Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
File: YEBzL9vKpSkA2yRiB1v07xUVlpU.mft (raw, json)
Hash identifier: 4eOqAyZAOX8GgETXWrJRE8rDFFLkSTJ+Y1nJZ5UXD0Y=
Subject key identifier: 7E:0B:F9:D8:EB:48:13:E5:12:40:72:95:17:C1:58:21:3D:FD:E5:2B
Authority key identifier: 60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
Certificate issuer: /CN=6040732fdbcaa52900db2462075bf4ef15159695
Certificate serial: 0199FB7CAFAB7FD09C6367A57C379AE09330
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
Manifest number: 0592
Signing time: Sun 19 Oct 2025 08:01:16 +0000
Manifest this update: Sun 19 Oct 2025 08:01:16 +0000
Manifest next update: Mon 20 Oct 2025 08:01:16 +0000
Files and hashes: 1: 2zI93eWS4MAq1q_HzWCmHMK0vvc.roa (hash: OPrS0FrS6pSekQT7FXidaqihz4eIxPAHQ00wl3WWNU8=)
2: YEBzL9vKpSkA2yRiB1v07xUVlpU.crl (hash: +IN7vC/oOzPYfEt8ISpRHwN7xO2SC/WYds3xTqG8YFc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:af:ab:7f:d0:9c:63:67:a5:7c:37:9a:e0:93:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6040732fdbcaa52900db2462075bf4ef15159695
Validity
Not Before: Oct 19 08:01:16 2025 GMT
Not After : Oct 20 08:01:16 2025 GMT
Subject: CN=7e0bf9d8eb4813e51240729517c158213dfde52b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3c:90:b9:dd:26:86:52:7f:95:68:5b:bf:4f:
28:d1:68:09:67:66:61:09:0e:46:84:dd:f1:a8:24:
cc:c8:7c:2a:5b:7c:4e:3e:e6:fb:4c:7b:a2:70:d3:
18:86:da:c5:17:21:a7:9d:4e:4a:49:86:ed:8d:e0:
46:22:a5:95:60:be:d1:77:97:f6:9e:84:33:35:01:
ec:e6:da:35:d7:e6:eb:6f:5e:3c:f9:6a:45:6b:dd:
5e:4f:5a:e6:e7:2b:60:c8:49:c1:93:7f:6b:89:56:
4e:9f:f4:58:2c:f1:bc:e4:2c:fd:95:0a:75:32:41:
49:d1:b7:af:2f:de:d2:44:74:a4:56:5b:80:2e:6f:
9f:e1:aa:de:1d:f6:e5:0a:59:e1:36:7d:dc:e2:6b:
b9:1f:30:90:40:62:c8:b6:6e:af:82:b6:76:4b:8c:
a2:d3:1c:ec:6a:c5:f9:00:ed:51:57:61:f1:72:c5:
87:f4:c3:5e:7e:97:ab:2a:1f:73:95:e9:bc:f0:4a:
70:53:18:70:97:1f:f2:ed:97:cf:15:11:05:78:23:
ae:f4:da:6c:fe:af:d0:51:49:de:8b:66:83:e7:08:
85:e8:15:b6:a2:f9:9c:1a:76:1b:76:55:0b:6a:e1:
b8:1a:a7:f6:75:70:1f:2f:b9:67:88:bb:09:ad:04:
bc:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:0B:F9:D8:EB:48:13:E5:12:40:72:95:17:C1:58:21:3D:FD:E5:2B
X509v3 Authority Key Identifier:
keyid:60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:78:51:ed:b1:f8:2d:1a:06:22:6c:96:ff:d3:5c:72:7d:17:
f7:0e:0b:4b:4c:1e:50:01:54:95:0b:8f:78:24:3e:ff:22:e8:
ab:93:64:44:27:6c:af:c5:7d:2e:07:32:99:bb:45:f8:34:a3:
4d:fe:bc:57:1f:7e:e9:fd:7e:e9:a2:fa:09:93:b8:44:39:11:
ea:14:66:fd:d3:a5:e9:97:3d:4a:d8:1b:e7:64:70:92:fa:12:
e9:03:33:e3:f8:09:bf:5b:85:d2:3d:cb:29:2b:eb:1d:a3:e1:
c5:ba:6e:a2:5e:a3:fb:28:cc:1e:37:c9:62:5f:e8:c6:65:1c:
7e:8e:7f:e5:9a:72:db:40:1f:2f:05:11:d7:18:61:5a:85:fd:
0d:ac:76:35:66:d4:b5:a5:4f:1e:29:29:85:03:9b:e4:68:10:
22:a3:18:45:45:6d:9e:11:cb:50:0b:c2:b8:c3:dc:8c:db:15:
87:98:5a:34:60:7e:f9:6e:b7:6c:85:56:8e:7c:e2:22:63:a4:
f3:72:50:9c:c0:d3:f9:d9:34:5e:b8:36:0c:c9:73:f2:b0:12:
f0:09:12:ad:a6:9e:ee:3f:89:33:a4:a2:e1:11:2b:e4:47:68:
4a:8f:df:fd:e5:21:47:c2:40:cd:d1:64:fd:e0:c7:89:94:ca:
26:ba:0d:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7fK+rf9CcY2elfDea4JMwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNDA3MzJmZGJjYWE1MjkwMGRiMjQ2MjA3NWJmNGVmMTUx
NTk2OTUwHhcNMjUxMDE5MDgwMTE2WhcNMjUxMDIwMDgwMTE2WjAzMTEwLwYDVQQD
Eyg3ZTBiZjlkOGViNDgxM2U1MTI0MDcyOTUxN2MxNTgyMTNkZmRlNTJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqjyQud0mhlJ/lWhbv08o0WgJZ2Zh
CQ5GhN3xqCTMyHwqW3xOPub7THuicNMYhtrFFyGnnU5KSYbtjeBGIqWVYL7Rd5f2
noQzNQHs5to11+brb148+WpFa91eT1rm5ytgyEnBk39riVZOn/RYLPG85Cz9lQp1
MkFJ0bevL97SRHSkVluALm+f4areHfblClnhNn3c4mu5HzCQQGLItm6vgrZ2S4yi
0xzsasX5AO1RV2HxcsWH9MNefperKh9zlem88EpwUxhwlx/y7ZfPFREFeCOu9Nps
/q/QUUnei2aD5wiF6BW2ovmcGnYbdlULauG4Gqf2dXAfL7lniLsJrQS8RwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH4L+djrSBPlEkBylRfBWCE9/eUrMB8GA1UdIwQY
MBaAFGBAcy/byqUpANskYgdb9O8VFZaVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUVCekw5dktwU2tBMnlSaUIxdjA3eFVWbHBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy81Njc2YTMtOWMzOS00ZGIwLTk1MWUt
ZDJiNjk4MmJjNDg0LzEvWUVCekw5dktwU2tBMnlSaUIxdjA3eFVWbHBVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy81Njc2YTMtOWMzOS00ZGIwLTk1MWUtZDJiNjk4MmJjNDg0
LzEvWUVCekw5dktwU2tBMnlSaUIxdjA3eFVWbHBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANnhR7bH4
LRoGImyW/9Nccn0X9w4LS0weUAFUlQuPeCQ+/yLoq5NkRCdsr8V9LgcymbtF+DSj
Tf68Vx9+6f1+6aL6CZO4RDkR6hRm/dOl6Zc9Stgb52RwkvoS6QMz4/gJv1uF0j3L
KSvrHaPhxbpuol6j+yjMHjfJYl/oxmUcfo5/5Zpy20AfLwUR1xhhWoX9Dax2NWbU
taVPHikphQOb5GgQIqMYRUVtnhHLUAvCuMPcjNsVh5haNGB++W63bIVWjnziImOk
83JQnMDT+dk0Xrg2DMlz8rAS8AkSraae7j+JM6Si4REr5EdoSo/f/eUhR8JAzdFk
/eDHiZTKJroNqg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:21 2025 by rpki-client