Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
File: yAYJ8hhRvff3TtGPDwnfku23U1U.mft (raw, json)
Hash identifier: EoXuyNGyuMdwQFieVJUlOuDFW0gLiUXTI08wfr4GHmI=
Subject key identifier: 0C:CB:05:5B:6F:D8:83:EE:23:92:80:CA:AF:2F:20:75:37:A0:A2:8B
Authority key identifier: C8:06:09:F2:18:51:BD:F7:F7:4E:D1:8F:0F:09:DF:92:ED:B7:53:55
Certificate issuer: /CN=c80609f21851bdf7f74ed18f0f09df92edb75355
Certificate serial: 019A4D741A06411D9E13CBF68901335F6881
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
Manifest number: 0ED1
Signing time: Tue 04 Nov 2025 06:00:45 +0000
Manifest this update: Tue 04 Nov 2025 06:00:45 +0000
Manifest next update: Wed 05 Nov 2025 06:00:45 +0000
Files and hashes: 1: Wg-bSrUatmukyH3xDDiSbozsSDE.roa (hash: +C5Ooc81ApTJACiPZcILtsd+XtVBtietyO7rZMjbj2I=)
2: yAYJ8hhRvff3TtGPDwnfku23U1U.crl (hash: ndxwBLBMOdVCfYdOiLVAh+ZqTRgdmmaH9sa+2cZ3fLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:1a:06:41:1d:9e:13:cb:f6:89:01:33:5f:68:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c80609f21851bdf7f74ed18f0f09df92edb75355
Validity
Not Before: Nov 4 06:00:45 2025 GMT
Not After : Nov 5 06:00:45 2025 GMT
Subject: CN=0ccb055b6fd883ee239280caaf2f207537a0a28b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:40:e4:01:c0:28:cb:7e:48:85:22:19:49:a3:
73:91:91:d6:55:8f:59:61:4e:bb:23:65:49:28:87:
b4:2b:7a:13:f8:f0:77:b2:66:41:8d:1d:bd:df:23:
80:84:3e:2a:aa:13:e4:b8:f5:ca:82:71:53:a2:be:
14:43:11:01:67:e7:3b:29:28:9e:98:6a:cd:81:03:
a2:fc:93:13:68:f0:52:13:ce:a2:1f:dc:c5:67:40:
46:e5:7f:57:44:99:80:a1:33:4c:4a:9e:20:f8:5e:
ef:53:be:fa:f5:d3:78:cf:96:7c:c8:31:f4:22:06:
ac:b3:78:0d:a2:5e:71:40:d3:70:c1:7d:20:e9:26:
c9:a3:b4:af:74:c0:2d:e7:ea:71:5b:d8:79:a9:1d:
f9:8c:64:20:bc:3e:93:99:15:27:63:b0:52:2f:74:
f6:db:1c:a4:f7:77:e1:f9:57:ea:11:56:26:94:8c:
85:7e:48:e8:99:c1:14:94:f9:00:70:5c:b5:8e:63:
68:3f:09:02:07:b0:a3:8b:3d:95:f8:a5:2a:45:e1:
7c:15:73:c1:ee:7c:15:92:13:56:fd:e4:cc:4f:58:
b4:ea:19:8d:8b:35:79:0c:20:8d:e3:1f:2a:01:ea:
65:fc:71:9d:69:24:50:9f:fa:bb:2b:5d:de:4f:70:
8f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:CB:05:5B:6F:D8:83:EE:23:92:80:CA:AF:2F:20:75:37:A0:A2:8B
X509v3 Authority Key Identifier:
keyid:C8:06:09:F2:18:51:BD:F7:F7:4E:D1:8F:0F:09:DF:92:ED:B7:53:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:bc:42:f1:c0:40:a3:4e:81:77:4c:b8:5c:34:44:d4:c4:aa:
0d:86:88:4d:02:71:0b:4a:cd:55:c0:86:f4:6f:a0:5a:d3:8c:
02:fb:56:c5:fa:43:2d:6b:ba:15:30:dc:c3:0a:64:ed:42:9d:
5e:a4:6d:6b:d1:5c:d3:34:b5:f2:7e:53:6f:c4:0f:1a:69:d1:
b5:f8:ef:39:48:55:58:80:88:7f:7a:16:8f:cd:95:6c:d0:e5:
44:da:55:33:57:f2:5d:02:18:8f:18:bf:be:b7:bf:c1:ef:91:
42:37:b2:1e:a8:8f:f6:4d:92:68:fd:62:1f:35:20:75:34:56:
ba:da:d6:46:e6:58:56:a9:c8:97:4b:0e:a5:5d:4a:38:d7:f0:
d8:52:6c:5f:b5:70:28:7f:9b:ce:33:c1:db:63:29:33:48:b8:
27:b4:7e:e4:51:0a:dd:18:a1:f5:84:22:47:24:d7:f3:c7:30:
4f:2f:e9:cc:05:df:02:e3:01:06:de:d7:22:7b:eb:d4:78:9d:
ad:b3:27:40:c1:1e:67:aa:e9:57:0e:e4:ea:be:8c:02:70:2c:
1e:86:1d:12:33:06:2a:c7:d0:e0:2c:75:11:d4:5d:c9:30:31:
d2:c0:ea:7c:cf:d5:87:6b:4b:41:c4:c4:48:2e:ac:8d:97:f1:
09:33:a7:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNdBoGQR2eE8v2iQEzX2iBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4MDYwOWYyMTg1MWJkZjdmNzRlZDE4ZjBmMDlkZjkyZWRi
NzUzNTUwHhcNMjUxMTA0MDYwMDQ1WhcNMjUxMTA1MDYwMDQ1WjAzMTEwLwYDVQQD
EygwY2NiMDU1YjZmZDg4M2VlMjM5MjgwY2FhZjJmMjA3NTM3YTBhMjhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUDkAcAoy35IhSIZSaNzkZHWVY9Z
YU67I2VJKIe0K3oT+PB3smZBjR293yOAhD4qqhPkuPXKgnFTor4UQxEBZ+c7KSie
mGrNgQOi/JMTaPBSE86iH9zFZ0BG5X9XRJmAoTNMSp4g+F7vU7769dN4z5Z8yDH0
Igass3gNol5xQNNwwX0g6SbJo7SvdMAt5+pxW9h5qR35jGQgvD6TmRUnY7BSL3T2
2xyk93fh+VfqEVYmlIyFfkjomcEUlPkAcFy1jmNoPwkCB7Cjiz2V+KUqReF8FXPB
7nwVkhNW/eTMT1i06hmNizV5DCCN4x8qAepl/HGdaSRQn/q7K13eT3CPnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAzLBVtv2IPuI5KAyq8vIHU3oKKLMB8GA1UdIwQY
MBaAFMgGCfIYUb33907Rjw8J35Ltt1NVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUFZSjhoaFJ2ZmYzVHRHUER3bmZrdTIzVTFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9lYzkxNTktZGFiNC00MjgwLWI0NGMt
NGNiY2U1YmFiYWE3LzEveUFZSjhoaFJ2ZmYzVHRHUER3bmZrdTIzVTFVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9lYzkxNTktZGFiNC00MjgwLWI0NGMtNGNiY2U1YmFiYWE3
LzEveUFZSjhoaFJ2ZmYzVHRHUER3bmZrdTIzVTFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd7xC8cBA
o06Bd0y4XDRE1MSqDYaITQJxC0rNVcCG9G+gWtOMAvtWxfpDLWu6FTDcwwpk7UKd
XqRta9Fc0zS18n5Tb8QPGmnRtfjvOUhVWICIf3oWj82VbNDlRNpVM1fyXQIYjxi/
vre/we+RQjeyHqiP9k2SaP1iHzUgdTRWutrWRuZYVqnIl0sOpV1KONfw2FJsX7Vw
KH+bzjPB22MpM0i4J7R+5FEK3Rih9YQiRyTX88cwTy/pzAXfAuMBBt7XInvr1Hid
rbMnQMEeZ6rpVw7k6r6MAnAsHoYdEjMGKsfQ4Cx1EdRdyTAx0sDqfM/Vh2tLQcTE
SC6sjZfxCTOngw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 11:19:01 2025 by rpki-client