Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
File: oYanahiZ2_kCnhrv2QUXe7CdNo0.mft (raw, json)
Hash identifier: dsXd+J19zlbvlHeEPEn4f1U7mBFoGq91BND6jeFuU9k=
Subject key identifier: 72:BC:33:E6:D8:74:19:2C:F5:36:7D:DF:2B:0C:3F:AE:27:92:5C:9E
Authority key identifier: A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
Certificate issuer: /CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Certificate serial: 019A4EF5124335BFCCD892A9BDC5E3795496
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
Manifest number: 0B9E
Signing time: Tue 04 Nov 2025 13:01:14 +0000
Manifest this update: Tue 04 Nov 2025 13:01:14 +0000
Manifest next update: Wed 05 Nov 2025 13:01:14 +0000
Files and hashes: 1: bcgHeTecNhcHR9QWO6gmvpmmI5c.roa (hash: EV6/wlUYGCbS7xEazmx8eI5Bar/BgAFt51P9o3UlOuQ=)
2: oYanahiZ2_kCnhrv2QUXe7CdNo0.crl (hash: 3FU0MlYF3IVVS8+6GZ1qhWTiK78xrgZ5dmu9Czs1LSw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:12:43:35:bf:cc:d8:92:a9:bd:c5:e3:79:54:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Validity
Not Before: Nov 4 13:01:14 2025 GMT
Not After : Nov 5 13:01:14 2025 GMT
Subject: CN=72bc33e6d874192cf5367ddf2b0c3fae27925c9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e9:7a:97:51:b9:f0:77:de:98:e5:0e:1b:68:
1d:fc:ec:eb:05:cc:fd:70:d9:c7:a9:16:27:69:a8:
52:74:23:46:d1:5f:09:c4:22:7d:15:db:b8:39:21:
d7:dd:df:75:29:0a:75:18:16:1b:fd:94:05:d5:9d:
0a:5d:2c:e3:95:c7:6a:1e:ce:5f:ec:9a:75:ff:6f:
ef:d6:8c:b5:7f:ca:a4:8e:d0:bb:d1:28:e4:75:8e:
09:ed:69:b6:f1:05:88:b8:5c:e3:74:ce:f0:df:41:
5d:1f:6e:86:ab:8a:bb:a7:f1:fc:ee:26:83:62:d2:
05:0c:d2:bb:b9:88:51:e9:d7:4b:73:f9:af:0c:03:
8a:8b:63:06:f0:10:10:bd:d3:22:5e:43:84:35:5a:
e1:81:2e:64:f3:5b:89:87:2a:6a:fd:34:87:a1:db:
17:0a:94:63:10:ee:78:f3:dd:a4:53:c6:fa:63:a6:
5b:a0:be:37:f6:6e:e7:b2:b6:cb:49:bb:58:d7:95:
e6:86:19:75:62:2f:93:1c:c6:5c:1e:a4:49:3b:1a:
e5:a4:72:70:de:c8:8e:50:48:e2:37:61:53:7e:dd:
18:bd:f6:62:e5:dd:af:2e:58:79:6e:28:1e:9a:a2:
9f:be:37:9b:bf:da:e7:06:b9:ab:b0:43:62:ae:6e:
08:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:BC:33:E6:D8:74:19:2C:F5:36:7D:DF:2B:0C:3F:AE:27:92:5C:9E
X509v3 Authority Key Identifier:
keyid:A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:64:0f:8d:8c:b4:89:95:67:e2:57:b1:82:0c:28:83:9b:1b:
2e:74:a7:5d:77:bd:e1:4a:99:dd:47:b6:f4:f4:f5:19:70:fb:
2a:d3:3d:da:81:0a:0f:a1:29:73:05:03:2a:84:2b:ff:c0:01:
65:9f:30:00:af:85:f1:f2:10:7b:4e:58:63:52:58:ed:7b:ed:
94:b3:21:b5:4e:3f:7c:e5:a3:3c:ce:a0:99:ec:bd:65:73:fd:
f7:5f:9a:d6:2d:83:77:bf:5a:f6:fb:fb:20:77:0d:0a:c7:39:
a4:6a:90:cf:63:c6:36:7a:ed:f3:bd:36:26:a9:4b:c0:a3:18:
b5:83:9e:62:95:de:f4:52:41:36:d7:d5:46:11:5b:9d:60:ea:
0b:08:cf:b2:fe:28:eb:d6:66:5c:b2:5f:0e:8e:d5:7e:bc:75:
14:9e:34:e8:62:da:f5:9c:2c:fc:6d:6e:81:04:50:d1:e8:41:
bb:f8:6f:3a:10:41:23:12:56:ba:8c:b9:ea:6f:dc:3a:4d:3e:
4f:f6:cf:17:9a:0a:c4:b4:b0:86:56:fa:e8:be:b3:8d:5a:65:
91:d6:f6:19:4c:73:6b:3d:ad:20:70:54:df:21:98:ae:8c:89:
39:9b:53:02:f3:ab:2c:e9:de:82:89:11:5e:23:dd:51:15:45:
ff:e0:63:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9RJDNb/M2JKpvcXjeVSWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExODZhNzZhMTg5OWRiZjkwMjllMWFlZmQ5MDUxNzdiYjA5
ZDM2OGQwHhcNMjUxMTA0MTMwMTE0WhcNMjUxMTA1MTMwMTE0WjAzMTEwLwYDVQQD
Eyg3MmJjMzNlNmQ4NzQxOTJjZjUzNjdkZGYyYjBjM2ZhZTI3OTI1YzllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxOl6l1G58HfemOUOG2gd/OzrBcz9
cNnHqRYnaahSdCNG0V8JxCJ9Fdu4OSHX3d91KQp1GBYb/ZQF1Z0KXSzjlcdqHs5f
7Jp1/2/v1oy1f8qkjtC70SjkdY4J7Wm28QWIuFzjdM7w30FdH26Gq4q7p/H87iaD
YtIFDNK7uYhR6ddLc/mvDAOKi2MG8BAQvdMiXkOENVrhgS5k81uJhypq/TSHodsX
CpRjEO54892kU8b6Y6ZboL439m7nsrbLSbtY15Xmhhl1Yi+THMZcHqRJOxrlpHJw
3siOUEjiN2FTft0YvfZi5d2vLlh5bigemqKfvjebv9rnBrmrsENirm4IEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHK8M+bYdBks9TZ93ysMP64nklyeMB8GA1UdIwQY
MBaAFKGGp2oYmdv5Ap4a79kFF3uwnTaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEt
MzEyZTViNDkxMTQ2LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEtMzEyZTViNDkxMTQ2
LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATWQPjYy0
iZVn4lexggwog5sbLnSnXXe94UqZ3Ue29PT1GXD7KtM92oEKD6EpcwUDKoQr/8AB
ZZ8wAK+F8fIQe05YY1JY7XvtlLMhtU4/fOWjPM6gmey9ZXP991+a1i2Dd79a9vv7
IHcNCsc5pGqQz2PGNnrt8702JqlLwKMYtYOeYpXe9FJBNtfVRhFbnWDqCwjPsv4o
69ZmXLJfDo7Vfrx1FJ406GLa9Zws/G1ugQRQ0ehBu/hvOhBBIxJWuoy56m/cOk0+
T/bPF5oKxLSwhlb66L6zjVplkdb2GUxzaz2tIHBU3yGYroyJOZtTAvOrLOnegokR
XiPdURVF/+BjEg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:55:26 2025 by rpki-client