
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
File: yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft (raw, json)
Hash identifier: A2d77JP6u4U301vF9gMbrEKD6AJjLHLXTVEk0Bed8sY=
Subject key identifier: BE:16:3E:A2:85:FC:5B:69:75:71:0C:10:34:71:C8:36:FB:F6:86:14
Authority key identifier: C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
Certificate issuer: /CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Certificate serial: 0199FBEB0A9EBBD68B27304C9C9D26BF0810
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 10:01:48 +0000
Manifest this update: Sun 19 Oct 2025 10:01:48 +0000
Manifest next update: Mon 20 Oct 2025 10:01:48 +0000
Files and hashes: 1: fewPOq5Sy5alJvzpYZYieD6pmV8.roa (hash: nQVFjlDzgmj3SLHG29wBX3sEI4Pk0MW5juplwGFMB6g=)
2: yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl (hash: 2D8DyPhar5g7R6ZucynN5osQybYi36YsSrpewSrpo68=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:0a:9e:bb:d6:8b:27:30:4c:9c:9d:26:bf:08:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Validity
Not Before: Oct 19 10:01:48 2025 GMT
Not After : Oct 20 10:01:48 2025 GMT
Subject: CN=be163ea285fc5b6975710c103471c836fbf68614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:56:0b:36:b0:d3:53:7d:42:cd:ad:c1:d1:3b:
88:aa:91:d3:c1:71:96:3d:1c:22:07:43:72:06:1a:
6b:bd:83:0f:28:82:af:0b:91:71:ec:08:40:48:01:
d9:f1:60:b6:cf:5a:00:5e:d5:00:71:e0:06:cb:8b:
3c:0f:d6:53:05:c9:b8:36:00:a2:9f:38:a9:6a:29:
e5:16:7e:a2:fe:bb:7c:7a:50:31:87:91:c9:ab:29:
79:66:8b:b4:aa:80:be:99:83:c4:96:c2:56:7e:4b:
4d:18:79:75:94:3d:b3:ba:c1:5c:97:29:78:34:ee:
07:9c:75:bd:48:c3:06:b3:85:61:42:a7:e5:43:17:
54:95:3c:14:cd:ea:47:5f:1c:be:ce:42:4a:29:a7:
9e:5b:81:8e:c6:6c:78:1a:9c:27:f2:07:f9:1b:2b:
2a:30:69:d1:f2:0c:05:f5:cc:40:a6:29:c6:2f:6e:
2b:e4:0d:84:2a:dd:70:44:5e:a8:51:f7:a5:67:65:
f4:b4:ee:40:f4:c0:73:9a:9e:55:3d:79:a0:02:87:
07:8f:e0:0c:b0:df:66:f0:e8:68:ba:5a:0c:54:1e:
ca:f1:33:a8:dc:c7:1f:03:83:98:2c:b1:e5:30:9e:
fc:b6:18:1b:6e:94:92:fa:0e:50:85:6d:91:87:86:
f8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:16:3E:A2:85:FC:5B:69:75:71:0C:10:34:71:C8:36:FB:F6:86:14
X509v3 Authority Key Identifier:
keyid:C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:6a:21:16:27:4c:7b:02:e3:f4:a4:49:3c:a9:f5:18:83:b2:
64:72:86:ad:be:8d:e0:31:97:3a:d4:5c:ae:3c:98:33:28:18:
4a:40:72:db:b3:d5:9d:e5:e2:5d:c9:b6:2f:e4:cb:a9:2c:80:
9f:fd:18:30:a3:ad:e1:73:c6:d6:5b:48:83:5a:24:ed:da:e5:
57:dc:67:57:8e:35:50:cb:b6:12:38:54:d1:d0:d6:7b:88:93:
e5:32:2a:a8:30:85:f2:03:21:15:65:55:ae:55:d1:a0:e8:2a:
ec:ec:fd:2b:ac:83:25:5f:d4:14:7a:50:3b:80:2d:80:e6:ba:
7f:83:f0:3a:ba:32:43:f6:5e:04:a0:29:25:98:93:19:f1:16:
35:60:f4:de:f6:97:ad:a7:b0:85:2a:1b:86:90:fd:86:2e:af:
2e:9b:96:88:22:af:60:c6:0a:df:ce:88:a6:4d:bd:f9:0d:62:
1d:56:d0:80:d8:6b:f4:d5:2c:a3:dc:38:49:2e:25:93:30:4c:
7d:d1:b5:22:3e:75:17:89:19:60:45:e5:a0:9f:66:c4:b8:2e:
df:94:f7:6c:95:ee:e7:04:f0:00:25:50:d1:19:b2:03:aa:ea:
92:d2:fc:c7:f3:78:ba:27:60:5b:3f:f0:cf:6c:c2:db:1e:8a:
fa:1e:67:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76wqeu9aLJzBMnJ0mvwgQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4NWY1MTBjNzJjZTBiNzljMjg5OWIzNTg0NWZmZTM2NzA2
OTNmMDUwHhcNMjUxMDE5MTAwMTQ4WhcNMjUxMDIwMTAwMTQ4WjAzMTEwLwYDVQQD
EyhiZTE2M2VhMjg1ZmM1YjY5NzU3MTBjMTAzNDcxYzgzNmZiZjY4NjE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh1YLNrDTU31Cza3B0TuIqpHTwXGW
PRwiB0NyBhprvYMPKIKvC5Fx7AhASAHZ8WC2z1oAXtUAceAGy4s8D9ZTBcm4NgCi
nzipainlFn6i/rt8elAxh5HJqyl5Zou0qoC+mYPElsJWfktNGHl1lD2zusFclyl4
NO4HnHW9SMMGs4VhQqflQxdUlTwUzepHXxy+zkJKKaeeW4GOxmx4Gpwn8gf5Gysq
MGnR8gwF9cxApinGL24r5A2EKt1wRF6oUfelZ2X0tO5A9MBzmp5VPXmgAocHj+AM
sN9m8OhouloMVB7K8TOo3McfA4OYLLHlMJ78thgbbpSS+g5QhW2Rh4b4sQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL4WPqKF/FtpdXEMEDRxyDb79oYUMB8GA1UdIwQY
MBaAFMhfUQxyzgt5wombNYRf/jZwaT8FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUY5UkRITE9DM25DaVpzMWhGXy1ObkJwUHdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9hMmNmYjAtMGU2OC00ZTQ3LTg4ODEt
YjhjOWEyYTlkYTQ2LzEveUY5UkRITE9DM25DaVpzMWhGXy1ObkJwUHdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9hMmNmYjAtMGU2OC00ZTQ3LTg4ODEtYjhjOWEyYTlkYTQ2
LzEveUY5UkRITE9DM25DaVpzMWhGXy1ObkJwUHdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhWohFidM
ewLj9KRJPKn1GIOyZHKGrb6N4DGXOtRcrjyYMygYSkBy27PVneXiXcm2L+TLqSyA
n/0YMKOt4XPG1ltIg1ok7drlV9xnV441UMu2EjhU0dDWe4iT5TIqqDCF8gMhFWVV
rlXRoOgq7Oz9K6yDJV/UFHpQO4AtgOa6f4PwOroyQ/ZeBKApJZiTGfEWNWD03vaX
raewhSobhpD9hi6vLpuWiCKvYMYK386Ipk29+Q1iHVbQgNhr9NUso9w4SS4lkzBM
fdG1Ij51F4kZYEXloJ9mxLgu35T3bJXu5wTwACVQ0RmyA6rqktL8x/N4uidgWz/w
z2zC2x6K+h5n6Q==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:18:12 2025 by rpki-client