Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/dYYhYjrGyrj2veVSbnopMdYm_ow.mft
File: dYYhYjrGyrj2veVSbnopMdYm_ow.mft (raw, json)
Hash identifier: h68u3Xdak9KFoybGtis9jpBaNle93oOP0BDQ0QNFqyE=
Subject key identifier: 1A:D1:C1:B3:C7:A4:17:F0:8C:20:ED:E9:8E:5E:AC:A6:92:20:12:2D
Authority key identifier: 75:86:21:62:3A:C6:CA:B8:F6:BD:E5:52:6E:7A:29:31:D6:26:FE:8C
Certificate issuer: /CN=758621623ac6cab8f6bde5526e7a2931d626fe8c
Certificate serial: 0199FD3403A5DDA4F626265B6AA72DB82350
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dYYhYjrGyrj2veVSbnopMdYm_ow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/dYYhYjrGyrj2veVSbnopMdYm_ow.mft
Manifest number: 1676
Signing time: Sun 19 Oct 2025 16:01:08 +0000
Manifest this update: Sun 19 Oct 2025 16:01:08 +0000
Manifest next update: Mon 20 Oct 2025 16:01:08 +0000
Files and hashes: 1: dYYhYjrGyrj2veVSbnopMdYm_ow.crl (hash: mcDwHhUHOLwxoGx6VCujFQ/ckDepXGPYlyK0/YjMuKA=)
2: hD0ar_tHc7p3YZ1QwpI7BJcBiok.roa (hash: wT7KNqysLUSBZ2MK1PEYcvNRcVleye9t9OdQ04Vtz2U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/dYYhYjrGyrj2veVSbnopMdYm_ow.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/dYYhYjrGyrj2veVSbnopMdYm_ow.mft
rsync://rpki.ripe.net/repository/DEFAULT/dYYhYjrGyrj2veVSbnopMdYm_ow.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:03:a5:dd:a4:f6:26:26:5b:6a:a7:2d:b8:23:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=758621623ac6cab8f6bde5526e7a2931d626fe8c
Validity
Not Before: Oct 19 16:01:08 2025 GMT
Not After : Oct 20 16:01:08 2025 GMT
Subject: CN=1ad1c1b3c7a417f08c20ede98e5eaca69220122d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5a:0b:bd:6f:47:d4:b4:e6:b1:62:62:c4:12:
a8:e7:3c:97:1b:9d:0f:a0:ae:e3:65:db:46:6a:8f:
a2:28:17:79:bb:02:a3:ab:3b:2a:e7:33:d0:e0:27:
99:5d:eb:d1:b4:a8:af:b8:aa:b5:41:63:23:74:39:
83:51:be:c6:c4:0b:b0:5e:0e:27:ab:d8:74:54:4d:
f9:00:e9:65:22:6c:b6:5f:7b:8d:a4:d3:7e:5f:93:
05:0e:05:67:e0:02:02:41:80:fb:bf:74:28:58:e4:
f9:24:cf:17:fb:a3:93:ec:9e:8c:1b:53:1f:e1:e3:
63:fb:4d:cf:ce:20:25:80:a0:3a:7c:85:64:2f:ca:
bc:e6:40:1c:9f:df:c0:82:8e:44:55:b3:35:5d:f0:
87:68:82:81:5d:90:06:4d:be:d0:ce:a8:3e:8b:13:
90:f8:87:b0:21:98:3f:89:8c:05:2b:5b:8f:99:79:
8a:bc:3c:83:d3:b5:e2:79:0f:5e:0b:de:98:c8:a1:
24:7e:ba:05:b2:53:a7:14:f6:85:4e:f4:9a:ce:1e:
de:89:48:6b:07:9d:74:a2:e8:87:c7:14:92:9e:c2:
57:62:f8:d8:40:16:12:37:23:fc:fd:38:f9:b3:89:
b3:06:a4:d0:85:49:b3:ac:1f:5d:54:d3:e1:46:12:
4e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:D1:C1:B3:C7:A4:17:F0:8C:20:ED:E9:8E:5E:AC:A6:92:20:12:2D
X509v3 Authority Key Identifier:
keyid:75:86:21:62:3A:C6:CA:B8:F6:BD:E5:52:6E:7A:29:31:D6:26:FE:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dYYhYjrGyrj2veVSbnopMdYm_ow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/dYYhYjrGyrj2veVSbnopMdYm_ow.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/dYYhYjrGyrj2veVSbnopMdYm_ow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:04:d8:d5:38:d7:ab:f9:13:22:ab:38:8e:b8:f5:be:0c:0d:
1b:23:0d:65:65:fe:be:78:a8:55:7b:91:24:85:60:20:18:e6:
1d:62:b9:6f:14:9b:98:36:cb:53:47:26:a9:44:62:30:25:a3:
9a:4d:f9:c6:c4:3d:93:cd:8f:46:46:e5:ed:a4:05:86:5d:0d:
9d:7f:e8:86:67:b1:55:93:52:60:b3:55:42:d5:b1:44:a6:ce:
61:ce:bd:e3:b5:a1:8b:80:f3:a4:28:32:a4:0c:d1:ed:d0:19:
9f:4c:4f:fc:d9:92:0a:be:98:7c:60:cd:f8:a5:4f:9f:d7:e6:
0c:d5:47:36:b8:54:2a:bf:8d:ce:73:c7:dc:d7:90:a6:dd:f3:
a6:b9:c3:3c:bd:8f:bf:2d:92:a6:48:09:e0:f5:30:85:bf:46:
28:d4:a1:ab:4c:c9:91:6a:4e:b7:b4:4f:5a:fa:39:35:11:6b:
86:5f:fc:03:9b:a9:21:a8:51:36:27:bf:13:58:26:47:88:f8:
ba:8c:5c:bc:87:2d:f5:33:a4:b2:4c:0f:4f:f8:3f:80:36:0c:
4e:2f:a0:aa:f7:41:7d:90:c1:46:65:2c:b9:e2:ab:9c:49:5a:
4e:a3:ff:04:6b:dd:9a:36:d3:2f:1d:92:5d:2e:2c:0b:8e:c2:
45:c2:23:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9NAOl3aT2JiZbaqctuCNQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1ODYyMTYyM2FjNmNhYjhmNmJkZTU1MjZlN2EyOTMxZDYy
NmZlOGMwHhcNMjUxMDE5MTYwMTA4WhcNMjUxMDIwMTYwMTA4WjAzMTEwLwYDVQQD
EygxYWQxYzFiM2M3YTQxN2YwOGMyMGVkZTk4ZTVlYWNhNjkyMjAxMjJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1oLvW9H1LTmsWJixBKo5zyXG50P
oK7jZdtGao+iKBd5uwKjqzsq5zPQ4CeZXevRtKivuKq1QWMjdDmDUb7GxAuwXg4n
q9h0VE35AOllImy2X3uNpNN+X5MFDgVn4AICQYD7v3QoWOT5JM8X+6OT7J6MG1Mf
4eNj+03PziAlgKA6fIVkL8q85kAcn9/Ago5EVbM1XfCHaIKBXZAGTb7Qzqg+ixOQ
+IewIZg/iYwFK1uPmXmKvDyD07XieQ9eC96YyKEkfroFslOnFPaFTvSazh7eiUhr
B510ouiHxxSSnsJXYvjYQBYSNyP8/Tj5s4mzBqTQhUmzrB9dVNPhRhJOOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBrRwbPHpBfwjCDt6Y5erKaSIBItMB8GA1UdIwQY
MBaAFHWGIWI6xsq49r3lUm56KTHWJv6MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFlZaFlqckd5cmoydmVWU2Jub3BNZFltX293LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8zNjcwOGItZDY2Yi00MDdmLTk1NDct
ZjAyMTE2MjI2YTg4LzEvZFlZaFlqckd5cmoydmVWU2Jub3BNZFltX293Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS8zNjcwOGItZDY2Yi00MDdmLTk1NDctZjAyMTE2MjI2YTg4
LzEvZFlZaFlqckd5cmoydmVWU2Jub3BNZFltX293LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWQTY1TjX
q/kTIqs4jrj1vgwNGyMNZWX+vnioVXuRJIVgIBjmHWK5bxSbmDbLU0cmqURiMCWj
mk35xsQ9k82PRkbl7aQFhl0NnX/ohmexVZNSYLNVQtWxRKbOYc6947Whi4DzpCgy
pAzR7dAZn0xP/NmSCr6YfGDN+KVPn9fmDNVHNrhUKr+NznPH3NeQpt3zprnDPL2P
vy2SpkgJ4PUwhb9GKNShq0zJkWpOt7RPWvo5NRFrhl/8A5upIahRNie/E1gmR4j4
uoxcvIct9TOkskwPT/g/gDYMTi+gqvdBfZDBRmUsueKrnElaTqP/BGvdmjbTLx2S
XS4sC47CRcIjmw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:51:59 2025 by rpki-client