
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
File: cnOYybFuqY0iKkwpyvey68mE8oI.mft (raw, json)
Hash identifier: QYfCdQBeTQh+wAYwByCz72O4F3nThdQ0ZGr3RAwXsh8=
Subject key identifier: DF:63:D5:41:15:29:95:E7:AB:08:34:6F:E7:15:44:92:3F:43:A8:BC
Authority key identifier: 72:73:98:C9:B1:6E:A9:8D:22:2A:4C:29:CA:F7:B2:EB:C9:84:F2:82
Certificate issuer: /CN=727398c9b16ea98d222a4c29caf7b2ebc984f282
Certificate serial: 01988B0E8C0D95D4B67E09BB51B289AF2354
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
Manifest number: 01BB
Signing time: Fri 08 Aug 2025 19:00:42 +0000
Manifest this update: Fri 08 Aug 2025 19:00:42 +0000
Manifest next update: Sat 09 Aug 2025 19:00:42 +0000
Files and hashes: 1: cnOYybFuqY0iKkwpyvey68mE8oI.crl (hash: eFcX6JS4hC6G2GL6p+Ie11BREbukzTzFsUfCe0WiF68=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0e:8c:0d:95:d4:b6:7e:09:bb:51:b2:89:af:23:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=727398c9b16ea98d222a4c29caf7b2ebc984f282
Validity
Not Before: Aug 8 19:00:42 2025 GMT
Not After : Aug 9 19:00:42 2025 GMT
Subject: CN=df63d541152995e7ab08346fe71544923f43a8bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7c:13:c4:65:18:a2:68:4b:f9:6e:cc:ad:6f:
eb:eb:b0:e2:06:7f:e5:3a:17:68:3e:0a:93:ae:a5:
2d:78:b0:b5:7f:c0:18:e3:23:3f:4c:20:85:82:c5:
3a:36:10:5a:d6:04:4d:7e:25:ac:91:5d:eb:e0:4f:
f8:67:6a:1f:45:80:4a:7a:7e:8b:f1:a6:aa:f1:b6:
6f:5c:b4:31:88:c7:12:d9:ea:00:e7:3a:cb:1b:04:
db:a7:95:de:05:15:9d:96:da:84:d2:ba:62:af:60:
30:1b:41:1c:5f:90:9c:78:55:32:71:44:4e:e1:00:
aa:6c:80:d6:54:03:74:78:60:87:2c:00:ca:b6:19:
c4:20:55:31:42:87:d1:09:30:5d:92:21:14:30:53:
76:0c:cb:64:47:3d:0a:85:50:bf:5b:91:90:70:39:
eb:d5:d2:60:98:af:5b:28:09:fd:11:6e:c8:e1:81:
db:bf:6c:40:61:30:26:7b:15:78:e6:26:28:4e:06:
dc:ec:1a:2e:6e:b4:2d:65:05:19:c6:c2:d3:b5:0c:
96:13:20:42:c3:0d:1d:f5:b3:07:f7:e0:67:90:5a:
18:1d:2e:5c:45:22:63:ee:e7:35:9a:4a:0d:f7:53:
78:32:02:18:7e:81:55:ba:2c:27:03:72:ab:d3:9a:
cb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:63:D5:41:15:29:95:E7:AB:08:34:6F:E7:15:44:92:3F:43:A8:BC
X509v3 Authority Key Identifier:
keyid:72:73:98:C9:B1:6E:A9:8D:22:2A:4C:29:CA:F7:B2:EB:C9:84:F2:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d7:5c:36:1c:df:ca:70:99:bc:2f:88:96:77:26:db:16:fe:81:
74:de:42:7f:b6:c2:ac:a8:e7:de:83:07:dc:d4:b6:c7:f6:f4:
bf:95:0a:e7:5a:5e:0d:0e:cd:b6:86:d5:13:25:9e:c2:4c:6d:
c3:34:bd:7a:8e:2a:98:38:0f:0f:28:44:94:59:17:d7:3f:27:
a5:31:ea:65:fe:f3:16:7d:6e:3c:65:7d:c6:ae:79:3e:13:d1:
c8:d5:50:b6:d1:aa:b0:5b:23:68:ac:3c:38:0b:7f:ae:f1:4c:
c6:1e:00:e5:49:4c:f1:54:ea:62:9c:cc:75:d7:45:4d:92:d5:
cf:57:4b:bc:d9:34:64:a3:5e:f4:23:bc:97:a0:c1:12:2b:ae:
9a:ae:77:85:2a:1d:ac:41:9a:f1:12:10:18:8e:4a:7e:0c:77:
26:58:09:56:31:f7:b2:15:5d:06:4d:92:d6:47:88:df:c4:c0:
fe:53:21:54:3c:ae:d9:5b:18:a3:8a:63:69:5c:6e:02:38:d3:
63:7e:30:c5:01:e5:07:5b:50:68:e4:9e:57:c8:fb:15:c0:cb:
5c:c0:6c:b9:cd:94:42:33:df:65:8b:1c:d1:d6:72:b8:48:08:
ab:24:c4:8a:d3:8e:a8:3c:c3:e9:00:54:87:32:ac:7b:09:ef:
a4:b0:8e:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiLDowNldS2fgm7UbKJryNUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyNzM5OGM5YjE2ZWE5OGQyMjJhNGMyOWNhZjdiMmViYzk4
NGYyODIwHhcNMjUwODA4MTkwMDQyWhcNMjUwODA5MTkwMDQyWjAzMTEwLwYDVQQD
EyhkZjYzZDU0MTE1Mjk5NWU3YWIwODM0NmZlNzE1NDQ5MjNmNDNhOGJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnwTxGUYomhL+W7MrW/r67DiBn/l
OhdoPgqTrqUteLC1f8AY4yM/TCCFgsU6NhBa1gRNfiWskV3r4E/4Z2ofRYBKen6L
8aaq8bZvXLQxiMcS2eoA5zrLGwTbp5XeBRWdltqE0rpir2AwG0EcX5CceFUycURO
4QCqbIDWVAN0eGCHLADKthnEIFUxQofRCTBdkiEUMFN2DMtkRz0KhVC/W5GQcDnr
1dJgmK9bKAn9EW7I4YHbv2xAYTAmexV45iYoTgbc7BoubrQtZQUZxsLTtQyWEyBC
ww0d9bMH9+BnkFoYHS5cRSJj7uc1mkoN91N4MgIYfoFVuiwnA3Kr05rL5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN9j1UEVKZXnqwg0b+cVRJI/Q6i8MB8GA1UdIwQY
MBaAFHJzmMmxbqmNIipMKcr3suvJhPKCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY25PWXliRnVxWTBpS2t3cHl2ZXk2OG1FOG9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC8zYzYwNGUtZTZhOC00ZTRlLWI3Njkt
NWEwN2UyNmZiODIyLzEvY25PWXliRnVxWTBpS2t3cHl2ZXk2OG1FOG9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC8zYzYwNGUtZTZhOC00ZTRlLWI3NjktNWEwN2UyNmZiODIy
LzEvY25PWXliRnVxWTBpS2t3cHl2ZXk2OG1FOG9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA11w2HN/K
cJm8L4iWdybbFv6BdN5Cf7bCrKjn3oMH3NS2x/b0v5UK51peDQ7NtobVEyWewkxt
wzS9eo4qmDgPDyhElFkX1z8npTHqZf7zFn1uPGV9xq55PhPRyNVQttGqsFsjaKw8
OAt/rvFMxh4A5UlM8VTqYpzMdddFTZLVz1dLvNk0ZKNe9CO8l6DBEiuumq53hSod
rEGa8RIQGI5Kfgx3JlgJVjH3shVdBk2S1keI38TA/lMhVDyu2VsYo4pjaVxuAjjT
Y34wxQHlB1tQaOSeV8j7FcDLXMBsuc2UQjPfZYsc0dZyuEgIqyTEitOOqDzD6QBU
hzKsewnvpLCOPQ==
-----END CERTIFICATE-----
Generated at Sat Aug 9 05:51:08 2025 by rpki-client