Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
File: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft (raw, json)
Hash identifier: peF3fwtVObQAN8XslgbadPJZZciS6+txp281b1FBib4=
Subject key identifier: 9F:A9:BB:13:82:1C:57:A1:CA:93:C2:A6:E2:C7:87:35:4C:95:2E:D5
Authority key identifier: CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
Certificate issuer: /CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Certificate serial: 019882B0523F1C16AAC6E9FF7E55A3F6AEA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
Manifest number: 02D2
Signing time: Thu 07 Aug 2025 04:00:49 +0000
Manifest this update: Thu 07 Aug 2025 04:00:49 +0000
Manifest next update: Fri 08 Aug 2025 04:00:49 +0000
Files and hashes: 1: q6cfXUDveWHdgQWTYKqVwvvOAe0.roa (hash: BJPMM6GNYN6IqCj9i2G5fXzbZjuTVnz0OtAPd8t+eZk=)
2: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl (hash: OFwx1oSguCBAJyzQwxoTI4j77qhwyqG1D9Dxw6lnu6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 23:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:b0:52:3f:1c:16:aa:c6:e9:ff:7e:55:a3:f6:ae:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Validity
Not Before: Aug 7 04:00:49 2025 GMT
Not After : Aug 8 04:00:49 2025 GMT
Subject: CN=9fa9bb13821c57a1ca93c2a6e2c787354c952ed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:91:17:24:88:55:3d:b4:ff:aa:52:e0:d9:42:
79:7c:5a:83:85:22:11:63:b8:fe:76:24:6c:7d:bd:
b8:a7:c3:fd:cf:03:58:56:65:56:45:81:b6:9d:bb:
3a:f1:2e:83:44:95:46:c4:66:b9:69:6a:90:ee:2c:
42:6e:ba:32:ac:2e:5c:48:92:0a:98:fc:8f:55:12:
17:24:88:73:14:74:f4:15:97:8c:54:cb:cf:7c:fa:
62:25:af:6c:be:7b:7b:c5:8c:8f:40:76:11:ca:67:
4e:2b:3d:f0:f4:32:9f:21:3c:13:70:16:54:11:e0:
a9:09:9e:11:be:08:b0:be:5c:ab:c2:eb:b9:63:38:
62:32:33:54:93:1d:10:d4:3f:ec:e8:ad:72:8b:40:
38:1e:83:d6:45:ee:b7:c3:2f:b4:ad:9d:46:1c:3f:
c6:6a:e8:42:78:ec:0d:78:12:90:f1:ad:5d:16:38:
e9:98:9c:63:4f:e9:e4:4b:61:22:f8:01:95:c3:5c:
ea:28:0d:05:82:2f:4a:b7:e5:b2:69:43:cb:eb:ea:
28:47:ca:2b:ea:5e:ab:4b:bc:44:a2:50:76:cc:7b:
46:fe:70:cf:4b:73:ae:dc:78:e0:4d:31:52:90:f0:
6d:c3:16:d9:f9:09:4e:0c:30:54:8d:3a:29:96:d2:
be:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:A9:BB:13:82:1C:57:A1:CA:93:C2:A6:E2:C7:87:35:4C:95:2E:D5
X509v3 Authority Key Identifier:
keyid:CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:f6:99:be:4b:e1:12:46:a7:84:0c:66:b7:3f:ee:b2:43:07:
bc:c2:95:ee:0f:26:f6:5e:aa:28:a3:f1:8e:3f:15:a0:fc:04:
61:c4:b0:11:aa:2e:1e:e8:5b:da:fe:da:3d:3d:c0:40:b5:14:
a2:19:7b:da:3a:40:b5:0b:35:4b:9a:c3:39:92:e1:3e:d3:80:
ee:3f:c8:ef:af:59:34:20:5e:c0:bc:3d:b7:11:fa:74:b2:66:
47:14:ae:4b:e1:d9:fb:0d:a4:ee:b1:a7:87:ed:be:24:65:8b:
16:2a:c7:90:fc:39:48:a8:2a:78:27:56:6f:8f:9f:a8:a0:7e:
df:ab:f7:77:5c:9f:18:8a:4a:b8:37:04:1b:af:e6:d4:90:f3:
f3:4f:55:dd:87:11:a3:6c:c1:a4:79:87:eb:89:01:ba:10:a0:
5e:03:b1:bb:6c:77:90:cb:8e:4d:a8:52:9e:4d:77:01:fa:9a:
a8:0f:5b:d3:6e:27:0b:59:95:e6:5c:d9:c8:c5:e3:b5:b5:e8:
63:85:e7:db:7f:cf:a0:ad:22:64:fa:db:64:85:62:f0:48:cf:
f7:1c:b3:ad:50:41:f4:67:6f:c5:2b:7a:81:4f:32:d4:a0:cb:
bd:39:a6:9e:92:f2:d3:b2:2e:31:1d:d3:f3:63:61:8c:89:ed:
4e:92:61:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiCsFI/HBaqxun/flWj9q6mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiYjUyNWUyNjNhOTViMTY1MjA2NGJkZmY4OTY0ZDRiZjYy
YjUzM2QwHhcNMjUwODA3MDQwMDQ5WhcNMjUwODA4MDQwMDQ5WjAzMTEwLwYDVQQD
Eyg5ZmE5YmIxMzgyMWM1N2ExY2E5M2MyYTZlMmM3ODczNTRjOTUyZWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz5EXJIhVPbT/qlLg2UJ5fFqDhSIR
Y7j+diRsfb24p8P9zwNYVmVWRYG2nbs68S6DRJVGxGa5aWqQ7ixCbroyrC5cSJIK
mPyPVRIXJIhzFHT0FZeMVMvPfPpiJa9svnt7xYyPQHYRymdOKz3w9DKfITwTcBZU
EeCpCZ4Rvgiwvlyrwuu5YzhiMjNUkx0Q1D/s6K1yi0A4HoPWRe63wy+0rZ1GHD/G
auhCeOwNeBKQ8a1dFjjpmJxjT+nkS2Ei+AGVw1zqKA0Fgi9Kt+WyaUPL6+ooR8or
6l6rS7xEolB2zHtG/nDPS3Ou3HjgTTFSkPBtwxbZ+QlODDBUjTopltK+zwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ+puxOCHFehypPCpuLHhzVMlS7VMB8GA1UdIwQY
MBaAFMu1JeJjqVsWUgZL3/iWTUv2K1M9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTdVbDRtT3BXeFpTQmt2Zi1KWk5TX1lyVXowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9iZDcyMDktNDRlOS00MjNlLTg0YTQt
Yjg5ZGM0ZmQ2ZWUwLzEveTdVbDRtT3BXeFpTQmt2Zi1KWk5TX1lyVXowLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9iZDcyMDktNDRlOS00MjNlLTg0YTQtYjg5ZGM0ZmQ2ZWUw
LzEveTdVbDRtT3BXeFpTQmt2Zi1KWk5TX1lyVXowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe/aZvkvh
EkanhAxmtz/uskMHvMKV7g8m9l6qKKPxjj8VoPwEYcSwEaouHuhb2v7aPT3AQLUU
ohl72jpAtQs1S5rDOZLhPtOA7j/I769ZNCBewLw9txH6dLJmRxSuS+HZ+w2k7rGn
h+2+JGWLFirHkPw5SKgqeCdWb4+fqKB+36v3d1yfGIpKuDcEG6/m1JDz809V3YcR
o2zBpHmH64kBuhCgXgOxu2x3kMuOTahSnk13AfqaqA9b024nC1mV5lzZyMXjtbXo
Y4Xn23/PoK0iZPrbZIVi8EjP9xyzrVBB9GdvxSt6gU8y1KDLvTmmnpLy07IuMR3T
82NhjIntTpJhWA==
-----END CERTIFICATE-----
Generated at Thu Aug 7 07:19:57 2025 by rpki-client