Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
File: yQs5SsYzN2B_obsOq6EUU6gx85g.mft (raw, json)
Hash identifier: /lRjPDmf7wRo+bsgXP5+qo+DktTLZiWUJcGXF0gEb3s=
Subject key identifier: 8C:13:88:9D:D9:01:B2:89:AF:25:F0:11:30:3A:0A:B4:04:EA:D2:7C
Authority key identifier: C9:0B:39:4A:C6:33:37:60:7F:A1:BB:0E:AB:A1:14:53:A8:31:F3:98
Certificate issuer: /CN=c90b394ac63337607fa1bb0eaba11453a831f398
Certificate serial: 019A4D3D1F94D989BDB80377B5E75631D2EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
Manifest number: 0DAA
Signing time: Tue 04 Nov 2025 05:00:42 +0000
Manifest this update: Tue 04 Nov 2025 05:00:42 +0000
Manifest next update: Wed 05 Nov 2025 05:00:42 +0000
Files and hashes: 1: xYOsm8BUsmYBwfKFXCGnakfV_m8.roa (hash: 061quaNl9U6/3ODiu8AkctDs7yOiVTs6PkYfEN9U9Cs=)
2: yQs5SsYzN2B_obsOq6EUU6gx85g.crl (hash: lITM5aHW5xUMWfaYhH8OPHdFjo9K9yYe3HBOIWwVK/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3d:1f:94:d9:89:bd:b8:03:77:b5:e7:56:31:d2:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c90b394ac63337607fa1bb0eaba11453a831f398
Validity
Not Before: Nov 4 05:00:42 2025 GMT
Not After : Nov 5 05:00:42 2025 GMT
Subject: CN=8c13889dd901b289af25f011303a0ab404ead27c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fe:76:92:d2:ae:85:dc:a2:29:ed:f8:3a:b9:
54:fb:ae:ae:5e:cc:38:cd:3d:fe:2b:10:43:97:36:
45:17:2a:6a:f1:e4:7a:7f:9a:af:bc:5c:3d:9d:91:
81:92:1c:55:9f:64:aa:32:75:01:9f:14:bf:e5:88:
48:41:0e:ff:c4:64:49:8c:b8:92:f5:ad:5c:a6:1c:
1c:45:91:27:f4:66:2f:43:e7:09:09:16:b8:e0:8a:
5a:42:9e:9d:29:97:c3:74:f4:54:6d:cd:3e:a2:03:
52:69:92:b1:b0:f1:ad:dd:2b:c3:88:6a:37:f9:b4:
53:94:27:0d:11:6d:70:17:74:d2:19:d8:0a:62:50:
20:19:a3:fb:69:18:3e:86:9b:d2:38:d6:10:ce:e2:
b2:da:f9:67:7d:5e:99:48:63:38:47:a4:7a:28:d4:
2e:32:e2:44:7e:f5:f5:f0:c5:20:75:df:bf:dd:3f:
35:c0:47:6f:a1:db:87:58:94:73:47:29:aa:5b:ab:
96:44:ff:ca:01:f4:19:5c:d6:31:6d:8a:97:92:d5:
6e:b2:ea:79:8c:54:ac:4c:54:e2:73:16:02:46:6a:
78:d0:42:06:c6:9c:1e:71:25:58:71:e3:f6:c0:ea:
27:58:0e:e8:b3:6c:35:c1:76:e5:4c:b2:13:60:39:
a4:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:13:88:9D:D9:01:B2:89:AF:25:F0:11:30:3A:0A:B4:04:EA:D2:7C
X509v3 Authority Key Identifier:
keyid:C9:0B:39:4A:C6:33:37:60:7F:A1:BB:0E:AB:A1:14:53:A8:31:F3:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:8d:73:e1:3b:cf:5e:2f:9d:47:c6:97:4b:4a:d2:45:29:72:
04:4e:a4:90:7f:bb:f8:fa:1e:0e:86:7e:2f:e6:e6:4a:0b:34:
18:e5:9c:ab:9c:a7:24:78:14:68:6f:3d:70:28:ff:df:f2:cf:
42:a4:5a:43:e2:1b:27:54:a1:0a:c9:2c:c7:3a:5d:40:c4:20:
66:77:13:c4:84:a8:c4:a9:0b:ef:ba:22:dc:25:36:d4:62:16:
42:6a:16:48:c5:c6:8a:f0:20:6d:7b:81:7f:05:1d:4a:5e:9e:
a3:e2:6b:06:13:50:be:48:fd:4f:2a:b4:a9:b9:c2:e0:5a:c9:
e6:bf:c1:20:41:42:c7:af:d0:85:e1:58:d5:33:05:66:87:8d:
2e:b2:55:46:b4:c6:01:9f:4f:f5:48:4d:ea:ba:be:a3:8b:39:
c7:cf:25:e8:7f:df:6c:ea:74:22:57:85:c9:97:bd:7c:00:c9:
b1:7e:7f:4e:d5:b2:8b:55:47:b4:41:73:b8:83:b4:fb:10:43:
66:4d:38:a0:19:b4:e5:a4:4e:ed:15:ba:b6:e2:89:86:27:6f:
26:4c:e8:1a:07:60:e9:fb:fc:17:fe:07:9b:7d:02:db:28:e3:
f0:06:c7:f0:7a:b0:16:9d:1b:7c:0f:58:9e:91:8e:86:09:19:
2a:24:d7:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNPR+U2Ym9uAN3tedWMdLrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5MGIzOTRhYzYzMzM3NjA3ZmExYmIwZWFiYTExNDUzYTgz
MWYzOTgwHhcNMjUxMTA0MDUwMDQyWhcNMjUxMTA1MDUwMDQyWjAzMTEwLwYDVQQD
Eyg4YzEzODg5ZGQ5MDFiMjg5YWYyNWYwMTEzMDNhMGFiNDA0ZWFkMjdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxf52ktKuhdyiKe34OrlU+66uXsw4
zT3+KxBDlzZFFypq8eR6f5qvvFw9nZGBkhxVn2SqMnUBnxS/5YhIQQ7/xGRJjLiS
9a1cphwcRZEn9GYvQ+cJCRa44IpaQp6dKZfDdPRUbc0+ogNSaZKxsPGt3SvDiGo3
+bRTlCcNEW1wF3TSGdgKYlAgGaP7aRg+hpvSONYQzuKy2vlnfV6ZSGM4R6R6KNQu
MuJEfvX18MUgdd+/3T81wEdvoduHWJRzRymqW6uWRP/KAfQZXNYxbYqXktVusup5
jFSsTFTicxYCRmp40EIGxpwecSVYceP2wOonWA7os2w1wXblTLITYDmkGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIwTiJ3ZAbKJryXwETA6CrQE6tJ8MB8GA1UdIwQY
MBaAFMkLOUrGMzdgf6G7DquhFFOoMfOYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVFzNVNzWXpOMkJfb2JzT3E2RVVVNmd4ODVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni83ZDc4NGItNjYzOS00YmMwLTlhYjkt
MWEyMDBlNDFiMDA2LzEveVFzNVNzWXpOMkJfb2JzT3E2RVVVNmd4ODVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni83ZDc4NGItNjYzOS00YmMwLTlhYjktMWEyMDBlNDFiMDA2
LzEveVFzNVNzWXpOMkJfb2JzT3E2RVVVNmd4ODVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiI1z4TvP
Xi+dR8aXS0rSRSlyBE6kkH+7+PoeDoZ+L+bmSgs0GOWcq5ynJHgUaG89cCj/3/LP
QqRaQ+IbJ1ShCsksxzpdQMQgZncTxISoxKkL77oi3CU21GIWQmoWSMXGivAgbXuB
fwUdSl6eo+JrBhNQvkj9Tyq0qbnC4FrJ5r/BIEFCx6/QheFY1TMFZoeNLrJVRrTG
AZ9P9UhN6rq+o4s5x88l6H/fbOp0IleFyZe9fADJsX5/TtWyi1VHtEFzuIO0+xBD
Zk04oBm05aRO7RW6tuKJhidvJkzoGgdg6fv8F/4Hm30C2yjj8AbH8HqwFp0bfA9Y
npGOhgkZKiTX8Q==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:50:34 2025 by rpki-client