Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
File: YjqxggzkjFedpAxm2FJl8cLPy04.mft (raw, json)
Hash identifier: Nc2Ji+GNTiThdSuitDOnMeU7Daas+7l62arzc20oPkQ=
Subject key identifier: FA:6D:38:1F:8E:5F:C5:CF:7B:C6:FE:27:01:A9:A6:B8:B3:26:45:4C
Authority key identifier: 62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E
Certificate issuer: /CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e
Certificate serial: 0199FAD7C10317F05A7FA3CBE877E4649AA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
Manifest number: 0766
Signing time: Sun 19 Oct 2025 05:01:07 +0000
Manifest this update: Sun 19 Oct 2025 05:01:07 +0000
Manifest next update: Mon 20 Oct 2025 05:01:07 +0000
Files and hashes: 1: YjqxggzkjFedpAxm2FJl8cLPy04.crl (hash: s0mh1yWivY1ppc5CAIoaD3kGsb39wRlqb3uvsspT9W0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d7:c1:03:17:f0:5a:7f:a3:cb:e8:77:e4:64:9a:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e
Validity
Not Before: Oct 19 05:01:07 2025 GMT
Not After : Oct 20 05:01:07 2025 GMT
Subject: CN=fa6d381f8e5fc5cf7bc6fe2701a9a6b8b326454c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ed:f8:7c:cf:9a:97:b1:ea:f0:18:78:78:9e:
7f:c0:25:81:7c:e1:4f:8c:92:e8:d2:5b:ef:62:f3:
a8:9b:66:68:aa:65:90:85:a3:c8:08:64:1f:71:aa:
97:c7:e7:32:e4:b1:cf:32:6d:04:df:db:6c:64:4c:
c6:75:bd:3b:f7:94:a0:97:f7:35:cb:e8:bf:9a:2b:
3c:9c:25:57:0f:8b:49:ff:2e:0d:c4:fa:04:f9:20:
fa:3a:36:d6:b4:5e:e8:10:a9:d7:99:d5:7c:7c:b9:
04:78:1c:92:42:aa:e1:20:47:ab:c4:59:29:6e:a6:
2f:d2:60:2d:a8:e4:bb:ef:c6:9f:aa:83:43:1a:69:
0c:10:38:a9:4b:2a:8d:48:2f:34:a6:76:bd:f2:99:
33:61:6e:48:c5:17:27:ed:35:a2:57:6c:7b:09:74:
c6:56:1f:0a:0a:08:11:6f:63:0a:86:a0:31:86:fa:
81:e5:14:6a:f5:8a:54:a2:17:4f:8d:90:bf:38:a6:
f9:7f:e7:f0:5c:4b:fe:93:76:de:22:bd:82:80:d2:
be:3a:78:a0:83:1c:86:9e:a5:12:9e:09:af:f5:11:
4c:4c:27:13:e0:6d:d4:e2:5b:4f:0b:2a:8f:25:40:
c2:8c:d8:78:f9:ae:fc:97:72:ca:ef:c2:35:32:e1:
2a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:6D:38:1F:8E:5F:C5:CF:7B:C6:FE:27:01:A9:A6:B8:B3:26:45:4C
X509v3 Authority Key Identifier:
keyid:62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:1b:68:22:7e:8a:9a:f5:a3:2c:5f:86:95:5a:a1:6f:f9:af:
37:21:61:90:4e:0c:66:6e:b8:51:81:64:55:4f:34:a1:0d:16:
f3:27:e4:e8:21:90:d9:44:d7:89:bc:1a:03:11:4d:eb:4a:f8:
27:7c:6d:7d:57:a5:3e:40:1d:ac:08:6f:08:83:12:9d:29:7a:
20:14:3e:ce:07:b0:b3:3c:1a:e9:58:b7:a9:81:97:6c:8a:55:
99:69:a2:7b:57:e2:ea:25:e0:b8:65:ab:60:c8:90:6d:b4:4b:
61:bb:b7:8c:13:f5:43:f5:d2:9a:ff:65:d2:4a:4b:ed:a6:09:
42:d9:85:1a:9a:26:cd:cc:49:13:d7:59:38:64:74:37:5c:e7:
d6:ac:d7:5b:68:5a:b9:64:4f:1e:27:7f:94:5d:48:ae:95:8c:
56:49:02:16:0f:ec:f9:d4:11:ab:05:6c:50:2f:df:8b:3e:a1:
95:d7:90:7a:99:de:19:9e:ed:e2:ab:2c:20:81:52:a3:6b:f1:
23:81:43:be:7e:6c:f5:2b:b5:fb:e6:87:0c:81:57:70:1a:9e:
1b:51:aa:97:79:19:57:3e:4d:a5:fb:df:c6:8c:e2:a8:89:58:
2a:bc:2b:63:e7:99:79:a6:39:33:27:2e:8a:5d:ee:5e:2d:0a:
17:b5:cf:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn618EDF/Baf6PL6HfkZJqkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyM2FiMTgyMGNlNDhjNTc5ZGE0MGM2NmQ4NTI2NWYxYzJj
ZmNiNGUwHhcNMjUxMDE5MDUwMTA3WhcNMjUxMDIwMDUwMTA3WjAzMTEwLwYDVQQD
EyhmYTZkMzgxZjhlNWZjNWNmN2JjNmZlMjcwMWE5YTZiOGIzMjY0NTRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvu34fM+al7Hq8Bh4eJ5/wCWBfOFP
jJLo0lvvYvOom2ZoqmWQhaPICGQfcaqXx+cy5LHPMm0E39tsZEzGdb0795Sgl/c1
y+i/mis8nCVXD4tJ/y4NxPoE+SD6OjbWtF7oEKnXmdV8fLkEeBySQqrhIEerxFkp
bqYv0mAtqOS778afqoNDGmkMEDipSyqNSC80pna98pkzYW5IxRcn7TWiV2x7CXTG
Vh8KCggRb2MKhqAxhvqB5RRq9YpUohdPjZC/OKb5f+fwXEv+k3beIr2CgNK+Onig
gxyGnqUSngmv9RFMTCcT4G3U4ltPCyqPJUDCjNh4+a78l3LK78I1MuEq1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPptOB+OX8XPe8b+JwGpprizJkVMMB8GA1UdIwQY
MBaAFGI6sYIM5IxXnaQMZthSZfHCz8tOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWpxeGdnemtqRmVkcEF4bTJGSmw4Y0xQeTA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9iNGM5ZDUtZTI3Zi00NGJmLWJhNDIt
NmMzZDExZDQwZDc4LzEvWWpxeGdnemtqRmVkcEF4bTJGSmw4Y0xQeTA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9iNGM5ZDUtZTI3Zi00NGJmLWJhNDItNmMzZDExZDQwZDc4
LzEvWWpxeGdnemtqRmVkcEF4bTJGSmw4Y0xQeTA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQRtoIn6K
mvWjLF+GlVqhb/mvNyFhkE4MZm64UYFkVU80oQ0W8yfk6CGQ2UTXibwaAxFN60r4
J3xtfVelPkAdrAhvCIMSnSl6IBQ+zgewszwa6Vi3qYGXbIpVmWmie1fi6iXguGWr
YMiQbbRLYbu3jBP1Q/XSmv9l0kpL7aYJQtmFGpomzcxJE9dZOGR0N1zn1qzXW2ha
uWRPHid/lF1IrpWMVkkCFg/s+dQRqwVsUC/fiz6hldeQepneGZ7t4qssIIFSo2vx
I4FDvn5s9Su1++aHDIFXcBqeG1Gql3kZVz5NpfvfxoziqIlYKrwrY+eZeaY5Mycu
il3uXi0KF7XPQA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:11 2025 by rpki-client