Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
File: yYDRnDv8xARxVndvAqNJiY5GuQ0.mft (raw, json)
Hash identifier: jFiIOQaP2SImVxyn+IO8Oy20vp9EBGOIxRh5uSySuEM=
Subject key identifier: 06:7F:80:B6:86:32:D3:99:05:9B:4A:27:4F:22:62:B1:49:2D:82:C0
Authority key identifier: C9:80:D1:9C:3B:FC:C4:04:71:56:77:6F:02:A3:49:89:8E:46:B9:0D
Certificate issuer: /CN=c980d19c3bfcc4047156776f02a349898e46b90d
Certificate serial: 019A4D070FE4EAFBF96308501FBC21FEB1CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yYDRnDv8xARxVndvAqNJiY5GuQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
Manifest number: 0A27
Signing time: Tue 04 Nov 2025 04:01:39 +0000
Manifest this update: Tue 04 Nov 2025 04:01:39 +0000
Manifest next update: Wed 05 Nov 2025 04:01:39 +0000
Files and hashes: 1: yYDRnDv8xARxVndvAqNJiY5GuQ0.crl (hash: kfe/gKkFDXgzW1d/nNgAMam1Hxi5pk7vJfczRmH7LVI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yYDRnDv8xARxVndvAqNJiY5GuQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:07:0f:e4:ea:fb:f9:63:08:50:1f:bc:21:fe:b1:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c980d19c3bfcc4047156776f02a349898e46b90d
Validity
Not Before: Nov 4 04:01:39 2025 GMT
Not After : Nov 5 04:01:39 2025 GMT
Subject: CN=067f80b68632d399059b4a274f2262b1492d82c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3e:ff:65:f2:a4:0f:c2:1d:d8:23:e4:12:bd:
fb:ec:f3:81:d6:a4:87:3f:bc:92:67:9d:96:3b:00:
8b:d0:b4:d4:33:e9:01:cf:64:6e:3a:49:0b:31:11:
46:55:f7:f7:e3:1d:88:c8:72:31:27:e5:e0:39:5d:
31:d6:17:c3:da:10:21:84:c0:ad:88:c5:1b:32:c6:
ca:8f:9a:0d:04:62:ee:96:5b:8f:a6:a3:d9:d2:21:
5a:fd:61:fe:35:e4:0e:95:59:3f:23:b4:68:10:55:
d1:2c:0e:4d:98:e2:40:b0:c5:3c:ed:4c:75:ce:9f:
b1:53:0e:f1:94:53:e7:62:f5:f6:8f:d6:e2:97:54:
5e:a6:3b:ec:94:a1:7c:f8:50:59:9c:a3:3d:ef:f2:
30:6c:3c:09:63:d6:82:24:16:f4:74:56:d3:89:81:
8a:53:ad:08:47:73:03:61:27:da:de:d6:fb:99:a6:
eb:7a:dd:c8:3a:20:89:b2:33:9b:d0:8a:a0:da:b1:
91:d8:5e:4c:40:42:49:e2:ad:3a:42:4e:71:60:90:
d6:bb:e2:d9:2f:d1:6d:30:cc:f4:34:4d:2b:54:d2:
93:3b:88:f5:47:81:29:b4:82:31:e2:f4:74:11:12:
94:83:7a:95:8c:55:d7:a4:da:90:25:dd:f3:ac:8e:
44:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:7F:80:B6:86:32:D3:99:05:9B:4A:27:4F:22:62:B1:49:2D:82:C0
X509v3 Authority Key Identifier:
keyid:C9:80:D1:9C:3B:FC:C4:04:71:56:77:6F:02:A3:49:89:8E:46:B9:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yYDRnDv8xARxVndvAqNJiY5GuQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:c9:08:4e:2d:8b:0c:8b:bd:5d:ed:c9:9f:46:b3:eb:ed:d1:
98:fe:7f:5c:b5:af:85:17:31:a7:21:53:79:8d:c5:b5:b1:8c:
53:c6:c4:40:cc:57:4b:80:99:81:bc:88:9a:bb:e5:44:a8:bd:
78:c9:5d:98:bc:2d:81:cb:59:12:c5:61:c6:03:70:db:02:50:
8c:47:08:a7:b1:c4:53:84:84:75:fb:0f:cd:ea:69:bc:c0:68:
3e:85:72:30:b1:6c:ad:23:c8:53:1c:3d:f2:fd:fb:f1:1d:71:
0f:13:b5:51:ca:89:36:a3:68:af:47:dd:81:bb:79:b0:c5:cf:
e8:72:06:c1:92:16:79:68:02:04:cb:b2:68:9a:a6:68:6e:a0:
d5:85:37:66:53:cd:a1:1c:db:ee:56:d5:5b:83:1c:8a:bb:79:
4e:6c:f5:aa:fd:fb:44:a6:bb:3d:02:ed:c5:f3:75:09:77:3e:
90:28:18:75:ab:41:21:f5:50:8a:94:4e:2d:78:9f:90:aa:e0:
b3:78:ab:3a:c0:4c:1f:5d:3e:f1:90:79:7c:40:cd:78:c6:29:
cf:94:7f:2d:7c:8e:61:97:b3:c4:91:5d:6d:47:d9:02:9b:14:
7c:8e:9c:52:96:78:71:ae:2f:9a:fe:86:d0:6f:48:6a:b7:08:
69:fa:76:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNBw/k6vv5YwhQH7wh/rHNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ODBkMTljM2JmY2M0MDQ3MTU2Nzc2ZjAyYTM0OTg5OGU0
NmI5MGQwHhcNMjUxMTA0MDQwMTM5WhcNMjUxMTA1MDQwMTM5WjAzMTEwLwYDVQQD
EygwNjdmODBiNjg2MzJkMzk5MDU5YjRhMjc0ZjIyNjJiMTQ5MmQ4MmMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2j7/ZfKkD8Id2CPkEr377POB1qSH
P7ySZ52WOwCL0LTUM+kBz2RuOkkLMRFGVff34x2IyHIxJ+XgOV0x1hfD2hAhhMCt
iMUbMsbKj5oNBGLulluPpqPZ0iFa/WH+NeQOlVk/I7RoEFXRLA5NmOJAsMU87Ux1
zp+xUw7xlFPnYvX2j9bil1RepjvslKF8+FBZnKM97/IwbDwJY9aCJBb0dFbTiYGK
U60IR3MDYSfa3tb7mabret3IOiCJsjOb0Iqg2rGR2F5MQEJJ4q06Qk5xYJDWu+LZ
L9FtMMz0NE0rVNKTO4j1R4EptIIx4vR0ERKUg3qVjFXXpNqQJd3zrI5EPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAZ/gLaGMtOZBZtKJ08iYrFJLYLAMB8GA1UdIwQY
MBaAFMmA0Zw7/MQEcVZ3bwKjSYmORrkNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVlEUm5Edjh4QVJ4Vm5kdkFxTkppWTVHdVEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy82OGMwNjMtNDAwYS00ZWQxLTlmYmYt
Yjg2NjE5NzUyMDM5LzEveVlEUm5Edjh4QVJ4Vm5kdkFxTkppWTVHdVEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy82OGMwNjMtNDAwYS00ZWQxLTlmYmYtYjg2NjE5NzUyMDM5
LzEveVlEUm5Edjh4QVJ4Vm5kdkFxTkppWTVHdVEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFckITi2L
DIu9Xe3Jn0az6+3RmP5/XLWvhRcxpyFTeY3FtbGMU8bEQMxXS4CZgbyImrvlRKi9
eMldmLwtgctZEsVhxgNw2wJQjEcIp7HEU4SEdfsPzeppvMBoPoVyMLFsrSPIUxw9
8v378R1xDxO1UcqJNqNor0fdgbt5sMXP6HIGwZIWeWgCBMuyaJqmaG6g1YU3ZlPN
oRzb7lbVW4Mcirt5Tmz1qv37RKa7PQLtxfN1CXc+kCgYdatBIfVQipROLXifkKrg
s3irOsBMH10+8ZB5fEDNeMYpz5R/LXyOYZezxJFdbUfZApsUfI6cUpZ4ca4vmv6G
0G9IarcIafp2ng==
-----END CERTIFICATE-----
Generated at Tue Nov 4 11:00:32 2025 by rpki-client