Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
File: YEBzL9vKpSkA2yRiB1v07xUVlpU.mft (raw, json)
Hash identifier: n8PEWFNmjF9hD9L49yDQiUO6baW/0np3JW4jxyLIzA8=
Subject key identifier: 7B:AD:2B:61:36:0F:A8:C8:84:1F:11:B1:09:AC:7C:26:24:8A:68:3C
Authority key identifier: 60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
Certificate issuer: /CN=6040732fdbcaa52900db2462075bf4ef15159695
Certificate serial: 019A4E86CBC2BE8ACE5C153FB2371613BA60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
Manifest number: 05BD
Signing time: Tue 04 Nov 2025 11:00:48 +0000
Manifest this update: Tue 04 Nov 2025 11:00:48 +0000
Manifest next update: Wed 05 Nov 2025 11:00:48 +0000
Files and hashes: 1: 2zI93eWS4MAq1q_HzWCmHMK0vvc.roa (hash: OPrS0FrS6pSekQT7FXidaqihz4eIxPAHQ00wl3WWNU8=)
2: YEBzL9vKpSkA2yRiB1v07xUVlpU.crl (hash: 5U7NIZqsoK750tQYnGcx40WX71eTjlSAwsg1J9MIkgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:cb:c2:be:8a:ce:5c:15:3f:b2:37:16:13:ba:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6040732fdbcaa52900db2462075bf4ef15159695
Validity
Not Before: Nov 4 11:00:48 2025 GMT
Not After : Nov 5 11:00:48 2025 GMT
Subject: CN=7bad2b61360fa8c8841f11b109ac7c26248a683c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5c:25:a3:da:fb:2d:4b:0d:58:c2:98:77:b0:
73:95:f5:17:be:f9:f5:81:c5:7d:da:4a:2e:10:06:
74:5b:f3:bd:c2:7f:a3:34:11:c9:38:be:1d:88:30:
59:29:b3:72:68:34:d1:77:eb:a7:1a:19:6a:b9:2b:
78:a2:34:2f:1b:7e:0a:ad:14:e4:f6:2d:38:0f:5e:
88:2a:71:09:e3:4d:35:64:f1:2a:b3:c2:5e:64:b7:
4c:f0:21:65:a9:f1:ef:91:48:f6:ea:d9:f1:97:46:
f5:07:f4:1e:29:06:db:cc:a5:4c:f3:10:ce:5e:12:
57:b8:bc:89:f0:8e:2d:e8:2a:5d:9e:c6:35:46:c5:
57:32:f0:a6:96:07:e8:4d:e6:56:83:67:d1:37:17:
70:09:b6:c4:dd:f9:58:cb:9d:ff:f0:23:dd:2e:3c:
10:3f:78:7f:a5:6d:f9:1c:a9:8c:dc:4e:d7:e7:79:
7c:3a:ec:b3:b3:d2:0f:27:69:80:c5:14:4d:8c:31:
cf:a7:34:32:6e:db:78:8d:68:a4:2f:44:da:fa:54:
de:e7:c9:4a:5c:17:c5:19:b4:78:9b:9e:6a:d4:a3:
a3:e1:09:8f:49:5a:5a:e4:b3:fb:28:a6:12:ff:9b:
75:2d:ef:90:03:1b:75:47:56:ac:11:10:a4:2b:61:
2d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:AD:2B:61:36:0F:A8:C8:84:1F:11:B1:09:AC:7C:26:24:8A:68:3C
X509v3 Authority Key Identifier:
keyid:60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:35:b1:0a:e4:80:d3:b5:b5:d8:22:f3:f6:bb:80:d4:83:57:
52:c0:d2:98:fb:97:c7:78:61:b7:1c:c9:22:d6:74:a7:95:6f:
48:02:d8:f1:36:c8:ba:60:4e:db:e4:66:ab:90:3c:97:da:a6:
06:2a:1c:9f:63:fb:17:e8:a9:ad:f3:65:e7:a4:4e:6f:b9:60:
88:d2:d9:99:c3:0d:1c:7a:df:01:b3:2b:be:35:84:af:80:34:
7b:13:9f:45:5c:34:10:b3:31:06:82:ff:42:49:47:cc:7e:8c:
81:61:4d:60:8e:0f:0c:56:ac:e7:ea:87:16:d3:f9:58:d3:7a:
5d:fb:d4:44:84:89:f1:18:fa:f5:b4:6e:77:55:45:68:72:f3:
de:5c:c5:a7:7e:0d:e7:9d:e6:e9:f3:2c:16:3d:97:9b:6e:dc:
18:0b:01:58:8a:63:ec:06:c4:14:53:58:99:af:3a:75:80:94:
e6:b2:d9:32:25:c7:69:ac:69:a8:32:ea:88:04:4e:f5:c8:2c:
60:43:14:cb:72:20:33:7d:a8:ed:06:b4:7a:b0:b6:48:86:c0:
f2:0f:5e:1d:5b:20:14:bf:f4:a4:53:51:62:28:98:e7:b8:42:
c4:4a:72:a7:61:c6:7e:fd:61:d9:ac:e4:44:d5:07:0b:de:fa:
e1:85:3c:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOhsvCvorOXBU/sjcWE7pgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNDA3MzJmZGJjYWE1MjkwMGRiMjQ2MjA3NWJmNGVmMTUx
NTk2OTUwHhcNMjUxMTA0MTEwMDQ4WhcNMjUxMTA1MTEwMDQ4WjAzMTEwLwYDVQQD
Eyg3YmFkMmI2MTM2MGZhOGM4ODQxZjExYjEwOWFjN2MyNjI0OGE2ODNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVwlo9r7LUsNWMKYd7BzlfUXvvn1
gcV92kouEAZ0W/O9wn+jNBHJOL4diDBZKbNyaDTRd+unGhlquSt4ojQvG34KrRTk
9i04D16IKnEJ4001ZPEqs8JeZLdM8CFlqfHvkUj26tnxl0b1B/QeKQbbzKVM8xDO
XhJXuLyJ8I4t6CpdnsY1RsVXMvCmlgfoTeZWg2fRNxdwCbbE3flYy53/8CPdLjwQ
P3h/pW35HKmM3E7X53l8Ouyzs9IPJ2mAxRRNjDHPpzQybtt4jWikL0Ta+lTe58lK
XBfFGbR4m55q1KOj4QmPSVpa5LP7KKYS/5t1Le+QAxt1R1asERCkK2EtIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHutK2E2D6jIhB8RsQmsfCYkimg8MB8GA1UdIwQY
MBaAFGBAcy/byqUpANskYgdb9O8VFZaVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUVCekw5dktwU2tBMnlSaUIxdjA3eFVWbHBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy81Njc2YTMtOWMzOS00ZGIwLTk1MWUt
ZDJiNjk4MmJjNDg0LzEvWUVCekw5dktwU2tBMnlSaUIxdjA3eFVWbHBVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy81Njc2YTMtOWMzOS00ZGIwLTk1MWUtZDJiNjk4MmJjNDg0
LzEvWUVCekw5dktwU2tBMnlSaUIxdjA3eFVWbHBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmDWxCuSA
07W12CLz9ruA1INXUsDSmPuXx3hhtxzJItZ0p5VvSALY8TbIumBO2+Rmq5A8l9qm
Biocn2P7F+iprfNl56ROb7lgiNLZmcMNHHrfAbMrvjWEr4A0exOfRVw0ELMxBoL/
QklHzH6MgWFNYI4PDFas5+qHFtP5WNN6XfvURISJ8Rj69bRud1VFaHLz3lzFp34N
553m6fMsFj2Xm27cGAsBWIpj7AbEFFNYma86dYCU5rLZMiXHaaxpqDLqiARO9cgs
YEMUy3IgM32o7Qa0erC2SIbA8g9eHVsgFL/0pFNRYiiY57hCxEpyp2HGfv1h2azk
RNUHC9764YU8KA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:14:01 2025 by rpki-client