Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
File: yIYjh23RrY5iSiPdUossZMgKhSE.mft (raw, json)
Hash identifier: dBqjU6h0BSDx0hixV8wc1bHWj8VEG0M3tFK3+Bo5bPg=
Subject key identifier: ED:58:CF:81:7C:E9:D8:93:13:17:F7:8A:81:A0:52:6C:44:5A:53:EA
Authority key identifier: C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
Certificate issuer: /CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Certificate serial: 019A0034F4D2DB8E1610EBA55BAAB533953F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
Manifest number: 0605
Signing time: Mon 20 Oct 2025 06:01:01 +0000
Manifest this update: Mon 20 Oct 2025 06:01:01 +0000
Manifest next update: Tue 21 Oct 2025 06:01:01 +0000
Files and hashes: 1: 6bGSQZyXICWLbBfHBORwDUVmEgs.roa (hash: 1jQZKU6KRpYxffMVHliAkA59/J/hUE4iGAwCvJDdSlw=)
2: yIYjh23RrY5iSiPdUossZMgKhSE.crl (hash: BznoQVLEr0VfAs80V8JrfUiYaf9YO9PJfyJpENcjM8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:34:f4:d2:db:8e:16:10:eb:a5:5b:aa:b5:33:95:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Validity
Not Before: Oct 20 06:01:01 2025 GMT
Not After : Oct 21 06:01:01 2025 GMT
Subject: CN=ed58cf817ce9d8931317f78a81a0526c445a53ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4c:39:78:df:2f:b3:5a:3e:0d:a4:70:12:ef:
08:e6:a9:b4:b9:62:e6:ce:b2:4f:ac:c0:94:3a:1a:
d4:08:f6:63:b9:89:98:97:ce:f2:03:04:8b:57:3e:
e9:7c:09:d4:e1:48:6e:19:92:7e:86:c3:ab:6d:f7:
20:33:4d:dc:2d:51:d0:a0:8b:9b:d7:0a:b1:76:cc:
30:80:8a:b4:c7:70:1e:7e:d8:04:55:f3:cd:6e:59:
f7:35:79:88:c7:47:b3:68:c8:74:b4:36:82:1d:0a:
8e:a5:5e:6b:a2:41:27:77:a0:01:a1:e2:c8:a8:e1:
6b:65:8e:bf:8e:da:e1:47:4e:68:c2:9c:70:d8:15:
23:61:58:a3:7e:a5:c5:4c:ad:ae:c1:37:5e:07:69:
05:3c:57:30:86:4c:1d:68:ae:40:6a:e0:c2:bd:f5:
11:2c:da:5d:7c:be:5b:ad:87:4b:97:15:28:d5:88:
71:e6:69:0e:dd:9d:85:8c:03:df:d2:f9:0e:7d:3e:
cd:5a:e0:2f:7a:f3:78:ac:29:27:c6:a9:6a:9f:25:
05:a2:d6:72:6e:5e:8f:b2:c6:02:c9:d1:23:24:13:
4c:ea:c9:f2:68:10:f1:9c:27:cc:a6:97:33:75:7b:
e6:8e:66:7e:6d:7a:4d:05:b1:fc:b8:bf:fa:b1:7d:
81:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:58:CF:81:7C:E9:D8:93:13:17:F7:8A:81:A0:52:6C:44:5A:53:EA
X509v3 Authority Key Identifier:
keyid:C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:be:f2:c4:b6:70:87:72:c4:99:0d:56:03:ff:87:ef:15:be:
0e:1f:17:23:82:87:78:bf:ec:06:35:47:93:d1:d2:5a:e7:27:
5f:66:5d:fe:3f:5c:b9:c1:88:71:78:31:da:20:f0:f0:bd:ba:
2a:0f:e0:ab:7b:27:58:ce:01:7a:18:2f:45:d7:cf:b0:b1:98:
a6:ce:fa:1b:c3:80:81:a8:ce:b1:8f:d1:98:07:05:de:05:7b:
3d:40:4d:57:ee:70:8d:b1:28:81:bd:6e:df:9e:9a:c0:60:33:
83:16:a5:4e:97:b8:f8:f4:97:cf:99:69:03:b7:e6:b7:81:dd:
73:d9:f1:92:55:32:19:2b:dd:d4:62:50:c3:14:e9:72:70:4f:
2c:b0:ee:c9:5b:2e:c0:ea:8a:15:42:cc:98:af:a2:36:6a:e8:
43:e8:2f:23:10:e1:ce:af:68:2f:00:ad:3b:6d:06:b4:02:2d:
3e:ad:ad:71:6c:e8:03:20:86:4e:2c:41:7d:64:c2:84:de:4e:
b1:a3:0e:d0:de:bb:39:fd:34:5a:11:8e:53:aa:a3:3a:95:ce:
42:5a:f9:96:59:3f:b9:79:4b:cd:cf:da:93:cc:d4:f9:b1:0c:
ef:0d:84:66:c5:d5:31:a5:43:1e:0f:3f:3e:0a:53:32:5a:b7:
e8:1f:9c:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoANPTS244WEOulW6q1M5U/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4ODYyMzg3NmRkMWFkOGU2MjRhMjNkZDUyOGIyYzY0Yzgw
YTg1MjEwHhcNMjUxMDIwMDYwMTAxWhcNMjUxMDIxMDYwMTAxWjAzMTEwLwYDVQQD
EyhlZDU4Y2Y4MTdjZTlkODkzMTMxN2Y3OGE4MWEwNTI2YzQ0NWE1M2VhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAokw5eN8vs1o+DaRwEu8I5qm0uWLm
zrJPrMCUOhrUCPZjuYmYl87yAwSLVz7pfAnU4UhuGZJ+hsOrbfcgM03cLVHQoIub
1wqxdswwgIq0x3AeftgEVfPNbln3NXmIx0ezaMh0tDaCHQqOpV5rokEnd6ABoeLI
qOFrZY6/jtrhR05owpxw2BUjYVijfqXFTK2uwTdeB2kFPFcwhkwdaK5AauDCvfUR
LNpdfL5brYdLlxUo1Yhx5mkO3Z2FjAPf0vkOfT7NWuAvevN4rCknxqlqnyUFotZy
bl6PssYCydEjJBNM6snyaBDxnCfMppczdXvmjmZ+bXpNBbH8uL/6sX2BtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO1Yz4F86diTExf3ioGgUmxEWlPqMB8GA1UdIwQY
MBaAFMiGI4dt0a2OYkoj3VKLLGTICoUhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUlZamgyM1JyWTVpU2lQZFVvc3NaTWdLaFNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi8xODI1ZDEtN2MwMS00OTE1LWE0NDQt
MmViNTEyNjFkZGJhLzEveUlZamgyM1JyWTVpU2lQZFVvc3NaTWdLaFNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi8xODI1ZDEtN2MwMS00OTE1LWE0NDQtMmViNTEyNjFkZGJh
LzEveUlZamgyM1JyWTVpU2lQZFVvc3NaTWdLaFNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQr7yxLZw
h3LEmQ1WA/+H7xW+Dh8XI4KHeL/sBjVHk9HSWucnX2Zd/j9cucGIcXgx2iDw8L26
Kg/gq3snWM4BehgvRdfPsLGYps76G8OAgajOsY/RmAcF3gV7PUBNV+5wjbEogb1u
356awGAzgxalTpe4+PSXz5lpA7fmt4Hdc9nxklUyGSvd1GJQwxTpcnBPLLDuyVsu
wOqKFULMmK+iNmroQ+gvIxDhzq9oLwCtO20GtAItPq2tcWzoAyCGTixBfWTChN5O
saMO0N67Of00WhGOU6qjOpXOQlr5llk/uXlLzc/ak8zU+bEM7w2EZsXVMaVDHg8/
PgpTMlq36B+cxQ==
-----END CERTIFICATE-----
Generated at Mon Oct 20 08:56:45 2025 by rpki-client