Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/YOdz2_t1lX8Mxchj_M52ylijkwg.mft
File: YOdz2_t1lX8Mxchj_M52ylijkwg.mft (raw, json)
Hash identifier: hFqcq9Stu9Gab8Lyw9wNMayF8X97rLzEXkDNR7Jv95c=
Subject key identifier: 99:16:3B:C0:B9:81:80:93:0A:91:AB:63:01:E0:E2:29:31:D5:2A:E8
Authority key identifier: 60:E7:73:DB:FB:75:95:7F:0C:C5:C8:63:FC:CE:76:CA:58:A3:93:08
Certificate issuer: /CN=60e773dbfb75957f0cc5c863fcce76ca58a39308
Certificate serial: 01992EC7737AF78730F34CD009A89E7F5A7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YOdz2_t1lX8Mxchj_M52ylijkwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/YOdz2_t1lX8Mxchj_M52ylijkwg.mft
Manifest number: 0944
Signing time: Tue 09 Sep 2025 14:00:46 +0000
Manifest this update: Tue 09 Sep 2025 14:00:46 +0000
Manifest next update: Wed 10 Sep 2025 14:00:46 +0000
Files and hashes: 1: PQtqUQS_s4n0kinqfMA_4YnfNNY.roa (hash: D39QZGtQwYdkCVJ23N2oD5YrqEwumLtNGePQrn18tVk=)
2: YOdz2_t1lX8Mxchj_M52ylijkwg.crl (hash: 4wZodABr1b5TJjuei+6jnWclmCa4yPc6U7hLWB/a1Rw=)
3: pdC1KsOnjOvGFainyuUjzICPFes.roa (hash: 9PpZVEet2RmTDOe5qqgJNSaHCeSHC8NK2RueyDRCl5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/YOdz2_t1lX8Mxchj_M52ylijkwg.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/YOdz2_t1lX8Mxchj_M52ylijkwg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YOdz2_t1lX8Mxchj_M52ylijkwg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 14:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2e:c7:73:7a:f7:87:30:f3:4c:d0:09:a8:9e:7f:5a:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60e773dbfb75957f0cc5c863fcce76ca58a39308
Validity
Not Before: Sep 9 14:00:46 2025 GMT
Not After : Sep 10 14:00:46 2025 GMT
Subject: CN=99163bc0b98180930a91ab6301e0e22931d52ae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:de:03:0a:52:36:ec:e6:b3:66:8a:9f:83:f7:
4f:5f:37:f4:71:1c:98:be:e1:d9:ca:e2:11:0a:d0:
bb:4d:14:be:52:df:70:d9:2a:bd:ab:b3:e9:e4:42:
8d:f3:e4:12:53:25:44:35:e7:0e:ef:a6:48:83:1e:
c1:cf:9b:e5:ae:52:42:fb:8d:7e:33:3b:61:5c:c6:
9e:98:a8:2f:c3:62:a2:d0:ac:c6:f1:7c:89:47:85:
ef:2d:d5:1c:8e:63:33:ad:9e:86:03:c6:7f:b6:8f:
f5:9d:60:68:65:dd:31:e6:af:52:60:b0:be:41:e8:
5f:18:57:7c:64:fd:ad:c2:0a:a1:b0:52:0b:d5:87:
df:98:3b:6e:5e:25:ac:a5:30:0e:ee:c5:cb:5c:3a:
6f:cc:d0:aa:5f:38:6e:f7:9a:57:b0:c9:ea:93:6e:
9c:62:51:8e:37:ef:67:ef:97:45:43:a6:7f:80:e7:
f9:f0:be:22:ce:c6:73:91:90:08:3e:e0:46:dc:49:
9c:6b:54:06:57:c4:f5:93:3c:14:8c:34:31:29:e4:
36:30:c5:32:38:18:18:58:23:62:5a:7c:72:4f:a6:
fa:1a:02:f5:58:db:df:0e:fa:33:da:29:4e:6b:58:
e5:02:9d:27:00:de:77:1e:20:53:9d:14:4a:b0:01:
39:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:16:3B:C0:B9:81:80:93:0A:91:AB:63:01:E0:E2:29:31:D5:2A:E8
X509v3 Authority Key Identifier:
keyid:60:E7:73:DB:FB:75:95:7F:0C:C5:C8:63:FC:CE:76:CA:58:A3:93:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YOdz2_t1lX8Mxchj_M52ylijkwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/YOdz2_t1lX8Mxchj_M52ylijkwg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/YOdz2_t1lX8Mxchj_M52ylijkwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:a3:3c:19:8a:f6:38:f7:fa:cd:d1:7d:fb:5e:9b:9e:8a:9f:
30:66:ec:47:31:5e:7f:4c:73:e2:d0:ad:0f:7f:4a:fe:8a:50:
69:1b:41:4d:2d:b4:53:58:02:29:5e:ec:da:74:c7:02:f4:0d:
9c:8c:59:31:fa:bd:1c:cd:d9:41:57:1e:d2:f2:eb:11:41:71:
e0:3f:c7:14:b5:a6:dd:64:83:e0:6a:9f:b3:2a:b1:5b:c0:85:
00:6c:29:5d:dd:d1:96:aa:de:1e:c3:04:94:39:0c:4e:71:47:
0e:57:7e:25:7a:7b:37:37:c3:ec:71:32:e9:f7:36:0b:0e:ea:
f0:79:4a:60:28:74:c7:75:91:ef:33:3e:79:63:70:ca:b1:3d:
8d:90:78:4a:8b:ab:4f:15:02:da:d3:7b:70:26:d3:8f:4d:27:
47:d6:44:64:e5:9c:8c:58:60:09:c6:ab:b7:5d:e5:3a:69:d6:
87:e4:96:04:d5:a8:95:0a:bf:15:cd:49:2d:d7:bd:a1:33:62:
8b:bd:78:82:59:f7:27:a8:4a:21:92:b1:d6:cd:c1:05:87:7a:
f7:b7:45:33:4f:58:b1:58:d3:16:59:c3:c4:36:26:35:59:6d:
e7:33:8e:4d:a9:3f:fd:34:4f:be:6a:e3:17:86:f4:b4:11:66:
8b:24:43:a5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkux3N694cw80zQCaief1p9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwZTc3M2RiZmI3NTk1N2YwY2M1Yzg2M2ZjY2U3NmNhNThh
MzkzMDgwHhcNMjUwOTA5MTQwMDQ2WhcNMjUwOTEwMTQwMDQ2WjAzMTEwLwYDVQQD
Eyg5OTE2M2JjMGI5ODE4MDkzMGE5MWFiNjMwMWUwZTIyOTMxZDUyYWU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzN4DClI27OazZoqfg/dPXzf0cRyY
vuHZyuIRCtC7TRS+Ut9w2Sq9q7Pp5EKN8+QSUyVENecO76ZIgx7Bz5vlrlJC+41+
MzthXMaemKgvw2Ki0KzG8XyJR4XvLdUcjmMzrZ6GA8Z/to/1nWBoZd0x5q9SYLC+
QehfGFd8ZP2twgqhsFIL1YffmDtuXiWspTAO7sXLXDpvzNCqXzhu95pXsMnqk26c
YlGON+9n75dFQ6Z/gOf58L4izsZzkZAIPuBG3Emca1QGV8T1kzwUjDQxKeQ2MMUy
OBgYWCNiWnxyT6b6GgL1WNvfDvoz2ilOa1jlAp0nAN53HiBTnRRKsAE56QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJkWO8C5gYCTCpGrYwHg4ikx1SroMB8GA1UdIwQY
MBaAFGDnc9v7dZV/DMXIY/zOdspYo5MIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWU9kejJfdDFsWDhNeGNoal9NNTJ5bGlqa3dnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC9jOTlkNmYtODJlZS00NzY4LTgwNWIt
NDc2ZDdlNjJjZWY2LzEvWU9kejJfdDFsWDhNeGNoal9NNTJ5bGlqa3dnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC9jOTlkNmYtODJlZS00NzY4LTgwNWItNDc2ZDdlNjJjZWY2
LzEvWU9kejJfdDFsWDhNeGNoal9NNTJ5bGlqa3dnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJKM8GYr2
OPf6zdF9+16bnoqfMGbsRzFef0xz4tCtD39K/opQaRtBTS20U1gCKV7s2nTHAvQN
nIxZMfq9HM3ZQVce0vLrEUFx4D/HFLWm3WSD4GqfsyqxW8CFAGwpXd3RlqreHsME
lDkMTnFHDld+JXp7NzfD7HEy6fc2Cw7q8HlKYCh0x3WR7zM+eWNwyrE9jZB4Sour
TxUC2tN7cCbTj00nR9ZEZOWcjFhgCcart13lOmnWh+SWBNWolQq/Fc1JLde9oTNi
i714gln3J6hKIZKx1s3BBYd697dFM09YsVjTFlnDxDYmNVlt5zOOTak//TRPvmrj
F4b0tBFmiyRDpQ==
-----END CERTIFICATE-----
Generated at Tue Sep 9 19:11:23 2025 by rpki-client