Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
File: pyiF7ybebTsiYKtj0sXKD4Y33wM.mft (raw, json)
Hash identifier: baxOd/E0Oo1bw8B2E13jSUcJalAmZHyHZEURDANJhU4=
Subject key identifier: 9F:BC:EF:49:A8:CC:13:DC:AC:8D:37:28:12:62:C5:E6:07:54:F8:9B
Authority key identifier: A7:28:85:EF:26:DE:6D:3B:22:60:AB:63:D2:C5:CA:0F:86:37:DF:03
Certificate issuer: /CN=a72885ef26de6d3b2260ab63d2c5ca0f8637df03
Certificate serial: 019A71B91C4FD73B42870A96BD69584C201E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
Manifest number: 1632
Signing time: Tue 11 Nov 2025 07:02:28 +0000
Manifest this update: Tue 11 Nov 2025 07:02:28 +0000
Manifest next update: Wed 12 Nov 2025 07:02:28 +0000
Files and hashes: 1: pyiF7ybebTsiYKtj0sXKD4Y33wM.crl (hash: 7D0HMI1pLzPmOPW1wJjeVwuHTLCc8zJdiW2xo1q9iFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:1c:4f:d7:3b:42:87:0a:96:bd:69:58:4c:20:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a72885ef26de6d3b2260ab63d2c5ca0f8637df03
Validity
Not Before: Nov 11 07:02:28 2025 GMT
Not After : Nov 12 07:02:28 2025 GMT
Subject: CN=9fbcef49a8cc13dcac8d37281262c5e60754f89b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:15:42:c3:11:4c:f1:3d:df:bc:e3:3c:64:ee:
9d:c6:cf:50:c9:b8:da:1b:80:7e:d2:02:db:2d:e9:
fd:b1:80:d3:02:95:85:98:27:16:2b:21:52:cb:7e:
be:0a:cd:3a:9a:9a:3e:d9:9f:2e:fc:a0:e5:79:e9:
29:82:4d:5c:3e:3e:92:39:89:10:1a:33:2a:07:d1:
4f:97:25:d6:25:af:38:3d:fb:8f:88:c5:00:9a:1c:
1e:37:c0:6b:26:94:8c:26:bc:43:a0:81:14:67:a1:
6c:40:f9:6f:21:ed:67:fc:ab:fc:2a:e9:60:0d:c3:
3f:40:1f:4b:6f:8e:d8:52:30:5f:98:14:2b:ff:c1:
49:67:41:da:c3:15:28:00:1f:b6:38:9e:e1:6f:89:
95:b8:37:d6:8e:5d:2d:05:e9:f2:36:6c:6b:f4:de:
83:53:1b:f7:87:cd:a1:08:3f:ad:44:b4:1a:49:cf:
33:2b:79:dc:5f:6e:77:ab:26:66:fe:0a:fe:9a:56:
b0:d1:a0:a0:30:c2:1a:bd:1b:35:1a:cc:c2:a5:f7:
3f:2e:8a:75:46:6f:d9:04:da:04:01:0b:f8:46:cc:
6c:87:38:9c:69:3d:84:ef:5b:09:82:cf:97:19:06:
5a:ac:5f:db:4b:1d:72:c1:bf:dc:fc:4e:ad:d6:d3:
1a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:BC:EF:49:A8:CC:13:DC:AC:8D:37:28:12:62:C5:E6:07:54:F8:9B
X509v3 Authority Key Identifier:
keyid:A7:28:85:EF:26:DE:6D:3B:22:60:AB:63:D2:C5:CA:0F:86:37:DF:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:84:e4:f1:cd:85:5f:2f:06:bc:41:ee:56:b1:fa:fb:f2:80:
4e:bf:2f:25:cb:6d:dd:85:c3:96:5e:92:21:43:8e:d2:fd:20:
8a:c8:c8:13:c0:c7:b4:9f:9f:b0:84:46:46:ef:c0:a3:aa:c1:
b6:73:82:81:3e:9e:c1:16:e4:6c:3c:9f:28:bb:ad:82:38:a0:
47:2a:1f:0e:7a:99:02:7f:41:8d:b1:da:bc:a6:dc:83:2a:ae:
93:fb:af:bd:e1:64:98:28:12:4c:33:df:fe:6a:78:91:55:29:
d3:b9:cb:cb:e4:5c:4a:7c:1e:91:43:d8:56:08:03:79:16:66:
96:fa:4d:10:0c:dc:58:da:e8:a7:09:ce:b8:f0:a7:e8:ed:4f:
f4:ba:45:88:d4:b6:c6:53:2b:23:09:42:4c:d2:ea:60:61:5f:
0a:b3:87:66:12:d6:a2:1e:81:32:dc:44:41:07:cc:30:08:f0:
13:0d:21:da:8b:72:12:6c:85:ca:27:3c:67:64:d1:88:e4:19:
74:54:41:34:92:e7:84:f4:f6:7d:85:d4:32:5d:b7:43:a7:9e:
b8:20:77:31:2e:76:e4:35:4b:7e:4d:19:3c:bb:b9:bd:59:99:
ae:68:5c:29:d8:e8:0a:2d:3a:cf:a4:4f:bf:21:1c:c0:ef:98:
0b:d4:02:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuRxP1ztChwqWvWlYTCAeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3Mjg4NWVmMjZkZTZkM2IyMjYwYWI2M2QyYzVjYTBmODYz
N2RmMDMwHhcNMjUxMTExMDcwMjI4WhcNMjUxMTEyMDcwMjI4WjAzMTEwLwYDVQQD
Eyg5ZmJjZWY0OWE4Y2MxM2RjYWM4ZDM3MjgxMjYyYzVlNjA3NTRmODliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzBVCwxFM8T3fvOM8ZO6dxs9Qybja
G4B+0gLbLen9sYDTApWFmCcWKyFSy36+Cs06mpo+2Z8u/KDleekpgk1cPj6SOYkQ
GjMqB9FPlyXWJa84PfuPiMUAmhweN8BrJpSMJrxDoIEUZ6FsQPlvIe1n/Kv8Kulg
DcM/QB9Lb47YUjBfmBQr/8FJZ0HawxUoAB+2OJ7hb4mVuDfWjl0tBenyNmxr9N6D
Uxv3h82hCD+tRLQaSc8zK3ncX253qyZm/gr+mlaw0aCgMMIavRs1GszCpfc/Lop1
Rm/ZBNoEAQv4RsxshzicaT2E71sJgs+XGQZarF/bSx1ywb/c/E6t1tMaQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ+870mozBPcrI03KBJixeYHVPibMB8GA1UdIwQY
MBaAFKcohe8m3m07ImCrY9LFyg+GN98DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcHlpRjd5YmViVHNpWUt0ajBzWEtENFkzM3dNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9lZDI1OWItZDdiZi00ZGU0LWJiZjAt
MGU3MTgwZjk4NzRkLzEvcHlpRjd5YmViVHNpWUt0ajBzWEtENFkzM3dNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS9lZDI1OWItZDdiZi00ZGU0LWJiZjAtMGU3MTgwZjk4NzRk
LzEvcHlpRjd5YmViVHNpWUt0ajBzWEtENFkzM3dNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXoTk8c2F
Xy8GvEHuVrH6+/KATr8vJctt3YXDll6SIUOO0v0gisjIE8DHtJ+fsIRGRu/Ao6rB
tnOCgT6ewRbkbDyfKLutgjigRyofDnqZAn9BjbHavKbcgyquk/uvveFkmCgSTDPf
/mp4kVUp07nLy+RcSnwekUPYVggDeRZmlvpNEAzcWNropwnOuPCn6O1P9LpFiNS2
xlMrIwlCTNLqYGFfCrOHZhLWoh6BMtxEQQfMMAjwEw0h2otyEmyFyic8Z2TRiOQZ
dFRBNJLnhPT2fYXUMl23Q6eeuCB3MS525DVLfk0ZPLu5vVmZrmhcKdjoCi06z6RP
vyEcwO+YC9QCzA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:41:53 2025 by rpki-client