOEiX4zCDC8Ux
tKuN+fVOOUu2HxWuCBPip+/xn0sexh9Gt1j84EFgKoWfm31uDd8fasiNYb1df54O
9oznntxpWUmKw7q+W3oDJdL4OogsFwRGIhV4uOMtHYzpULpWbIFjI21XeWi9F2OR
peWnmnpdbVkPouCXTCam+6DN6+Of4FqUNHOZnI+jHsKLcWbUfZ5yef3j0WjQbVW7
QuJr9JI6uNEIpg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:34:35 2025 by rpki-client