Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
File: yda1mpPjJAg_vKQjfkfp9evzcas.mft (raw, json)
Hash identifier: BNuuna3qKQ8fQ9jWXYa18GIOrUqQwesI0FS83nKF0sc=
Subject key identifier: 79:2B:6B:BE:E4:7A:03:1E:02:DF:33:AC:AC:17:09:3D:2B:27:1F:03
Authority key identifier: C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
Certificate issuer: /CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Certificate serial: 01991D2F36B5564CDF6CA4C3036193816B36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
Manifest number: 1695
Signing time: Sat 06 Sep 2025 04:00:57 +0000
Manifest this update: Sat 06 Sep 2025 04:00:57 +0000
Manifest next update: Sun 07 Sep 2025 04:00:57 +0000
Files and hashes: 1: N1MG3ptUi6lRkgCQgC4sjQwbS5E.roa (hash: JXk8TsLqv4eNpEsTxzdAoUG6ec7BUvgM4Lyhjc+WI9U=)
2: pMIZZEHYcO0IlQ8lJ-JaDY1xnJs.roa (hash: KI7tUZnJYI1JaBjFs0d5L727l5SVVoE+xByQFUZQZZI=)
3: uiLIHzK4-mf16_OjnZc2yUpW0us.roa (hash: RlQY7OlYxlif+RwnDDphDKPVhonzC8U4YVG2wYszXJM=)
4: wmxHtvcKqJtTUqnf5sR3cyCPMeg.roa (hash: /EPsVJFiMZ3O3IoH+IOAZdQSfyIhjr2V/FlxWvt6e5c=)
5: xF5VKoGOYu4SuTkWFtzR0bzZqmI.roa (hash: rdwu1BaRed5RxmIo/GH4jXiyNp3cFaIjeNX4kVrFm70=)
6: yda1mpPjJAg_vKQjfkfp9evzcas.crl (hash: Zauh/z8RLz9QoBw4PcIv7jkg9K1JMbtouA0uJ6Of0Ok=)
7: zPFc5xzrxxMWf2K11uBlgIiWqTo.roa (hash: 3x/T35aDdfP5Wrtlu3UJYc2NEgecLDM5KH+dyoNyYx0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 02:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1d:2f:36:b5:56:4c:df:6c:a4:c3:03:61:93:81:6b:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Validity
Not Before: Sep 6 04:00:57 2025 GMT
Not After : Sep 7 04:00:57 2025 GMT
Subject: CN=792b6bbee47a031e02df33acac17093d2b271f03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5b:04:08:df:b7:05:24:ab:95:b6:1e:9f:b8:
a6:50:35:88:5c:fe:ba:5c:23:80:6b:c1:67:c3:87:
79:20:12:6b:70:ea:55:f2:74:1c:81:1d:38:fa:34:
cd:d5:5c:76:d2:29:f6:6b:8d:d5:dc:67:21:40:aa:
53:bf:54:6d:90:20:25:1e:de:33:6a:66:6b:df:55:
17:43:8a:7f:62:49:84:6e:c3:f9:06:ed:07:0b:52:
09:5a:b8:76:9d:2c:42:90:1f:6e:7c:3c:cb:b8:22:
0a:13:fc:b5:d0:8c:2d:2a:c3:e5:e1:1c:a1:3f:91:
e0:2a:fe:f3:8a:8e:51:ba:cc:a3:b3:de:dc:de:2c:
ed:41:8a:db:3b:a5:52:bb:4f:c3:3c:fb:2f:11:89:
87:18:cd:e7:6e:76:18:ec:6a:dc:24:d9:21:4c:ad:
03:02:22:28:11:c1:d8:cf:09:2c:0c:5d:26:ec:65:
20:ba:f1:d3:a4:34:b7:34:ed:58:0e:92:94:d2:b0:
b8:68:19:1f:d3:2a:09:9e:0d:46:86:e8:7c:a7:d0:
35:25:9d:06:2c:16:03:7f:bf:51:a3:f5:1d:fb:37:
6f:0b:03:cf:b8:9a:e4:16:90:5b:73:74:5d:ca:cc:
e7:45:a9:f1:b5:77:b8:15:0e:80:a3:37:b5:9f:28:
f3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2B:6B:BE:E4:7A:03:1E:02:DF:33:AC:AC:17:09:3D:2B:27:1F:03
X509v3 Authority Key Identifier:
keyid:C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:d2:ab:96:fe:24:64:e9:c7:e8:98:bd:00:57:43:c8:3d:a9:
08:4a:37:c3:eb:ab:ea:6a:58:98:cc:c0:c2:ce:52:20:83:f5:
08:4e:7c:c5:30:bf:30:b1:44:91:92:d1:96:f3:88:bb:c4:31:
88:5c:a1:37:21:7d:f5:35:3e:d9:0f:2b:0e:85:77:9b:99:d5:
1b:7e:e0:7c:0e:74:92:c6:d2:ee:c8:5c:8a:98:95:0b:08:40:
d4:1d:f1:6a:5d:b3:34:f6:98:09:0d:b7:f8:98:8d:8b:b3:f7:
25:27:bc:0d:42:4b:aa:08:e1:ee:45:76:59:41:29:7f:7f:07:
49:55:3f:ef:17:44:bb:ee:c8:40:b6:ab:e6:bd:be:4c:c2:64:
53:f0:21:68:9e:52:1c:2e:e8:e2:35:d1:be:8b:b0:32:0f:ef:
66:5b:0b:07:92:c1:3f:29:6a:13:42:27:e5:44:ef:55:2c:e5:
bd:59:9f:88:9e:21:9c:47:2b:ad:f7:d7:fd:09:dd:d4:75:8c:
36:c7:5e:cc:ee:c5:2f:4c:c9:52:61:06:ee:b2:09:55:12:65:
3a:18:70:01:3d:f9:ca:e4:d1:d2:d2:2d:88:90:dc:9c:3e:12:
0b:64:1f:ba:10:91:2c:77:e6:e6:78:78:a0:47:36:d0:7e:f8:
35:f3:30:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkdLza1VkzfbKTDA2GTgWs2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDZiNTlhOTNlMzI0MDgzZmJjYTQyMzdlNDdlOWY1ZWJm
MzcxYWIwHhcNMjUwOTA2MDQwMDU3WhcNMjUwOTA3MDQwMDU3WjAzMTEwLwYDVQQD
Eyg3OTJiNmJiZWU0N2EwMzFlMDJkZjMzYWNhYzE3MDkzZDJiMjcxZjAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlsECN+3BSSrlbYen7imUDWIXP66
XCOAa8Fnw4d5IBJrcOpV8nQcgR04+jTN1Vx20in2a43V3GchQKpTv1RtkCAlHt4z
amZr31UXQ4p/YkmEbsP5Bu0HC1IJWrh2nSxCkB9ufDzLuCIKE/y10IwtKsPl4Ryh
P5HgKv7zio5Rusyjs97c3iztQYrbO6VSu0/DPPsvEYmHGM3nbnYY7GrcJNkhTK0D
AiIoEcHYzwksDF0m7GUguvHTpDS3NO1YDpKU0rC4aBkf0yoJng1Ghuh8p9A1JZ0G
LBYDf79Ro/Ud+zdvCwPPuJrkFpBbc3RdysznRanxtXe4FQ6Aoze1nyjzIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHkra77kegMeAt8zrKwXCT0rJx8DMB8GA1UdIwQY
MBaAFMnWtZqT4yQIP7ykI35H6fXr83GrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny82ODJiMDctNzczZi00NmZkLTgyZTIt
YjkyMTFlMWZjMWFjLzEveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny82ODJiMDctNzczZi00NmZkLTgyZTItYjkyMTFlMWZjMWFj
LzEveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFdKrlv4k
ZOnH6Ji9AFdDyD2pCEo3w+ur6mpYmMzAws5SIIP1CE58xTC/MLFEkZLRlvOIu8Qx
iFyhNyF99TU+2Q8rDoV3m5nVG37gfA50ksbS7shcipiVCwhA1B3xal2zNPaYCQ23
+JiNi7P3JSe8DUJLqgjh7kV2WUEpf38HSVU/7xdEu+7IQLar5r2+TMJkU/AhaJ5S
HC7o4jXRvouwMg/vZlsLB5LBPylqE0In5UTvVSzlvVmfiJ4hnEcrrffX/Qnd1HWM
NsdezO7FL0zJUmEG7rIJVRJlOhhwAT35yuTR0tItiJDcnD4SC2QfuhCRLHfm5nh4
oEc20H74NfMwgw==
-----END CERTIFICATE-----
Generated at Sat Sep 6 10:02:08 2025 by rpki-client