Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.mft
File: yEg4FrQ75KdvYGCDK-xJkvpamM4.mft (raw, json)
Hash identifier: 9tHv4uEWzYVK8SsHvanHxjqGYD7x9IYmqk0Ku6O4Z/0=
Subject key identifier: 71:F0:0A:D3:41:2D:16:70:EA:26:B4:45:CE:B0:BB:13:A2:C0:AA:36
Authority key identifier: C8:48:38:16:B4:3B:E4:A7:6F:60:60:83:2B:EC:49:92:FA:5A:98:CE
Certificate issuer: /CN=c8483816b43be4a76f6060832bec4992fa5a98ce
Certificate serial: 019A4F2B7E84E884EE92D21CCC095E5A65BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yEg4FrQ75KdvYGCDK-xJkvpamM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.mft
Manifest number: 0731
Signing time: Tue 04 Nov 2025 14:00:41 +0000
Manifest this update: Tue 04 Nov 2025 14:00:41 +0000
Manifest next update: Wed 05 Nov 2025 14:00:41 +0000
Files and hashes: 1: yEg4FrQ75KdvYGCDK-xJkvpamM4.crl (hash: tDTt55vBf+0rIKR9KtN0cYBAflclXwTFNy+Luyv3vaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/yEg4FrQ75KdvYGCDK-xJkvpamM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:7e:84:e8:84:ee:92:d2:1c:cc:09:5e:5a:65:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8483816b43be4a76f6060832bec4992fa5a98ce
Validity
Not Before: Nov 4 14:00:41 2025 GMT
Not After : Nov 5 14:00:41 2025 GMT
Subject: CN=71f00ad3412d1670ea26b445ceb0bb13a2c0aa36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:59:29:6b:af:99:01:14:e0:f6:17:4a:d4:e7:
48:f4:07:e8:a7:81:45:ba:ad:e5:b0:3b:1a:c2:7c:
b1:82:6c:62:57:e5:29:4e:58:7f:00:49:c2:4a:28:
b5:cf:d2:17:74:57:9a:8b:cc:2a:d5:c2:7c:3b:61:
49:9f:49:2e:8f:84:a7:4d:52:c5:d2:fb:9f:22:96:
d2:51:d7:c2:99:8f:cc:d2:3b:a9:9a:88:38:95:c5:
f5:d4:df:7b:a4:9b:9d:63:51:70:6d:a3:6c:1d:7e:
cb:99:64:84:ee:9f:7f:73:42:72:9b:8f:f4:49:e1:
7b:92:98:ab:65:68:ff:ab:b5:c0:c2:9c:68:b9:44:
53:e6:70:02:4d:ee:f9:2e:30:03:87:6e:17:05:89:
ca:65:ca:db:f7:5b:a0:c3:c0:c9:bb:9b:b3:b2:30:
22:5d:73:d3:b0:15:b0:35:11:b7:89:50:cf:be:ca:
dd:8b:cf:71:b1:98:47:0e:19:6b:ad:e6:da:d5:69:
a0:fb:77:2e:ed:8f:28:ec:87:75:b8:8e:b5:fd:07:
9d:1d:a3:40:4f:13:27:e6:4e:ad:18:76:fb:2b:59:
50:0e:3a:9b:70:22:ef:cd:b3:81:48:25:0d:f1:84:
de:cd:dd:07:d7:b2:38:ae:0d:2d:a1:bb:7d:90:50:
ca:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F0:0A:D3:41:2D:16:70:EA:26:B4:45:CE:B0:BB:13:A2:C0:AA:36
X509v3 Authority Key Identifier:
keyid:C8:48:38:16:B4:3B:E4:A7:6F:60:60:83:2B:EC:49:92:FA:5A:98:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yEg4FrQ75KdvYGCDK-xJkvpamM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:54:b7:2a:97:31:54:29:bd:39:c3:16:d0:26:62:94:ad:ca:
ed:02:83:47:c0:7c:38:61:d2:2f:09:28:cb:66:ec:ce:93:f9:
91:bf:11:4a:70:ef:ad:81:ef:e2:cc:81:0a:46:b8:55:f8:55:
0b:22:59:ce:8a:53:a9:ab:d6:64:36:e8:c7:a5:09:f2:ec:49:
fe:ef:4c:bb:2b:a4:2f:bf:04:9e:fd:48:45:c5:fe:02:64:97:
14:04:7a:ba:1f:87:9b:b9:16:56:15:39:0b:93:26:da:d6:3a:
90:57:a4:5c:62:37:e6:c5:70:36:88:89:b5:64:49:0b:e1:ca:
df:6c:99:eb:ed:9f:27:a1:56:16:43:9f:f0:cb:8d:2e:7a:d6:
30:5c:8a:67:78:61:67:dc:05:dc:72:b8:2b:9f:72:49:7e:21:
57:79:52:b0:e9:34:32:12:a2:98:23:66:e9:e9:a9:1c:9a:ef:
f3:5a:cf:30:2a:fb:84:25:48:f2:47:89:66:b6:2a:52:fa:2f:
c4:8c:7c:c0:4e:de:30:42:19:59:1a:c3:9d:82:62:b3:c0:b3:
79:a4:42:ae:b8:ee:11:da:c1:07:6f:4e:d5:8a:50:2e:df:aa:
12:2a:dd:31:e4:15:2c:88:a3:9a:fa:f1:05:24:d4:aa:c7:05:
e6:5a:ee:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPK36E6ITuktIczAleWmW9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4NDgzODE2YjQzYmU0YTc2ZjYwNjA4MzJiZWM0OTkyZmE1
YTk4Y2UwHhcNMjUxMTA0MTQwMDQxWhcNMjUxMTA1MTQwMDQxWjAzMTEwLwYDVQQD
Eyg3MWYwMGFkMzQxMmQxNjcwZWEyNmI0NDVjZWIwYmIxM2EyYzBhYTM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlkpa6+ZARTg9hdK1OdI9Afop4FF
uq3lsDsawnyxgmxiV+UpTlh/AEnCSii1z9IXdFeai8wq1cJ8O2FJn0kuj4SnTVLF
0vufIpbSUdfCmY/M0jupmog4lcX11N97pJudY1FwbaNsHX7LmWSE7p9/c0Jym4/0
SeF7kpirZWj/q7XAwpxouURT5nACTe75LjADh24XBYnKZcrb91ugw8DJu5uzsjAi
XXPTsBWwNRG3iVDPvsrdi89xsZhHDhlrreba1Wmg+3cu7Y8o7Id1uI61/QedHaNA
TxMn5k6tGHb7K1lQDjqbcCLvzbOBSCUN8YTezd0H17I4rg0tobt9kFDKDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHHwCtNBLRZw6ia0Rc6wuxOiwKo2MB8GA1UdIwQY
MBaAFMhIOBa0O+Snb2BggyvsSZL6WpjOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUVnNEZyUTc1S2R2WUdDREsteEprdnBhbU00LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8xZDJjNTgtYTA3Yi00NDlkLTg0YWQt
MmEyMGE2MDhmNjMxLzEveUVnNEZyUTc1S2R2WUdDREsteEprdnBhbU00Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC8xZDJjNTgtYTA3Yi00NDlkLTg0YWQtMmEyMGE2MDhmNjMx
LzEveUVnNEZyUTc1S2R2WUdDREsteEprdnBhbU00LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbFS3Kpcx
VCm9OcMW0CZilK3K7QKDR8B8OGHSLwkoy2bszpP5kb8RSnDvrYHv4syBCka4VfhV
CyJZzopTqavWZDbox6UJ8uxJ/u9MuyukL78Env1IRcX+AmSXFAR6uh+Hm7kWVhU5
C5Mm2tY6kFekXGI35sVwNoiJtWRJC+HK32yZ6+2fJ6FWFkOf8MuNLnrWMFyKZ3hh
Z9wF3HK4K59ySX4hV3lSsOk0MhKimCNm6empHJrv81rPMCr7hCVI8keJZrYqUvov
xIx8wE7eMEIZWRrDnYJis8CzeaRCrrjuEdrBB29O1YpQLt+qEirdMeQVLIijmvrx
BSTUqscF5lruyQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 17:58:35 2025 by rpki-client