Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
File: yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft (raw, json)
Hash identifier: 2lOeqiVzPgdKjGY1H9dTXW8ng0kPy6L4IDQqfGs5G2g=
Subject key identifier: 87:B7:1C:9E:45:69:BB:96:24:1D:DD:24:52:3A:0E:75:0B:B3:91:25
Authority key identifier: C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
Certificate issuer: /CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Certificate serial: 0198D6602834516FEFFFA3DFDD100A1E2875
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 10:01:22 +0000
Manifest this update: Sat 23 Aug 2025 10:01:22 +0000
Manifest next update: Sun 24 Aug 2025 10:01:22 +0000
Files and hashes: 1: fewPOq5Sy5alJvzpYZYieD6pmV8.roa (hash: nQVFjlDzgmj3SLHG29wBX3sEI4Pk0MW5juplwGFMB6g=)
2: yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl (hash: /nnJmmEQ9/TdxrAhGHBv2EJUznr5wMej5wWvtOd2caI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:28:34:51:6f:ef:ff:a3:df:dd:10:0a:1e:28:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Validity
Not Before: Aug 23 10:01:22 2025 GMT
Not After : Aug 24 10:01:22 2025 GMT
Subject: CN=87b71c9e4569bb96241ddd24523a0e750bb39125
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ef:0f:4e:bf:94:84:b7:c2:7e:a2:bf:f7:7b:
a3:a9:7f:ea:c9:42:65:b1:91:d6:81:b8:2a:39:6b:
ec:88:a3:41:5c:b8:06:7f:1b:b6:6b:80:96:13:d5:
d6:f9:e9:51:45:0c:50:5e:6d:26:5d:ec:11:96:3d:
0d:15:7e:75:3d:76:42:22:60:a8:29:73:90:f3:98:
d5:6f:0d:12:1c:ec:d6:db:e6:2e:ce:f9:c1:6d:ab:
2d:ab:26:d7:22:50:74:d0:ac:5f:f8:00:5d:b3:2e:
cd:7c:38:1d:2a:6c:2d:87:10:dc:e2:33:e9:d1:b9:
7e:3e:81:20:d5:96:76:c2:1d:4e:4b:1d:8b:f2:63:
87:52:b6:4f:57:26:65:60:bf:8b:e9:9c:16:6e:93:
20:aa:bd:97:79:6f:9b:77:77:98:a8:50:4e:2a:3c:
52:44:70:8d:2d:48:d5:71:4c:2b:1f:ab:94:33:be:
ac:e4:f6:37:c0:f4:e5:b2:04:b8:bd:af:8b:35:3a:
37:ec:7c:84:7a:1e:ce:8c:26:4e:97:94:40:9f:df:
f0:d8:01:6a:a9:9e:d5:99:33:a2:0d:1d:61:4c:a5:
e6:ec:4b:f8:42:4c:92:a5:ce:e2:b8:f6:95:74:d0:
f1:52:9c:d2:a6:b6:43:0d:11:06:45:39:c6:5c:46:
74:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B7:1C:9E:45:69:BB:96:24:1D:DD:24:52:3A:0E:75:0B:B3:91:25
X509v3 Authority Key Identifier:
keyid:C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:18:21:4b:e8:ad:e5:03:39:da:67:3e:5c:3f:10:ef:bb:51:
f6:9e:cd:33:6a:8f:bf:cd:49:f0:95:49:43:b4:bd:49:58:e1:
0a:af:03:db:26:11:8a:50:ef:02:81:64:e4:f8:ef:47:dc:e9:
09:27:ff:aa:74:86:32:91:37:a9:2c:6a:16:10:f0:57:0c:26:
dd:0a:46:39:59:8c:e0:4e:85:d3:d9:7c:e5:aa:29:3f:67:5f:
9f:8a:6b:04:59:bf:2e:98:95:25:a5:72:8a:e1:74:31:a0:3a:
78:e8:4d:57:14:4a:c1:b0:be:75:21:3c:69:02:de:bd:00:c6:
50:3c:44:18:c6:77:bf:65:63:88:30:64:68:be:08:95:58:cf:
17:f4:45:00:86:a3:ee:08:87:92:af:04:22:34:05:c0:d5:60:
da:b2:54:6a:47:2e:2c:fb:73:1f:b0:7d:f8:a2:df:49:e5:8b:
6c:3e:ae:0c:15:50:aa:35:d9:c8:25:f7:c6:bf:a3:f4:47:63:
66:3b:1e:90:8d:c2:bf:d4:d9:35:41:2e:70:c1:45:d2:1e:91:
0c:c8:fe:e7:29:b4:b6:63:f9:13:96:ba:18:1e:35:ba:98:e4:
56:cd:47:d7:95:44:07:75:c2:47:4d:85:4d:77:02:81:70:55:
e0:10:09:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYCg0UW/v/6Pf3RAKHih1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4NWY1MTBjNzJjZTBiNzljMjg5OWIzNTg0NWZmZTM2NzA2
OTNmMDUwHhcNMjUwODIzMTAwMTIyWhcNMjUwODI0MTAwMTIyWjAzMTEwLwYDVQQD
Eyg4N2I3MWM5ZTQ1NjliYjk2MjQxZGRkMjQ1MjNhMGU3NTBiYjM5MTI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAve8PTr+UhLfCfqK/93ujqX/qyUJl
sZHWgbgqOWvsiKNBXLgGfxu2a4CWE9XW+elRRQxQXm0mXewRlj0NFX51PXZCImCo
KXOQ85jVbw0SHOzW2+YuzvnBbastqybXIlB00Kxf+ABdsy7NfDgdKmwthxDc4jPp
0bl+PoEg1ZZ2wh1OSx2L8mOHUrZPVyZlYL+L6ZwWbpMgqr2XeW+bd3eYqFBOKjxS
RHCNLUjVcUwrH6uUM76s5PY3wPTlsgS4va+LNTo37HyEeh7OjCZOl5RAn9/w2AFq
qZ7VmTOiDR1hTKXm7Ev4QkySpc7iuPaVdNDxUpzSprZDDREGRTnGXEZ0GQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIe3HJ5FabuWJB3dJFI6DnULs5ElMB8GA1UdIwQY
MBaAFMhfUQxyzgt5wombNYRf/jZwaT8FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUY5UkRITE9DM25DaVpzMWhGXy1ObkJwUHdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9hMmNmYjAtMGU2OC00ZTQ3LTg4ODEt
YjhjOWEyYTlkYTQ2LzEveUY5UkRITE9DM25DaVpzMWhGXy1ObkJwUHdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9hMmNmYjAtMGU2OC00ZTQ3LTg4ODEtYjhjOWEyYTlkYTQ2
LzEveUY5UkRITE9DM25DaVpzMWhGXy1ObkJwUHdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgRghS+it
5QM52mc+XD8Q77tR9p7NM2qPv81J8JVJQ7S9SVjhCq8D2yYRilDvAoFk5PjvR9zp
CSf/qnSGMpE3qSxqFhDwVwwm3QpGOVmM4E6F09l85aopP2dfn4prBFm/LpiVJaVy
iuF0MaA6eOhNVxRKwbC+dSE8aQLevQDGUDxEGMZ3v2VjiDBkaL4IlVjPF/RFAIaj
7giHkq8EIjQFwNVg2rJUakcuLPtzH7B9+KLfSeWLbD6uDBVQqjXZyCX3xr+j9Edj
ZjsekI3Cv9TZNUEucMFF0h6RDMj+5ym0tmP5E5a6GB41upjkVs1H15VEB3XCR02F
TXcCgXBV4BAJYA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:10:11 2025 by rpki-client