Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
File: yVcXmb2ok6GGC0phbFYnivXsksU.mft (raw, json)
Hash identifier: xdPpMhkdy7qwW7ntq+YZX4H13YVafhKih1j6kUvfCQo=
Subject key identifier: C4:96:1D:5B:AE:BF:88:1E:9B:79:C2:2A:18:96:4F:A6:6C:3F:49:75
Authority key identifier: C9:57:17:99:BD:A8:93:A1:86:0B:4A:61:6C:56:27:8A:F5:EC:92:C5
Certificate issuer: /CN=c9571799bda893a1860b4a616c56278af5ec92c5
Certificate serial: 019A4C611E2E1CC364F12BB8D36D20A3F4D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yVcXmb2ok6GGC0phbFYnivXsksU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
Manifest number: 0C10
Signing time: Tue 04 Nov 2025 01:00:24 +0000
Manifest this update: Tue 04 Nov 2025 01:00:24 +0000
Manifest next update: Wed 05 Nov 2025 01:00:24 +0000
Files and hashes: 1: yVcXmb2ok6GGC0phbFYnivXsksU.crl (hash: knVendK5XPoVM+9hjcY4q2ms2Eo7yIu4PcqVLadk04k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yVcXmb2ok6GGC0phbFYnivXsksU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:61:1e:2e:1c:c3:64:f1:2b:b8:d3:6d:20:a3:f4:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9571799bda893a1860b4a616c56278af5ec92c5
Validity
Not Before: Nov 4 01:00:24 2025 GMT
Not After : Nov 5 01:00:24 2025 GMT
Subject: CN=c4961d5baebf881e9b79c22a18964fa66c3f4975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e4:49:05:d1:d3:ba:36:57:2e:a5:f6:19:fd:
43:20:5f:79:2d:41:09:2d:46:6e:b5:00:9c:a6:bb:
ce:37:2f:42:66:2a:8d:5e:e1:82:c0:f1:94:53:7b:
29:e1:87:e2:ae:d7:b1:98:a3:3f:af:4d:0d:f4:76:
3b:e7:8b:01:85:bc:fd:da:e4:cf:5d:61:53:3d:2d:
34:35:57:b5:f1:aa:5a:3f:cf:60:d7:1b:aa:ec:5b:
5a:02:35:65:13:04:74:8e:89:5b:3d:99:8c:ea:4f:
9d:35:44:92:f7:7b:11:c6:ce:fa:ad:82:b2:e1:47:
3e:01:1d:29:04:c5:08:53:4b:7a:9e:d3:44:23:86:
92:ef:f5:8e:2f:36:c2:31:7a:8b:bb:a0:ef:f1:cb:
b1:9e:7e:2a:b3:0f:e3:a2:45:e2:a0:0c:a2:e9:7e:
75:e2:3f:62:7a:90:7b:82:3b:56:fe:9f:c0:6d:3a:
be:f6:14:72:f2:9c:be:36:6e:31:b4:49:99:43:25:
f3:d3:fd:c4:d3:a0:96:32:ba:96:3d:8e:47:61:18:
55:78:d4:28:65:90:8f:f6:5f:51:71:c3:f5:f7:c0:
14:7d:91:b5:27:8c:07:ca:8c:00:d6:6a:53:2c:eb:
39:ca:e0:41:7b:ea:e5:ca:6c:e1:b8:6a:7a:99:50:
5d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:96:1D:5B:AE:BF:88:1E:9B:79:C2:2A:18:96:4F:A6:6C:3F:49:75
X509v3 Authority Key Identifier:
keyid:C9:57:17:99:BD:A8:93:A1:86:0B:4A:61:6C:56:27:8A:F5:EC:92:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yVcXmb2ok6GGC0phbFYnivXsksU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:83:09:49:27:aa:3f:ed:66:79:b6:0c:3b:ff:3b:61:07:7b:
bf:b1:ff:f5:0b:99:86:2c:17:8c:3d:ad:9a:86:35:00:99:1e:
3c:3e:cb:8d:bd:ec:19:aa:15:f0:e6:38:ba:41:c9:63:17:b9:
31:2c:2d:90:c5:c4:9c:c6:eb:dd:ec:a7:a2:6b:57:42:f3:f3:
ba:9f:39:1f:1e:5e:23:b0:b0:5d:98:71:7c:6a:cb:a3:43:2f:
34:01:96:54:21:3d:f4:c3:ca:dc:9a:a0:6a:b2:20:04:cd:a9:
81:b7:66:ac:91:32:e6:a1:04:21:ac:0c:d5:76:d5:a3:8c:04:
81:f3:2f:ec:b2:58:50:af:ef:b8:ef:7f:f2:eb:0f:ea:e1:67:
5a:b2:a8:dc:27:24:73:fa:99:7f:3e:29:ad:d3:56:c3:cc:57:
72:c2:52:12:73:8a:5a:9f:70:6f:ee:fd:0e:50:ab:36:06:65:
3e:bc:62:b8:c9:ab:f0:2f:02:f8:eb:1e:12:cf:1f:a6:b8:4d:
c3:88:a2:b6:72:e4:de:ee:e9:07:16:7a:a2:1e:0a:2a:83:2e:
4c:51:c4:7c:db:ce:29:fe:66:6a:49:8d:ae:ab:6f:b5:17:d1:
47:ec:8a:9f:c8:b3:f2:5f:0f:17:47:21:5e:de:9e:38:91:9e:
d9:55:fa:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpMYR4uHMNk8Su4020go/TXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5NTcxNzk5YmRhODkzYTE4NjBiNGE2MTZjNTYyNzhhZjVl
YzkyYzUwHhcNMjUxMTA0MDEwMDI0WhcNMjUxMTA1MDEwMDI0WjAzMTEwLwYDVQQD
EyhjNDk2MWQ1YmFlYmY4ODFlOWI3OWMyMmExODk2NGZhNjZjM2Y0OTc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+RJBdHTujZXLqX2Gf1DIF95LUEJ
LUZutQCcprvONy9CZiqNXuGCwPGUU3sp4YfirtexmKM/r00N9HY754sBhbz92uTP
XWFTPS00NVe18apaP89g1xuq7FtaAjVlEwR0jolbPZmM6k+dNUSS93sRxs76rYKy
4Uc+AR0pBMUIU0t6ntNEI4aS7/WOLzbCMXqLu6Dv8cuxnn4qsw/jokXioAyi6X51
4j9iepB7gjtW/p/AbTq+9hRy8py+Nm4xtEmZQyXz0/3E06CWMrqWPY5HYRhVeNQo
ZZCP9l9RccP198AUfZG1J4wHyowA1mpTLOs5yuBBe+rlymzhuGp6mVBdswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMSWHVuuv4gem3nCKhiWT6ZsP0l1MB8GA1UdIwQY
MBaAFMlXF5m9qJOhhgtKYWxWJ4r17JLFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVZjWG1iMm9rNkdHQzBwaGJGWW5pdlhza3NVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS8wOGVmODctY2Y1NS00YjVkLTk4MjEt
MDM3NDZkN2JkMjk0LzEveVZjWG1iMm9rNkdHQzBwaGJGWW5pdlhza3NVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS8wOGVmODctY2Y1NS00YjVkLTk4MjEtMDM3NDZkN2JkMjk0
LzEveVZjWG1iMm9rNkdHQzBwaGJGWW5pdlhza3NVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnIMJSSeq
P+1mebYMO/87YQd7v7H/9QuZhiwXjD2tmoY1AJkePD7Ljb3sGaoV8OY4ukHJYxe5
MSwtkMXEnMbr3eynomtXQvPzup85Hx5eI7CwXZhxfGrLo0MvNAGWVCE99MPK3Jqg
arIgBM2pgbdmrJEy5qEEIawM1XbVo4wEgfMv7LJYUK/vuO9/8usP6uFnWrKo3Cck
c/qZfz4prdNWw8xXcsJSEnOKWp9wb+79DlCrNgZlPrxiuMmr8C8C+OseEs8fprhN
w4iitnLk3u7pBxZ6oh4KKoMuTFHEfNvOKf5makmNrqtvtRfRR+yKn8iz8l8PF0ch
Xt6eOJGe2VX6kA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 11:00:37 2025 by rpki-client