Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
File: Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft (raw, json)
Hash identifier: 8Q5wiYeMVaTi9Y3nV+F+7UmfXcqj/yZv0xkH6ftllpM=
Subject key identifier: 1E:BC:1D:71:33:3E:78:10:A2:AE:C2:9E:58:90:5D:43:EF:26:B3:19
Authority key identifier: 63:E3:09:80:30:53:45:FD:53:65:B3:51:5E:35:68:F9:CE:E5:85:41
Certificate issuer: /CN=63e30980305345fd5365b3515e3568f9cee58541
Certificate serial: 019918096C0BBC64C80CB138C23B03B305CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
Manifest number: 166C
Signing time: Fri 05 Sep 2025 04:01:34 +0000
Manifest this update: Fri 05 Sep 2025 04:01:34 +0000
Manifest next update: Sat 06 Sep 2025 04:01:34 +0000
Files and hashes: 1: Hs2TvjBAbChswFTm05pNrXJsCJA.roa (hash: xtJBUOZoNvBaKTOo18EAAqIaZQ4IjdLX9G/viT94FJA=)
2: Y-MJgDBTRf1TZbNRXjVo-c7lhUE.crl (hash: PFoUQ3V5C1ZTTZnSvT+xK5rVsT2tqG2b9KsGlxR2Wkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:09:6c:0b:bc:64:c8:0c:b1:38:c2:3b:03:b3:05:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e30980305345fd5365b3515e3568f9cee58541
Validity
Not Before: Sep 5 04:01:34 2025 GMT
Not After : Sep 6 04:01:34 2025 GMT
Subject: CN=1ebc1d71333e7810a2aec29e58905d43ef26b319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d0:30:0c:ce:7d:dc:c8:a0:78:5f:2f:af:01:
fe:b1:2f:ff:2b:cd:0a:a8:8c:b8:3b:3d:34:47:2b:
80:a5:e3:a4:fe:b3:c7:14:d7:5c:08:77:fc:34:2e:
84:52:c7:fa:09:67:00:c6:61:97:31:c8:e6:47:d9:
d4:75:54:ad:57:d6:57:3f:ae:c3:45:2b:b5:6d:34:
2f:d4:e7:ed:41:4e:a2:0f:10:d0:3d:8d:c5:14:5f:
bb:ae:e2:9b:9a:a9:a2:70:99:89:e5:e3:4f:cc:f7:
b7:8d:46:c6:a9:b4:3d:8b:57:f0:d1:79:9f:05:eb:
e2:8d:ca:e2:4e:1e:90:36:d4:66:b9:d8:54:68:c2:
26:9c:f1:cb:4f:b6:20:e8:07:95:af:58:99:2a:6a:
c3:15:dc:96:e7:14:5b:53:4f:ab:fb:f2:2d:4b:54:
aa:46:52:b7:2f:b4:7f:79:1d:22:a2:e9:61:90:2c:
4d:ec:7a:6c:84:60:82:69:0a:e9:ff:9a:9a:32:21:
b3:e7:c5:b4:ef:fc:25:2c:a8:9e:b5:bf:55:c9:d0:
fb:bc:13:5b:e4:b9:09:c6:d2:db:5d:24:40:d7:f3:
be:ed:09:11:2a:f3:9c:18:35:26:14:22:9a:46:0b:
b7:a9:4e:7c:6a:69:c9:fe:4b:a3:f4:de:8a:4e:04:
f7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BC:1D:71:33:3E:78:10:A2:AE:C2:9E:58:90:5D:43:EF:26:B3:19
X509v3 Authority Key Identifier:
keyid:63:E3:09:80:30:53:45:FD:53:65:B3:51:5E:35:68:F9:CE:E5:85:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:2e:88:3e:8a:1c:06:a8:3a:48:fd:b7:31:15:2d:96:8e:b7:
62:f0:0f:9b:7a:51:cf:74:0b:4c:be:32:7e:7f:5c:13:bc:17:
ad:43:8f:70:42:3d:fd:4d:b5:ab:fd:27:54:9b:c5:68:5b:ae:
27:2f:bc:09:9b:72:b4:dc:bd:b7:19:30:b2:64:1c:34:fe:2a:
3c:4f:8e:2c:e6:5e:1d:73:4e:4b:5d:a6:02:c9:b1:c4:b7:e0:
9c:b9:0b:6f:8a:eb:59:9c:7e:85:4d:08:c9:66:03:a7:ab:1c:
46:c1:13:20:39:2e:9d:09:33:e1:7f:89:75:21:c5:05:fc:a8:
18:10:0d:c2:2c:7d:d3:25:e1:b2:1f:6b:8d:83:71:02:f7:2c:
a6:9d:23:d0:52:7d:8c:99:85:f1:f2:e8:b3:a9:c1:a5:01:19:
68:ca:2f:e9:d5:fd:fc:8f:a4:3b:27:8e:93:f0:e7:92:70:c8:
43:2f:b5:eb:21:2d:3f:04:8b:2e:93:07:9e:5b:92:d0:42:87:
f7:2b:76:7a:4a:48:1d:eb:98:c7:8a:25:df:8a:87:c5:c5:39:
86:42:94:b4:81:c7:a7:e6:a7:a1:51:52:ba:26:45:99:40:ee:
11:c0:10:60:b6:e7:eb:d1:59:e7:78:e3:a3:14:ec:9e:d7:52:
76:5a:ea:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkYCWwLvGTIDLE4wjsDswXLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTMwOTgwMzA1MzQ1ZmQ1MzY1YjM1MTVlMzU2OGY5Y2Vl
NTg1NDEwHhcNMjUwOTA1MDQwMTM0WhcNMjUwOTA2MDQwMTM0WjAzMTEwLwYDVQQD
EygxZWJjMWQ3MTMzM2U3ODEwYTJhZWMyOWU1ODkwNWQ0M2VmMjZiMzE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNAwDM593MigeF8vrwH+sS//K80K
qIy4Oz00RyuApeOk/rPHFNdcCHf8NC6EUsf6CWcAxmGXMcjmR9nUdVStV9ZXP67D
RSu1bTQv1OftQU6iDxDQPY3FFF+7ruKbmqmicJmJ5eNPzPe3jUbGqbQ9i1fw0Xmf
BevijcriTh6QNtRmudhUaMImnPHLT7Yg6AeVr1iZKmrDFdyW5xRbU0+r+/ItS1Sq
RlK3L7R/eR0ioulhkCxN7HpshGCCaQrp/5qaMiGz58W07/wlLKietb9VydD7vBNb
5LkJxtLbXSRA1/O+7QkRKvOcGDUmFCKaRgu3qU58amnJ/kuj9N6KTgT3rwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB68HXEzPngQoq7CnliQXUPvJrMZMB8GA1UdIwQY
MBaAFGPjCYAwU0X9U2WzUV41aPnO5YVBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1NSmdEQlRSZjFUWmJOUlhqVm8tYzdsaFVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi9kYjU3ODctYzJjOC00MjliLTgxMzct
Y2JmNmMxODQ5YzQ0LzEvWS1NSmdEQlRSZjFUWmJOUlhqVm8tYzdsaFVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi9kYjU3ODctYzJjOC00MjliLTgxMzctY2JmNmMxODQ5YzQ0
LzEvWS1NSmdEQlRSZjFUWmJOUlhqVm8tYzdsaFVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASy6IPooc
Bqg6SP23MRUtlo63YvAPm3pRz3QLTL4yfn9cE7wXrUOPcEI9/U21q/0nVJvFaFuu
Jy+8CZtytNy9txkwsmQcNP4qPE+OLOZeHXNOS12mAsmxxLfgnLkLb4rrWZx+hU0I
yWYDp6scRsETIDkunQkz4X+JdSHFBfyoGBANwix90yXhsh9rjYNxAvcspp0j0FJ9
jJmF8fLos6nBpQEZaMov6dX9/I+kOyeOk/DnknDIQy+16yEtPwSLLpMHnluS0EKH
9yt2ekpIHeuYx4ol34qHxcU5hkKUtIHHp+anoVFSuiZFmUDuEcAQYLbn69FZ53jj
oxTsntdSdlrq6g==
-----END CERTIFICATE-----
Generated at Fri Sep 5 06:05:39 2025 by rpki-client