Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft
File: YRuftFY550kvKzYx9kD2q5r7YpA.mft (raw, json)
Hash identifier: t5fYMpnIvO6m85dsMQ9L8zIdiW2IrJMaxQ+/TS/nVS0=
Subject key identifier: 1E:67:A8:A5:3D:DE:DF:CF:24:7C:65:D6:FF:E5:D6:B5:37:B6:AD:25
Authority key identifier: 61:1B:9F:B4:56:39:E7:49:2F:2B:36:31:F6:40:F6:AB:9A:FB:62:90
Certificate issuer: /CN=611b9fb45639e7492f2b3631f640f6ab9afb6290
Certificate serial: 019A27E6F73854BDFD41B81775A86464D140
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRuftFY550kvKzYx9kD2q5r7YpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft
Manifest number: 019B
Signing time: Mon 27 Oct 2025 23:00:39 +0000
Manifest this update: Mon 27 Oct 2025 23:00:39 +0000
Manifest next update: Tue 28 Oct 2025 23:00:39 +0000
Files and hashes: 1: 78p7eZsSQ8zonV0TNMaLaLjK96I.roa (hash: +QO+TKXARPaWdOJ8baQ83Q+fqGFHJ3lndWpB+9vwuT8=)
2: Aqz_ehMSCGzxFOJ8FvGbcOAmgSU.roa (hash: s3KelrVfC9+y7bPujzwFv1EKOWZnruzzVkasMV5xnU4=)
3: Dz7fUAyA3Q6aEL4NtI6fDewBO-Q.roa (hash: xVI7un3YDJ74QBZKCGBUFc9S59Re+F08cwvGlwnT43k=)
4: LuLOUOJIGHxq7ykgB21inUS-57w.roa (hash: ab5+eNLQ6Vj2WxgXbW4Ku3+IuOco/UzZZHvYaaD6UKw=)
5: YRuftFY550kvKzYx9kD2q5r7YpA.crl (hash: LRM1TXZewaTPyLHC5f1cqegFrTJ4GYy03T0XISakVH4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/YRuftFY550kvKzYx9kD2q5r7YpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 21:56:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:27:e6:f7:38:54:bd:fd:41:b8:17:75:a8:64:64:d1:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=611b9fb45639e7492f2b3631f640f6ab9afb6290
Validity
Not Before: Oct 27 23:00:39 2025 GMT
Not After : Oct 28 23:00:39 2025 GMT
Subject: CN=1e67a8a53ddedfcf247c65d6ffe5d6b537b6ad25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c6:80:9d:da:da:3b:bb:14:d1:eb:77:b6:fd:
88:27:9b:7e:6d:2d:6b:f8:ce:94:60:9e:04:31:e6:
ed:52:a8:55:bb:a8:72:56:c8:a0:18:ba:3c:58:4f:
6c:b7:83:6e:43:62:5c:95:50:63:00:0f:75:57:9b:
21:ff:2a:39:40:eb:1b:1a:39:fe:40:a0:26:7e:31:
06:8d:fd:b2:70:48:ae:ad:fe:5e:69:fa:db:e1:17:
34:0b:3e:ab:24:61:45:d6:9c:fc:44:6a:9d:6e:75:
c9:cd:ac:06:6b:88:25:c5:e3:23:ca:e7:62:2f:98:
c6:c5:fe:5c:85:22:fe:9b:68:3e:9a:1e:a7:b5:49:
3f:f5:34:08:c9:f4:54:09:d5:a4:2b:26:86:eb:e0:
57:17:96:7d:9c:00:29:26:bf:c9:57:12:86:ed:e1:
f1:c2:55:0b:e3:5e:43:61:b0:ad:b1:51:3d:33:fc:
3f:8c:75:a4:1f:e1:26:13:a6:55:13:bb:79:1d:85:
28:04:16:88:04:cb:42:85:7a:f6:0d:6e:54:e0:45:
2f:d1:0e:43:1d:15:86:b3:b5:f7:43:18:f2:15:b8:
72:a7:6b:b2:44:63:c8:08:ef:8a:db:eb:47:0f:9b:
28:52:ea:38:3e:d7:8c:6c:0a:14:40:45:4d:fd:39:
c1:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:67:A8:A5:3D:DE:DF:CF:24:7C:65:D6:FF:E5:D6:B5:37:B6:AD:25
X509v3 Authority Key Identifier:
keyid:61:1B:9F:B4:56:39:E7:49:2F:2B:36:31:F6:40:F6:AB:9A:FB:62:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRuftFY550kvKzYx9kD2q5r7YpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:5f:64:a6:5d:ad:cc:ce:26:0a:5a:97:3b:d0:a8:51:b0:58:
22:5f:41:06:37:f4:8c:35:ab:4b:ec:ef:53:f9:ce:18:94:0a:
31:2c:8f:f1:1a:51:94:51:1a:16:ee:53:37:d6:1a:b5:44:7e:
67:ba:f1:97:06:fd:c5:d0:0d:3b:19:ca:ce:89:c3:b3:ee:62:
bc:31:78:ad:a9:4c:8d:e5:80:36:33:ae:26:ee:7e:96:1f:e3:
78:de:43:49:ad:b2:24:e1:0c:12:4e:34:a0:b0:c7:1e:48:d7:
ee:3f:fc:be:b3:af:5d:c4:bb:20:25:88:05:3b:45:d1:fb:d5:
64:26:a8:43:18:cf:23:16:b2:be:ee:b6:49:c4:fd:a4:20:89:
09:66:9c:a0:ca:a8:0d:38:4c:a0:f5:38:4a:77:04:1a:2c:2c:
d8:d4:f8:5a:e9:19:87:01:7f:0c:9f:94:86:90:a6:b0:71:67:
0b:58:7c:20:b8:c6:ad:00:b9:4a:10:24:67:bb:e4:18:20:92:
7e:42:b1:6c:3e:6f:1d:02:eb:71:d8:fc:77:42:e6:46:1a:c5:
bc:1a:1c:d1:c2:77:49:24:64:b1:35:b4:f2:64:78:ee:d9:a8:
ad:eb:3b:01:da:61:ed:d0:a1:4b:e7:6d:d0:d1:ae:1e:b8:e0:
08:bb:87:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZon5vc4VL39QbgXdahkZNFAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxMWI5ZmI0NTYzOWU3NDkyZjJiMzYzMWY2NDBmNmFiOWFm
YjYyOTAwHhcNMjUxMDI3MjMwMDM5WhcNMjUxMDI4MjMwMDM5WjAzMTEwLwYDVQQD
EygxZTY3YThhNTNkZGVkZmNmMjQ3YzY1ZDZmZmU1ZDZiNTM3YjZhZDI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMaAndraO7sU0et3tv2IJ5t+bS1r
+M6UYJ4EMebtUqhVu6hyVsigGLo8WE9st4NuQ2JclVBjAA91V5sh/yo5QOsbGjn+
QKAmfjEGjf2ycEiurf5eafrb4Rc0Cz6rJGFF1pz8RGqdbnXJzawGa4glxeMjyudi
L5jGxf5chSL+m2g+mh6ntUk/9TQIyfRUCdWkKyaG6+BXF5Z9nAApJr/JVxKG7eHx
wlUL415DYbCtsVE9M/w/jHWkH+EmE6ZVE7t5HYUoBBaIBMtChXr2DW5U4EUv0Q5D
HRWGs7X3QxjyFbhyp2uyRGPICO+K2+tHD5soUuo4PteMbAoUQEVN/TnBrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB5nqKU93t/PJHxl1v/l1rU3tq0lMB8GA1UdIwQY
MBaAFGEbn7RWOedJLys2MfZA9qua+2KQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVJ1ZnRGWTU1MGt2S3pZeDlrRDJxNXI3WXBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi84NDgyZDItNzIzMy00MTc3LTk5MmYt
N2Q3NWUyYjFhN2I5LzEvWVJ1ZnRGWTU1MGt2S3pZeDlrRDJxNXI3WXBBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi84NDgyZDItNzIzMy00MTc3LTk5MmYtN2Q3NWUyYjFhN2I5
LzEvWVJ1ZnRGWTU1MGt2S3pZeDlrRDJxNXI3WXBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiV9kpl2t
zM4mClqXO9CoUbBYIl9BBjf0jDWrS+zvU/nOGJQKMSyP8RpRlFEaFu5TN9YatUR+
Z7rxlwb9xdANOxnKzonDs+5ivDF4ralMjeWANjOuJu5+lh/jeN5DSa2yJOEMEk40
oLDHHkjX7j/8vrOvXcS7ICWIBTtF0fvVZCaoQxjPIxayvu62ScT9pCCJCWacoMqo
DThMoPU4SncEGiws2NT4WukZhwF/DJ+UhpCmsHFnC1h8ILjGrQC5ShAkZ7vkGCCS
fkKxbD5vHQLrcdj8d0LmRhrFvBoc0cJ3SSRksTW08mR47tmores7Adph7dChS+dt
0NGuHrjgCLuHCA==
-----END CERTIFICATE-----
Generated at Tue Oct 28 04:44:11 2025 by rpki-client