Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json)
Hash identifier: RK6WQmHSYt8gdGnoU9FVQK2vL4H1CFjWabQuRKiHytA=
Subject key identifier: FB:80:BA:DC:71:04:D8:08:7D:D4:45:39:08:07:53:E5:55:1C:72:6C
Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33
Certificate serial: 019A4C985FF024EBD483CA4398288D317EBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
Manifest number: 04EE
Signing time: Tue 04 Nov 2025 02:00:45 +0000
Manifest this update: Tue 04 Nov 2025 02:00:45 +0000
Manifest next update: Wed 05 Nov 2025 02:00:45 +0000
Files and hashes: 1: OpWpWHElMT6Em0cb46EU4-eZHBM.roa (hash: UkmgnvSBtnTTqSpYqYCCjTjePdoSg2sK2f+rfkHw/HY=)
2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: Ea+cSRDENUVGSmzxw/z6I4bSLs2nfwY+/577RwnNixs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 02:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:98:5f:f0:24:eb:d4:83:ca:43:98:28:8d:31:7e:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33
Validity
Not Before: Nov 4 02:00:45 2025 GMT
Not After : Nov 5 02:00:45 2025 GMT
Subject: CN=fb80badc7104d8087dd44539080753e5551c726c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3e:ab:a4:4b:36:64:c6:a1:83:73:16:05:4d:
7f:da:f4:ae:eb:dd:f0:3e:a6:40:ca:cb:ff:a8:e7:
b4:1c:d7:55:b5:66:2c:0a:8d:ba:68:a3:ed:ca:bd:
0a:96:27:25:a2:4f:b9:96:05:cc:58:6d:f0:31:0f:
ab:c8:97:bd:27:96:dd:42:4d:39:16:24:15:98:16:
12:9b:34:64:eb:a0:ce:a5:d4:64:41:b1:8a:ef:67:
c3:df:d6:5c:23:a9:ab:49:b4:32:d5:5b:f6:74:f5:
af:49:d6:35:95:8f:ba:bd:8a:cc:ae:e5:a8:49:36:
2e:a9:60:d8:d7:0e:62:d6:07:61:19:2e:3c:d2:53:
3d:a3:b0:a9:1b:9f:1b:7a:cf:84:6a:2b:2e:08:2b:
5b:02:7a:c3:2b:da:a8:41:55:0e:10:29:aa:47:82:
5d:cd:89:cf:d4:d3:03:63:8c:c5:39:29:76:45:d3:
e6:da:86:ff:55:68:8a:61:ac:f4:cf:5a:c2:72:45:
c7:10:fa:d4:cd:d4:4a:ba:fd:f3:bf:e4:4b:52:60:
92:3e:fe:7d:10:4e:7b:63:8b:af:50:d7:4b:29:7d:
f8:28:5a:9c:04:c3:a2:30:95:4f:e5:85:1a:dd:69:
8c:05:78:ff:a0:45:9f:57:fd:e8:22:5b:64:6d:36:
fc:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:80:BA:DC:71:04:D8:08:7D:D4:45:39:08:07:53:E5:55:1C:72:6C
X509v3 Authority Key Identifier:
keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:38:98:91:91:7f:51:0e:84:1e:c4:91:f5:8f:cb:fc:50:24:
6e:cc:2f:36:92:59:74:8c:c2:e7:65:d4:af:ae:5b:f2:28:80:
b7:a5:bc:f8:27:15:6c:37:0a:37:d9:b6:ca:70:2c:60:7b:be:
06:b5:78:77:fc:a2:6f:ca:4b:9a:93:44:f1:bf:00:8b:dd:2b:
a2:08:0d:b8:fe:91:28:62:89:e7:f2:ad:f7:b8:4d:c5:73:21:
2e:74:47:25:7c:58:37:8a:7a:a0:71:f8:a0:9b:ea:92:94:99:
a3:96:ba:42:4c:32:5e:1f:d6:87:05:7f:0c:09:90:77:65:ce:
92:37:91:13:d1:71:d8:fb:a3:a3:f3:f7:ef:f8:30:7b:36:d5:
c3:f1:49:d8:c1:50:78:e5:d9:74:c3:0b:0a:4d:d5:b1:8d:34:
51:f5:bd:85:74:65:a5:b7:85:4e:22:1a:4c:cd:b0:69:50:88:
33:a4:dc:22:97:c7:8e:b1:98:46:ce:a1:3f:74:41:d1:80:22:
3f:f2:3c:d3:05:2e:f8:e5:a7:cd:2b:e9:3c:78:b2:8d:8b:29:
8f:0d:94:91:b4:de:01:70:fd:59:6f:06:35:a7:74:5f:27:67:
d1:0b:59:6e:de:65:c3:58:ab:3b:58:a9:8b:cf:cd:8e:d4:75:
8a:59:74:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpMmF/wJOvUg8pDmCiNMX68MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDViMTI5ZTA2Zjk1MjQ2ODVlNzAwMTAyODQxZjcyZDY5
MTVjMzMwHhcNMjUxMTA0MDIwMDQ1WhcNMjUxMTA1MDIwMDQ1WjAzMTEwLwYDVQQD
EyhmYjgwYmFkYzcxMDRkODA4N2RkNDQ1MzkwODA3NTNlNTU1MWM3MjZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxz6rpEs2ZMahg3MWBU1/2vSu693w
PqZAysv/qOe0HNdVtWYsCo26aKPtyr0Kliclok+5lgXMWG3wMQ+ryJe9J5bdQk05
FiQVmBYSmzRk66DOpdRkQbGK72fD39ZcI6mrSbQy1Vv2dPWvSdY1lY+6vYrMruWo
STYuqWDY1w5i1gdhGS480lM9o7CpG58bes+EaisuCCtbAnrDK9qoQVUOECmqR4Jd
zYnP1NMDY4zFOSl2RdPm2ob/VWiKYaz0z1rCckXHEPrUzdRKuv3zv+RLUmCSPv59
EE57Y4uvUNdLKX34KFqcBMOiMJVP5YUa3WmMBXj/oEWfV/3oIltkbTb8wwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPuAutxxBNgIfdRFOQgHU+VVHHJsMB8GA1UdIwQY
MBaAFMnVsSngb5UkaF5wAQKEH3LWkVwzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS8xOWY5ZDctNDQzOC00ZDYxLWJlNzct
YzJlYWRkNWVmM2YxLzEveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS8xOWY5ZDctNDQzOC00ZDYxLWJlNzctYzJlYWRkNWVmM2Yx
LzEveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKTiYkZF/
UQ6EHsSR9Y/L/FAkbswvNpJZdIzC52XUr65b8iiAt6W8+CcVbDcKN9m2ynAsYHu+
BrV4d/yib8pLmpNE8b8Ai90roggNuP6RKGKJ5/Kt97hNxXMhLnRHJXxYN4p6oHH4
oJvqkpSZo5a6QkwyXh/WhwV/DAmQd2XOkjeRE9Fx2Pujo/P37/gwezbVw/FJ2MFQ
eOXZdMMLCk3VsY00UfW9hXRlpbeFTiIaTM2waVCIM6TcIpfHjrGYRs6hP3RB0YAi
P/I80wUu+OWnzSvpPHiyjYspjw2UkbTeAXD9WW8GNad0Xydn0QtZbt5lw1irO1ip
i8/NjtR1ill0/w==
-----END CERTIFICATE-----
Generated at Tue Nov 4 10:56:16 2025 by rpki-client