Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
File: Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft (raw, json)
Hash identifier: rkoYc4g2p9g+28E0tvcUzD4KSSNqFucfRQJeANCRRKU=
Subject key identifier: 49:E3:D8:D9:27:EE:51:98:6E:66:A7:D8:90:03:B1:E8:28:10:44:68
Authority key identifier: 62:3D:8F:99:DF:A3:09:2D:1F:67:57:EF:AC:B4:9F:9E:00:E6:D4:B9
Certificate issuer: /CN=623d8f99dfa3092d1f6757efacb49f9e00e6d4b9
Certificate serial: 0199FFC8607548BA7ADC6785866FED8616C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
Manifest number: 07CD
Signing time: Mon 20 Oct 2025 04:02:25 +0000
Manifest this update: Mon 20 Oct 2025 04:02:25 +0000
Manifest next update: Tue 21 Oct 2025 04:02:25 +0000
Files and hashes: 1: Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl (hash: 5gXGzS45uJv9MEIrIZ6iDDZg8zfbHHVZRzgcSedaPHk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:60:75:48:ba:7a:dc:67:85:86:6f:ed:86:16:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=623d8f99dfa3092d1f6757efacb49f9e00e6d4b9
Validity
Not Before: Oct 20 04:02:25 2025 GMT
Not After : Oct 21 04:02:25 2025 GMT
Subject: CN=49e3d8d927ee51986e66a7d89003b1e828104468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4b:3f:75:52:c0:89:d3:4e:9e:88:93:a9:e1:
5d:4c:5d:3a:97:58:31:f5:18:06:aa:7e:b9:aa:e7:
72:36:db:ab:d0:a2:4d:88:8f:c7:3c:9e:37:56:53:
c1:e7:28:36:80:c2:b8:64:b0:70:b2:27:29:5c:20:
f6:53:2b:87:b2:9e:44:9f:e7:d4:6b:0e:25:e1:a3:
45:ee:3a:f5:a5:f8:89:36:30:a7:30:5c:ae:93:41:
7d:08:3e:0f:9c:40:d8:1f:4b:d9:75:d1:de:01:0c:
2c:b2:b1:e7:3b:2c:05:48:c9:1f:ba:57:87:cf:3f:
97:ca:67:68:f5:4d:dc:e8:bc:fd:87:ad:32:73:3c:
29:a1:65:99:c3:f8:c9:ab:4b:11:e7:1d:95:02:1c:
58:94:99:1c:58:31:a2:e6:28:ba:5d:fe:9d:91:8b:
45:9a:c1:cd:f3:76:b3:bd:43:d1:c3:4c:19:9a:38:
3f:e2:cb:a4:72:de:84:dd:45:67:7e:89:32:9f:99:
7c:98:b2:46:c9:54:8c:ad:58:62:11:d3:03:d5:23:
2a:1a:d9:6d:56:35:f3:a9:8c:44:a7:98:10:c1:3f:
21:a4:4b:63:7d:7c:5b:cb:6e:c7:ee:0f:fd:98:3c:
75:a7:2e:47:db:51:9c:2f:19:da:ac:7a:07:4e:7f:
f3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E3:D8:D9:27:EE:51:98:6E:66:A7:D8:90:03:B1:E8:28:10:44:68
X509v3 Authority Key Identifier:
keyid:62:3D:8F:99:DF:A3:09:2D:1F:67:57:EF:AC:B4:9F:9E:00:E6:D4:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:3c:54:f5:44:46:13:89:c6:c4:4a:bd:73:59:e5:76:d1:32:
70:77:12:5a:da:df:14:57:4d:0a:3a:3f:7d:f1:78:79:11:1a:
83:8c:9a:91:15:e5:ae:dc:70:7b:d9:89:79:62:de:18:7c:cf:
0d:16:e0:d9:9b:bf:c0:26:f2:2f:f0:b2:fd:11:34:00:2d:aa:
29:09:4a:76:54:f3:d3:09:ab:c2:3b:e1:2e:80:e5:80:58:e6:
29:56:22:42:ab:5c:d0:0f:3c:de:01:13:2e:35:e1:ce:67:04:
da:50:30:e2:38:dc:6c:13:5e:08:f9:49:ee:c0:bd:58:3e:3b:
63:67:8b:bb:8a:f2:44:9a:2a:92:08:ce:4c:7c:c8:80:b0:86:
d1:39:23:45:52:d9:d1:27:57:38:ae:d2:a6:54:0f:d0:b0:4c:
03:74:7d:74:b3:36:b0:a9:77:8c:e6:9b:d2:ce:45:49:83:dd:
87:d2:9a:94:90:bb:21:89:57:b7:94:c4:86:8e:01:80:be:fe:
e1:ff:2e:ae:00:92:23:d1:c7:f8:88:f5:bb:65:85:14:15:26:
c3:7b:c5:dc:22:48:ea:41:11:cc:99:43:ea:6f:ca:80:f8:b4:
40:92:9d:59:06:32:b3:70:4a:03:ba:53:67:5f:bd:a7:58:dd:
49:0a:db:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn/yGB1SLp63GeFhm/thhbCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyM2Q4Zjk5ZGZhMzA5MmQxZjY3NTdlZmFjYjQ5ZjllMDBl
NmQ0YjkwHhcNMjUxMDIwMDQwMjI1WhcNMjUxMDIxMDQwMjI1WjAzMTEwLwYDVQQD
Eyg0OWUzZDhkOTI3ZWU1MTk4NmU2NmE3ZDg5MDAzYjFlODI4MTA0NDY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxks/dVLAidNOnoiTqeFdTF06l1gx
9RgGqn65qudyNtur0KJNiI/HPJ43VlPB5yg2gMK4ZLBwsicpXCD2UyuHsp5En+fU
aw4l4aNF7jr1pfiJNjCnMFyuk0F9CD4PnEDYH0vZddHeAQwssrHnOywFSMkfuleH
zz+Xymdo9U3c6Lz9h60yczwpoWWZw/jJq0sR5x2VAhxYlJkcWDGi5ii6Xf6dkYtF
msHN83azvUPRw0wZmjg/4sukct6E3UVnfokyn5l8mLJGyVSMrVhiEdMD1SMqGtlt
VjXzqYxEp5gQwT8hpEtjfXxby27H7g/9mDx1py5H21GcLxnarHoHTn/zgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEnj2Nkn7lGYbman2JADsegoEERoMB8GA1UdIwQY
MBaAFGI9j5nfowktH2dX76y0n54A5tS5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWoyUG1kLWpDUzBmWjFmdnJMU2ZuZ0RtMUxrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC85ZTM2YjItM2YyZC00NDRmLTlkM2Et
NDBiY2I3NGU0YzI4LzEvWWoyUG1kLWpDUzBmWjFmdnJMU2ZuZ0RtMUxrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC85ZTM2YjItM2YyZC00NDRmLTlkM2EtNDBiY2I3NGU0YzI4
LzEvWWoyUG1kLWpDUzBmWjFmdnJMU2ZuZ0RtMUxrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABzxU9URG
E4nGxEq9c1nldtEycHcSWtrfFFdNCjo/ffF4eREag4yakRXlrtxwe9mJeWLeGHzP
DRbg2Zu/wCbyL/Cy/RE0AC2qKQlKdlTz0wmrwjvhLoDlgFjmKVYiQqtc0A883gET
LjXhzmcE2lAw4jjcbBNeCPlJ7sC9WD47Y2eLu4ryRJoqkgjOTHzIgLCG0TkjRVLZ
0SdXOK7SplQP0LBMA3R9dLM2sKl3jOab0s5FSYPdh9KalJC7IYlXt5TEho4BgL7+
4f8urgCSI9HH+Ij1u2WFFBUmw3vF3CJI6kERzJlD6m/KgPi0QJKdWQYys3BKA7pT
Z1+9p1jdSQrbnQ==
-----END CERTIFICATE-----
Generated at Mon Oct 20 09:19:53 2025 by rpki-client