Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
File: ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft (raw, json)
Hash identifier: ybtXeNrJ8aI6srFzYHfMFVea2rnugFsLDiOh4FtcSkA=
Subject key identifier: A9:11:D4:D3:E8:AB:26:85:80:85:59:B6:95:A2:EA:96:2F:4C:88:E0
Authority key identifier: CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
Certificate issuer: /CN=ca5154158905d1d44c4588dfd25802f324a93d61
Certificate serial: 0199FCFD436ACC82EF0FD29D3C519ABD74A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
Manifest number: 0539
Signing time: Sun 19 Oct 2025 15:01:20 +0000
Manifest this update: Sun 19 Oct 2025 15:01:20 +0000
Manifest next update: Mon 20 Oct 2025 15:01:20 +0000
Files and hashes: 1: AVYBUHDR8cllHf1Clp-tHJ3mnJM.roa (hash: AnG8BWUfPxV5o1EC1SevW/uoDYd+aQAPwe1f/26+nZM=)
2: ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl (hash: VTgdKuM+Li7Jls5Kyxk6/1ssOctjA+ua0iwhuwcR6vc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:43:6a:cc:82:ef:0f:d2:9d:3c:51:9a:bd:74:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5154158905d1d44c4588dfd25802f324a93d61
Validity
Not Before: Oct 19 15:01:20 2025 GMT
Not After : Oct 20 15:01:20 2025 GMT
Subject: CN=a911d4d3e8ab2685808559b695a2ea962f4c88e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:60:15:44:57:c1:2b:8a:34:b9:b4:95:59:e5:
94:a5:ba:4d:dd:d6:c1:55:66:5f:07:65:4d:56:f9:
93:ca:13:1b:28:97:65:08:0e:ef:28:ce:87:91:f3:
96:3b:40:e8:89:87:8b:a3:bb:bb:0d:45:af:80:bf:
72:a7:94:55:ff:c3:a7:45:01:4c:68:90:77:21:d5:
42:a8:25:e1:c3:da:23:51:e2:47:28:72:e6:3a:9d:
e6:d1:65:5d:62:6d:32:59:38:25:d1:80:94:21:3d:
bf:a9:37:bf:b7:29:9d:c7:99:c5:af:5f:a1:6f:66:
a2:fa:c2:24:1c:cd:73:c1:12:cc:a8:8e:24:91:e2:
ac:ac:86:f8:b6:d0:e3:f3:6b:e2:32:74:a6:b4:8b:
d0:e9:7f:87:fa:4b:84:a8:ee:ec:98:c7:a2:f3:4a:
40:e4:10:fc:aa:38:4f:62:cc:e3:a2:e0:c3:8b:72:
e1:56:c6:cf:6a:73:c4:4d:23:0f:b3:a3:54:85:10:
c0:6a:56:74:10:cf:00:01:d2:d3:09:f3:1d:d5:26:
c8:82:9b:af:8a:39:64:db:a1:a2:e4:d9:4e:ff:c8:
af:2b:49:cc:54:11:33:71:87:68:0f:68:d9:92:c2:
36:98:10:1b:ae:dc:8b:73:36:8e:27:51:ef:46:a1:
d4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:11:D4:D3:E8:AB:26:85:80:85:59:B6:95:A2:EA:96:2F:4C:88:E0
X509v3 Authority Key Identifier:
keyid:CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:36:af:30:71:19:59:b6:bf:f9:cc:84:ec:13:4f:44:3b:3f:
59:e2:a8:c9:88:51:e5:d7:f8:26:2e:99:b6:f9:68:00:11:bb:
0f:18:c9:90:6e:87:92:74:73:47:1d:33:75:bb:7c:80:cf:ff:
d0:9b:28:36:4f:1c:94:cf:e9:0f:79:e6:21:7f:9c:5a:0e:6e:
af:ed:8a:31:c1:d5:61:c4:be:ea:78:19:42:c7:8a:aa:20:8d:
1e:59:0d:ed:1e:d0:bc:13:6d:d3:c1:b9:ef:29:c9:3e:e9:bf:
70:6a:b0:6a:f4:63:5c:b6:f3:58:7b:5e:2f:20:5a:0e:6b:04:
e0:da:a7:39:c8:9a:f9:08:f3:a1:b2:a5:14:6a:c2:50:54:45:
90:15:f1:c3:6b:cc:36:37:d2:be:e7:f1:e6:5e:10:ee:a9:38:
e4:fc:cc:ca:96:dc:61:d0:c3:67:52:ab:84:ca:8a:2f:08:e5:
f3:e6:cb:93:6e:5b:ca:14:76:d8:77:94:1b:89:65:3f:58:57:
cd:2f:cc:ce:c5:4a:ca:b1:90:38:15:cf:70:bb:0b:d4:13:cd:
4a:af:b7:c0:01:9a:f2:5f:6a:39:90:ef:7c:d7:d1:22:31:9c:
d2:73:95:2b:d8:c9:a9:b5:89:2b:f8:8a:37:99:fe:91:b6:f0:
ce:20:cd:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8/UNqzILvD9KdPFGavXShMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNTE1NDE1ODkwNWQxZDQ0YzQ1ODhkZmQyNTgwMmYzMjRh
OTNkNjEwHhcNMjUxMDE5MTUwMTIwWhcNMjUxMDIwMTUwMTIwWjAzMTEwLwYDVQQD
EyhhOTExZDRkM2U4YWIyNjg1ODA4NTU5YjY5NWEyZWE5NjJmNGM4OGUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGAVRFfBK4o0ubSVWeWUpbpN3dbB
VWZfB2VNVvmTyhMbKJdlCA7vKM6HkfOWO0DoiYeLo7u7DUWvgL9yp5RV/8OnRQFM
aJB3IdVCqCXhw9ojUeJHKHLmOp3m0WVdYm0yWTgl0YCUIT2/qTe/tymdx5nFr1+h
b2ai+sIkHM1zwRLMqI4kkeKsrIb4ttDj82viMnSmtIvQ6X+H+kuEqO7smMei80pA
5BD8qjhPYszjouDDi3LhVsbPanPETSMPs6NUhRDAalZ0EM8AAdLTCfMd1SbIgpuv
ijlk26Gi5NlO/8ivK0nMVBEzcYdoD2jZksI2mBAbrtyLczaOJ1HvRqHUVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKkR1NPoqyaFgIVZtpWi6pYvTIjgMB8GA1UdIwQY
MBaAFMpRVBWJBdHUTEWI39JYAvMkqT1hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWxGVUZZa0YwZFJNUllqZjBsZ0M4eVNwUFdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9mNTU4YWEtNTVlZi00NTBmLThiOTct
MTAwOTBkMWU3ZDk0LzEveWxGVUZZa0YwZFJNUllqZjBsZ0M4eVNwUFdFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi9mNTU4YWEtNTVlZi00NTBmLThiOTctMTAwOTBkMWU3ZDk0
LzEveWxGVUZZa0YwZFJNUllqZjBsZ0M4eVNwUFdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnTavMHEZ
Wba/+cyE7BNPRDs/WeKoyYhR5df4Ji6ZtvloABG7DxjJkG6HknRzRx0zdbt8gM//
0JsoNk8clM/pD3nmIX+cWg5ur+2KMcHVYcS+6ngZQseKqiCNHlkN7R7QvBNt08G5
7ynJPum/cGqwavRjXLbzWHteLyBaDmsE4NqnOcia+QjzobKlFGrCUFRFkBXxw2vM
NjfSvufx5l4Q7qk45PzMypbcYdDDZ1KrhMqKLwjl8+bLk25byhR22HeUG4llP1hX
zS/MzsVKyrGQOBXPcLsL1BPNSq+3wAGa8l9qOZDvfNfRIjGc0nOVK9jJqbWJK/iK
N5n+kbbwziDNLg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 00:01:55 2025 by rpki-client