Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json)
Hash identifier: WxniOpAS9VhGjGIBa+q1l67lE6evP1BzWhmvvo3YGLU=
Subject key identifier: 93:DE:C4:2C:EF:1C:6F:D9:E5:DB:88:7A:BE:52:CA:11:A4:B1:62:74
Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33
Certificate serial: 01987D1C46553E19F90B4BD152B68A209509
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
Manifest number: 03FE
Signing time: Wed 06 Aug 2025 02:01:01 +0000
Manifest this update: Wed 06 Aug 2025 02:01:01 +0000
Manifest next update: Thu 07 Aug 2025 02:01:01 +0000
Files and hashes: 1: OpWpWHElMT6Em0cb46EU4-eZHBM.roa (hash: UkmgnvSBtnTTqSpYqYCCjTjePdoSg2sK2f+rfkHw/HY=)
2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: h+o6+pLXNout7jliqbLNh3LQal255fQWy7liqO12exE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:1c:46:55:3e:19:f9:0b:4b:d1:52:b6:8a:20:95:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33
Validity
Not Before: Aug 6 02:01:01 2025 GMT
Not After : Aug 7 02:01:01 2025 GMT
Subject: CN=93dec42cef1c6fd9e5db887abe52ca11a4b16274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:92:7f:ca:95:23:aa:8f:30:0c:52:9e:db:a2:
1d:61:44:20:d8:0e:24:b1:4e:6c:da:f9:6d:03:33:
e1:85:3d:30:44:00:c3:d1:47:cb:ad:26:d3:02:d1:
b5:3d:6a:c1:e9:12:fe:19:eb:92:68:00:57:db:37:
f1:b0:04:16:9b:a0:d1:fa:7d:70:99:7f:8b:de:61:
76:e8:74:cf:c7:a8:15:67:b7:a2:31:ee:cd:39:9e:
dd:ed:61:7c:e2:36:6c:68:2f:36:26:bd:b7:b6:7a:
54:27:12:33:41:41:77:3f:c5:8d:12:a6:93:a9:38:
48:13:cc:19:2f:e7:ee:34:c1:b0:05:d5:2f:c5:62:
13:7f:63:ec:c2:b3:71:30:79:37:f0:2c:b5:1f:34:
b8:c7:80:bb:fa:18:4c:94:f4:9c:88:f8:09:a8:18:
59:33:72:f1:31:f0:73:5f:74:65:8e:18:e5:3c:08:
37:9b:35:20:ef:7e:3f:77:a1:33:c1:26:83:87:32:
fb:2d:e3:5e:4a:45:f8:83:1b:e7:62:95:f6:c4:ad:
d7:ad:1d:9c:09:15:1f:4d:85:73:26:63:f6:df:b8:
ff:db:10:e1:49:35:69:2e:21:70:b6:47:98:d5:04:
7f:e0:8e:8b:f0:e2:41:85:f7:e1:8e:1b:4d:a6:4a:
9f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:DE:C4:2C:EF:1C:6F:D9:E5:DB:88:7A:BE:52:CA:11:A4:B1:62:74
X509v3 Authority Key Identifier:
keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:2e:ae:8b:4f:80:bc:a7:50:5c:0a:90:fa:0c:a5:74:c3:50:
74:02:46:b9:00:35:e3:a1:7d:66:e5:22:2b:27:b1:72:ea:0b:
38:be:ae:0e:74:9b:51:e6:40:60:3e:94:a9:5c:7b:1b:a0:52:
ea:08:ec:13:a4:89:b6:a6:ea:0b:1c:6b:dd:9b:38:69:c2:bb:
96:7a:9b:62:e2:d3:3a:17:8c:dc:41:84:3e:c3:c0:d5:97:e9:
a8:b3:ae:29:a8:d5:2e:a0:46:a0:11:cb:d7:1b:93:a3:ef:08:
52:c1:db:26:4e:7b:b5:e4:01:55:5e:4c:9c:44:b1:2b:8d:b8:
3f:b7:6c:7a:1e:e5:5c:a6:87:1e:1b:60:06:e7:b2:39:ab:16:
88:a9:6b:45:57:f2:98:5d:c0:23:69:b4:9e:b0:62:46:2c:bb:
36:e5:22:a7:24:51:2e:fa:0c:b6:0d:ff:e9:d1:64:36:9a:e0:
82:f5:48:a1:43:6c:73:d1:a8:50:36:53:f9:92:41:21:32:4f:
21:48:31:ff:0a:ae:ab:dd:f1:ef:72:9d:50:3b:54:dd:ea:b0:
3e:09:83:3e:5f:66:66:94:2d:8e:7d:ad:12:42:00:e2:b2:ce:
32:57:ab:67:02:3e:b2:df:e1:5a:ef:63:6d:3a:b1:6f:75:a0:
08:2c:ca:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh9HEZVPhn5C0vRUraKIJUJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDViMTI5ZTA2Zjk1MjQ2ODVlNzAwMTAyODQxZjcyZDY5
MTVjMzMwHhcNMjUwODA2MDIwMTAxWhcNMjUwODA3MDIwMTAxWjAzMTEwLwYDVQQD
Eyg5M2RlYzQyY2VmMWM2ZmQ5ZTVkYjg4N2FiZTUyY2ExMWE0YjE2Mjc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJJ/ypUjqo8wDFKe26IdYUQg2A4k
sU5s2vltAzPhhT0wRADD0UfLrSbTAtG1PWrB6RL+GeuSaABX2zfxsAQWm6DR+n1w
mX+L3mF26HTPx6gVZ7eiMe7NOZ7d7WF84jZsaC82Jr23tnpUJxIzQUF3P8WNEqaT
qThIE8wZL+fuNMGwBdUvxWITf2PswrNxMHk38Cy1HzS4x4C7+hhMlPSciPgJqBhZ
M3LxMfBzX3RljhjlPAg3mzUg734/d6EzwSaDhzL7LeNeSkX4gxvnYpX2xK3XrR2c
CRUfTYVzJmP237j/2xDhSTVpLiFwtkeY1QR/4I6L8OJBhffhjhtNpkqfawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJPexCzvHG/Z5duIer5SyhGksWJ0MB8GA1UdIwQY
MBaAFMnVsSngb5UkaF5wAQKEH3LWkVwzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS8xOWY5ZDctNDQzOC00ZDYxLWJlNzct
YzJlYWRkNWVmM2YxLzEveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS8xOWY5ZDctNDQzOC00ZDYxLWJlNzctYzJlYWRkNWVmM2Yx
LzEveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMi6ui0+A
vKdQXAqQ+gyldMNQdAJGuQA146F9ZuUiKyexcuoLOL6uDnSbUeZAYD6UqVx7G6BS
6gjsE6SJtqbqCxxr3Zs4acK7lnqbYuLTOheM3EGEPsPA1ZfpqLOuKajVLqBGoBHL
1xuTo+8IUsHbJk57teQBVV5MnESxK424P7dseh7lXKaHHhtgBueyOasWiKlrRVfy
mF3AI2m0nrBiRiy7NuUipyRRLvoMtg3/6dFkNprggvVIoUNsc9GoUDZT+ZJBITJP
IUgx/wquq93x73KdUDtU3eqwPgmDPl9mZpQtjn2tEkIA4rLOMlerZwI+st/hWu9j
bTqxb3WgCCzK6w==
-----END CERTIFICATE-----
Generated at Wed Aug 6 07:59:11 2025 by rpki-client