Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
File: aYLwUTKpmJUH6_bumJUYdTuizbU.mft (raw, json)
Hash identifier: tGYM7FHcJ/T+9CVMrXCe5UVy5utgwcuLWMt+yaRtp+M=
Subject key identifier: C1:FC:2D:70:FC:D0:AF:9B:B9:56:E7:DF:4A:30:AB:25:37:21:93:C8
Authority key identifier: 69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
Certificate issuer: /CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Certificate serial: 019A4FCFB492566047AE5DD68E276EC57106
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
Manifest number: 0BBF
Signing time: Tue 04 Nov 2025 17:00:03 +0000
Manifest this update: Tue 04 Nov 2025 17:00:03 +0000
Manifest next update: Wed 05 Nov 2025 17:00:03 +0000
Files and hashes: 1: aYLwUTKpmJUH6_bumJUYdTuizbU.crl (hash: m2I0ZB/RK7ieHC7Icob+eBXuwuB08t9CJONp7zSjYbY=)
2: fAKnpTzt0oxsrzvaA1bygJJ8CWQ.roa (hash: cdf+GHG9jpY7S3hS2aX03Crb7b2Au3gPgbB6NvaxmuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:cf:b4:92:56:60:47:ae:5d:d6:8e:27:6e:c5:71:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Validity
Not Before: Nov 4 17:00:03 2025 GMT
Not After : Nov 5 17:00:03 2025 GMT
Subject: CN=c1fc2d70fcd0af9bb956e7df4a30ab25372193c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:29:2e:5b:f5:b1:a8:96:61:61:02:88:bf:4b:
74:50:93:e6:79:ec:ad:66:92:bd:b3:5f:09:c8:b7:
eb:f7:09:41:14:25:72:2a:67:a2:b1:70:6f:2f:92:
83:a7:27:e7:e6:31:02:e5:24:3d:81:76:d7:e4:50:
5e:a9:6c:f8:b6:bf:1a:15:ad:64:81:1f:22:42:b8:
42:5c:53:74:72:83:54:45:7f:df:85:31:38:96:09:
f2:b5:be:89:20:07:6a:86:12:54:c7:04:e8:af:3b:
fd:f9:28:53:3c:ea:49:ce:6b:53:ff:3c:75:26:71:
1b:d1:6f:f0:25:3d:10:8b:c0:e6:2f:f4:3a:99:d0:
1a:8f:32:d9:8d:4d:58:ea:ff:d9:fb:c6:d5:27:8b:
29:34:ab:e2:a0:90:44:d8:da:f9:b9:85:d0:9a:3c:
12:ef:f5:b2:d7:1a:90:45:05:51:e5:49:37:68:59:
ad:dc:f5:a2:ee:e5:04:e8:2c:72:c1:cb:4c:25:b6:
bf:16:59:9d:24:70:9d:a1:5c:f6:34:bd:a2:cb:9d:
f1:da:8a:b9:9a:ef:fc:e2:43:ca:9d:d3:c4:f9:44:
ef:b1:b6:17:db:73:ab:3b:f1:a8:98:2e:b9:01:2d:
8b:1f:b3:2f:59:db:84:f1:ad:e3:ed:d8:16:64:40:
d6:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:FC:2D:70:FC:D0:AF:9B:B9:56:E7:DF:4A:30:AB:25:37:21:93:C8
X509v3 Authority Key Identifier:
keyid:69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:92:44:ac:69:5c:62:62:62:47:7f:fe:ac:53:02:21:aa:82:
99:2d:a1:62:bc:aa:41:49:45:46:f2:84:6b:c5:ba:35:1b:9d:
6d:17:e2:63:81:3d:bd:8c:93:6d:31:8c:eb:29:36:91:5d:bd:
de:dc:86:b9:c8:a9:74:dc:3d:e8:a5:f8:ea:1a:d7:3c:52:4c:
c7:1a:bd:2e:9e:9e:f7:75:83:13:53:8b:4a:a9:f7:80:92:84:
a1:b6:ee:95:20:f3:9f:21:62:e1:17:3e:11:3b:40:a8:f0:3c:
21:d2:dd:69:c9:6d:0f:12:bd:7d:33:11:2e:a5:9f:21:0d:5a:
3d:55:53:14:00:7e:59:6e:e3:eb:b8:dc:5f:1f:aa:56:31:0b:
f4:d0:d6:50:a3:4d:c7:0b:86:d8:92:05:f0:b6:90:86:87:be:
f2:73:87:17:88:ff:20:3d:19:c0:ad:f8:3c:ff:72:a9:bb:e3:
9b:11:58:8b:0b:97:a6:44:8a:51:bd:db:8d:f2:b0:d8:3a:a6:
60:02:89:31:78:86:04:70:9e:be:4e:8b:b1:8d:67:12:52:5a:
5d:6b:05:59:90:e3:a7:c3:b7:08:2a:bc:f1:26:2e:cb:60:7a:
79:17:be:08:7a:43:fe:b9:3c:d2:a0:80:d4:70:bd:97:93:c7:
39:e3:b0:b9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPz7SSVmBHrl3WjiduxXEGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ODJmMDUxMzJhOTk4OTUwN2ViZjZlZTk4OTUxODc1M2Jh
MmNkYjUwHhcNMjUxMTA0MTcwMDAzWhcNMjUxMTA1MTcwMDAzWjAzMTEwLwYDVQQD
EyhjMWZjMmQ3MGZjZDBhZjliYjk1NmU3ZGY0YTMwYWIyNTM3MjE5M2M4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwCkuW/WxqJZhYQKIv0t0UJPmeeyt
ZpK9s18JyLfr9wlBFCVyKmeisXBvL5KDpyfn5jEC5SQ9gXbX5FBeqWz4tr8aFa1k
gR8iQrhCXFN0coNURX/fhTE4lgnytb6JIAdqhhJUxwTorzv9+ShTPOpJzmtT/zx1
JnEb0W/wJT0Qi8DmL/Q6mdAajzLZjU1Y6v/Z+8bVJ4spNKvioJBE2Nr5uYXQmjwS
7/Wy1xqQRQVR5Uk3aFmt3PWi7uUE6CxywctMJba/FlmdJHCdoVz2NL2iy53x2oq5
mu/84kPKndPE+UTvsbYX23OrO/GomC65AS2LH7MvWduE8a3j7dgWZEDW9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMH8LXD80K+buVbn30owqyU3IZPIMB8GA1UdIwQY
MBaAFGmC8FEyqZiVB+v27piVGHU7os21MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVlMd1VUS3BtSlVINl9idW1KVVlkVHVpemJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi82OTA0MDktMDE5ZC00ODEyLTkzMGMt
ZjkyNmZhYmY3YWZhLzEvYVlMd1VUS3BtSlVINl9idW1KVVlkVHVpemJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi82OTA0MDktMDE5ZC00ODEyLTkzMGMtZjkyNmZhYmY3YWZh
LzEvYVlMd1VUS3BtSlVINl9idW1KVVlkVHVpemJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgJJErGlc
YmJiR3/+rFMCIaqCmS2hYryqQUlFRvKEa8W6NRudbRfiY4E9vYyTbTGM6yk2kV29
3tyGucipdNw96KX46hrXPFJMxxq9Lp6e93WDE1OLSqn3gJKEobbulSDznyFi4Rc+
ETtAqPA8IdLdacltDxK9fTMRLqWfIQ1aPVVTFAB+WW7j67jcXx+qVjEL9NDWUKNN
xwuG2JIF8LaQhoe+8nOHF4j/ID0ZwK34PP9yqbvjmxFYiwuXpkSKUb3bjfKw2Dqm
YAKJMXiGBHCevk6LsY1nElJaXWsFWZDjp8O3CCq88SYuy2B6eRe+CHpD/rk80qCA
1HC9l5PHOeOwuQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:59:13 2025 by rpki-client