Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.mft
File: YZp5QeDCyGEyL4Me0G8H-3CFo7s.mft (raw, json)
Hash identifier: 6ZDpIrADcww7mxZDiHodcm5iQu9sOFQPK9tw8prW938=
Subject key identifier: F7:24:5F:68:25:FA:BC:6D:1C:FB:AC:DE:9B:69:4C:DA:30:85:2F:66
Authority key identifier: 61:9A:79:41:E0:C2:C8:61:32:2F:83:1E:D0:6F:07:FB:70:85:A3:BB
Certificate issuer: /CN=619a7941e0c2c861322f831ed06f07fb7085a3bb
Certificate serial: 0198D7A8E97A51CDF08BA1210414E5AF985E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YZp5QeDCyGEyL4Me0G8H-3CFo7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.mft
Manifest number: 1265
Signing time: Sat 23 Aug 2025 16:00:27 +0000
Manifest this update: Sat 23 Aug 2025 16:00:27 +0000
Manifest next update: Sun 24 Aug 2025 16:00:27 +0000
Files and hashes: 1: YZp5QeDCyGEyL4Me0G8H-3CFo7s.crl (hash: kidEJ7RmtjBE1Av3CH38xTmiYrI6sHn/daGR6NI9qZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/YZp5QeDCyGEyL4Me0G8H-3CFo7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a8:e9:7a:51:cd:f0:8b:a1:21:04:14:e5:af:98:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=619a7941e0c2c861322f831ed06f07fb7085a3bb
Validity
Not Before: Aug 23 16:00:27 2025 GMT
Not After : Aug 24 16:00:27 2025 GMT
Subject: CN=f7245f6825fabc6d1cfbacde9b694cda30852f66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a8:ee:a2:1d:bf:c3:bb:bf:6b:44:84:dd:59:
a4:3c:b5:55:b5:11:45:a7:d5:a9:a1:7a:1c:cb:cc:
68:ba:08:33:2b:56:09:29:33:3b:54:0a:c1:45:ac:
53:47:d7:4a:78:92:5f:80:dc:a6:50:f7:da:c2:ad:
e1:aa:1c:69:81:fa:ce:78:29:6c:ea:95:b8:30:50:
55:9e:9f:3f:ab:b0:23:16:f6:2c:85:89:a8:48:2c:
7d:ac:e8:07:55:dd:93:2a:47:03:12:f9:15:4b:d7:
84:e3:28:40:9c:e3:e9:43:5e:eb:6d:03:47:0d:36:
b0:91:b9:be:6d:fc:18:2f:4c:b9:81:5f:f7:ca:1d:
e1:87:28:ac:a5:67:b8:9a:1d:b0:9e:5d:78:06:82:
04:14:c0:ff:b9:04:3f:46:83:b5:56:e2:af:65:a4:
fa:64:91:ba:59:8c:b3:2b:ae:20:3b:21:3a:f0:f0:
31:26:7e:23:b1:d1:52:b1:bd:dd:78:74:38:dc:c1:
e2:2d:a2:07:82:f0:82:86:c5:43:7e:a0:03:ba:b3:
20:41:7b:16:28:da:a8:30:c6:02:85:19:d4:e3:91:
fa:48:fa:8f:34:0f:8b:a8:79:71:35:bb:16:1f:11:
b0:0f:a4:4f:b4:2b:7d:4a:f4:f0:ab:64:84:7b:a7:
36:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:24:5F:68:25:FA:BC:6D:1C:FB:AC:DE:9B:69:4C:DA:30:85:2F:66
X509v3 Authority Key Identifier:
keyid:61:9A:79:41:E0:C2:C8:61:32:2F:83:1E:D0:6F:07:FB:70:85:A3:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YZp5QeDCyGEyL4Me0G8H-3CFo7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:9e:39:37:6e:2a:24:29:91:08:fb:cc:4c:cd:1b:59:9c:eb:
1e:47:73:55:81:9c:ff:ad:f8:8e:4f:ae:84:09:57:45:e2:b9:
94:0c:30:97:ef:04:91:ac:5d:92:67:5a:d2:81:5f:f4:66:0f:
27:c4:a4:7a:8a:a0:7f:c0:35:f1:96:6c:10:ce:f7:16:4e:ab:
87:6e:89:b1:4d:01:d6:d9:97:ca:22:90:63:62:2a:41:00:4c:
a8:5d:32:4d:3d:f9:b6:4a:5f:2b:6b:25:00:1e:c8:15:24:67:
97:bb:50:55:de:51:e8:0d:d3:2c:69:fa:e8:33:0f:b1:99:80:
d3:b5:55:72:f7:24:a9:d9:d3:54:1c:7f:6d:f6:b0:68:34:08:
04:fb:4d:3f:3a:41:03:64:74:59:0c:af:ad:c2:62:ae:5b:1e:
5a:b8:36:45:fc:69:6f:7a:78:d8:90:25:b8:2e:d0:f4:47:6e:
26:de:d1:74:24:c5:4c:7f:88:0d:63:e3:44:db:fe:71:e2:b1:
0f:ad:63:06:da:70:cf:30:6a:50:48:7b:44:4e:7c:62:ce:9f:
ba:46:75:da:39:dc:a5:d7:78:53:b9:1a:6a:93:44:2e:90:82:
b2:a1:9a:87:d7:40:32:41:be:61:c0:75:20:1a:ee:72:41:c6:
04:79:ae:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXqOl6Uc3wi6EhBBTlr5heMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxOWE3OTQxZTBjMmM4NjEzMjJmODMxZWQwNmYwN2ZiNzA4
NWEzYmIwHhcNMjUwODIzMTYwMDI3WhcNMjUwODI0MTYwMDI3WjAzMTEwLwYDVQQD
EyhmNzI0NWY2ODI1ZmFiYzZkMWNmYmFjZGU5YjY5NGNkYTMwODUyZjY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt6juoh2/w7u/a0SE3VmkPLVVtRFF
p9WpoXocy8xouggzK1YJKTM7VArBRaxTR9dKeJJfgNymUPfawq3hqhxpgfrOeCls
6pW4MFBVnp8/q7AjFvYshYmoSCx9rOgHVd2TKkcDEvkVS9eE4yhAnOPpQ17rbQNH
DTawkbm+bfwYL0y5gV/3yh3hhyispWe4mh2wnl14BoIEFMD/uQQ/RoO1VuKvZaT6
ZJG6WYyzK64gOyE68PAxJn4jsdFSsb3deHQ43MHiLaIHgvCChsVDfqADurMgQXsW
KNqoMMYChRnU45H6SPqPNA+LqHlxNbsWHxGwD6RPtCt9SvTwq2SEe6c2LQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPckX2gl+rxtHPus3ptpTNowhS9mMB8GA1UdIwQY
MBaAFGGaeUHgwshhMi+DHtBvB/twhaO7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVpwNVFlREN5R0V5TDRNZTBHOEgtM0NGbzdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9iMDlmZWMtZDg1ZC00YjY0LWE2MTIt
MTFlZWNhMjY2ZDZjLzEvWVpwNVFlREN5R0V5TDRNZTBHOEgtM0NGbzdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS9iMDlmZWMtZDg1ZC00YjY0LWE2MTItMTFlZWNhMjY2ZDZj
LzEvWVpwNVFlREN5R0V5TDRNZTBHOEgtM0NGbzdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO545N24q
JCmRCPvMTM0bWZzrHkdzVYGc/634jk+uhAlXReK5lAwwl+8Ekaxdkmda0oFf9GYP
J8Skeoqgf8A18ZZsEM73Fk6rh26JsU0B1tmXyiKQY2IqQQBMqF0yTT35tkpfK2sl
AB7IFSRnl7tQVd5R6A3TLGn66DMPsZmA07VVcvckqdnTVBx/bfawaDQIBPtNPzpB
A2R0WQyvrcJirlseWrg2Rfxpb3p42JAluC7Q9EduJt7RdCTFTH+IDWPjRNv+ceKx
D61jBtpwzzBqUEh7RE58Ys6fukZ12jncpdd4U7kaapNELpCCsqGah9dAMkG+YcB1
IBruckHGBHmugQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 18:31:54 2025 by rpki-client