Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.mft
File: y07YjFv7wrlW_Lsw0U6DK9u5YQ0.mft (raw, json)
Hash identifier: zatmwHTrCHieeNmTS8rOgdxzCEwuOqAYVHqWM3Ftzg4=
Subject key identifier: CA:4E:4B:F8:BF:78:58:1A:DD:1B:97:6C:07:7D:10:BA:8C:89:0A:F1
Authority key identifier: CB:4E:D8:8C:5B:FB:C2:B9:56:FC:BB:30:D1:4E:83:2B:DB:B9:61:0D
Certificate issuer: /CN=cb4ed88c5bfbc2b956fcbb30d14e832bdbb9610d
Certificate serial: 019A4DE20565D1F27D990EE4ACC48A906EB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.mft
Manifest number: 0534
Signing time: Tue 04 Nov 2025 08:00:49 +0000
Manifest this update: Tue 04 Nov 2025 08:00:49 +0000
Manifest next update: Wed 05 Nov 2025 08:00:49 +0000
Files and hashes: 1: fOUkBLPvgdmMw3qOCphjRq4t0eY.roa (hash: r4VQRSy7Gza9d4nweiTC6bFhiBWBCqInaEx5ZdTsmu8=)
2: y07YjFv7wrlW_Lsw0U6DK9u5YQ0.crl (hash: lvGOXeGnHfUnBWPbgTeMBKmGODg5Jx0cVOJ02ZRG1hY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e2:05:65:d1:f2:7d:99:0e:e4:ac:c4:8a:90:6e:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb4ed88c5bfbc2b956fcbb30d14e832bdbb9610d
Validity
Not Before: Nov 4 08:00:49 2025 GMT
Not After : Nov 5 08:00:49 2025 GMT
Subject: CN=ca4e4bf8bf78581add1b976c077d10ba8c890af1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:61:1b:fa:84:d4:c8:bc:72:34:bc:df:bd:b6:
49:48:41:83:37:c6:05:47:7a:94:ad:d1:ef:dd:e6:
25:45:4c:4c:9d:2d:cc:b3:33:fe:35:72:a5:56:14:
1d:b0:25:20:a8:72:cb:66:7a:09:f9:5f:ab:d0:96:
08:2f:7d:2c:83:9b:40:2a:3f:74:d2:cc:ca:16:2f:
b3:22:2d:38:0c:a7:1e:99:49:ad:6a:37:8c:fb:b8:
5c:03:8c:c6:d5:aa:1c:66:7e:94:7d:56:35:de:f7:
bf:b0:8e:ac:29:ae:ef:28:a7:c0:78:85:89:83:65:
dd:04:04:a0:0a:78:6d:6b:a3:81:eb:75:52:1d:86:
09:12:09:af:19:57:5f:5f:dd:7a:66:9a:db:06:37:
b3:b3:a0:5d:89:16:8a:69:97:65:a1:ce:fd:ce:dd:
8f:49:92:97:74:8f:77:9e:74:5d:b2:aa:cd:bc:60:
54:87:d6:19:3e:67:24:90:46:d1:ab:0c:02:09:90:
a5:6b:78:97:6d:89:46:41:a4:c4:ca:69:e0:68:76:
0b:a1:bf:9b:63:e9:60:7f:f6:88:14:7b:04:4d:32:
0c:f2:29:5f:3f:c5:e0:68:60:69:fa:d8:f2:5b:06:
2d:0b:a5:31:ac:b5:4b:5a:ae:4a:06:96:96:4a:3d:
b0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:4E:4B:F8:BF:78:58:1A:DD:1B:97:6C:07:7D:10:BA:8C:89:0A:F1
X509v3 Authority Key Identifier:
keyid:CB:4E:D8:8C:5B:FB:C2:B9:56:FC:BB:30:D1:4E:83:2B:DB:B9:61:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:75:51:03:de:4b:a3:b2:9d:f8:e6:45:aa:43:cb:b5:8d:8d:
96:c4:93:63:76:ef:7c:71:fb:77:ce:7a:bf:f0:80:10:99:8b:
39:9a:15:38:36:25:80:ff:85:89:61:ab:ab:11:61:61:72:e9:
96:40:41:e2:cf:30:15:55:f8:44:98:40:ce:e3:da:0f:ca:a1:
2b:53:19:38:ef:13:ec:96:50:f5:ff:82:59:5d:9f:27:bd:f6:
f4:a9:1a:cf:f8:30:d4:ca:1d:96:dc:77:2f:ee:ce:a5:f6:6a:
df:f6:c6:a0:f7:aa:16:14:6b:5d:6a:bf:49:33:54:a3:e1:b9:
8c:ff:0c:61:f5:74:4a:90:7a:e4:9d:77:46:7d:e5:10:de:78:
12:0c:1a:56:8c:ab:25:46:e8:1d:1e:1d:04:af:e0:e1:73:0d:
35:6c:bc:de:eb:77:09:1e:5d:1e:32:72:12:08:c7:74:7d:69:
8d:ba:c1:ea:ec:98:c1:2b:6d:38:d3:ce:0b:82:a0:bf:15:ee:
9a:64:19:95:1f:57:d2:a8:87:43:7e:11:f6:0b:35:f4:53:13:
13:19:0a:d1:36:a5:75:e2:cb:77:ba:ae:b8:fa:2a:ad:fe:20:
0e:17:19:31:21:06:40:fd:eb:73:33:ef:34:76:e9:2e:57:07:
78:27:24:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpN4gVl0fJ9mQ7krMSKkG64MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiNGVkODhjNWJmYmMyYjk1NmZjYmIzMGQxNGU4MzJiZGJi
OTYxMGQwHhcNMjUxMTA0MDgwMDQ5WhcNMjUxMTA1MDgwMDQ5WjAzMTEwLwYDVQQD
EyhjYTRlNGJmOGJmNzg1ODFhZGQxYjk3NmMwNzdkMTBiYThjODkwYWYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWEb+oTUyLxyNLzfvbZJSEGDN8YF
R3qUrdHv3eYlRUxMnS3MszP+NXKlVhQdsCUgqHLLZnoJ+V+r0JYIL30sg5tAKj90
0szKFi+zIi04DKcemUmtajeM+7hcA4zG1aocZn6UfVY13ve/sI6sKa7vKKfAeIWJ
g2XdBASgCnhta6OB63VSHYYJEgmvGVdfX916ZprbBjezs6BdiRaKaZdloc79zt2P
SZKXdI93nnRdsqrNvGBUh9YZPmckkEbRqwwCCZCla3iXbYlGQaTEymngaHYLob+b
Y+lgf/aIFHsETTIM8ilfP8XgaGBp+tjyWwYtC6UxrLVLWq5KBpaWSj2wPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMpOS/i/eFga3RuXbAd9ELqMiQrxMB8GA1UdIwQY
MBaAFMtO2Ixb+8K5Vvy7MNFOgyvbuWENMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTA3WWpGdjd3cmxXX0xzdzBVNkRLOXU1WVEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9iMzA5MTYtMjEyNS00YTRmLTlhMzYt
MjY0MTk3NTQ0M2ZmLzEveTA3WWpGdjd3cmxXX0xzdzBVNkRLOXU1WVEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9iMzA5MTYtMjEyNS00YTRmLTlhMzYtMjY0MTk3NTQ0M2Zm
LzEveTA3WWpGdjd3cmxXX0xzdzBVNkRLOXU1WVEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI3VRA95L
o7Kd+OZFqkPLtY2NlsSTY3bvfHH7d856v/CAEJmLOZoVODYlgP+FiWGrqxFhYXLp
lkBB4s8wFVX4RJhAzuPaD8qhK1MZOO8T7JZQ9f+CWV2fJ7329Kkaz/gw1Modltx3
L+7OpfZq3/bGoPeqFhRrXWq/STNUo+G5jP8MYfV0SpB65J13Rn3lEN54EgwaVoyr
JUboHR4dBK/g4XMNNWy83ut3CR5dHjJyEgjHdH1pjbrB6uyYwSttONPOC4KgvxXu
mmQZlR9X0qiHQ34R9gs19FMTExkK0TaldeLLd7quuPoqrf4gDhcZMSEGQP3rczPv
NHbpLlcHeCckzw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 11:20:42 2025 by rpki-client