Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
File: YjqxggzkjFedpAxm2FJl8cLPy04.mft (raw, json)
Hash identifier: IRuZgnkZWONiRqDJRees3CdCqtza5fNSnpLl1xuEFUI=
Subject key identifier: 6D:B1:47:B1:CE:46:C4:AD:C6:9C:7D:07:2E:47:0B:5E:C5:48:C8:EA
Authority key identifier: 62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E
Certificate issuer: /CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e
Certificate serial: 019A7294087D6BCCD38ACB1D4F0F9FA9ED9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
Manifest number: 07A4
Signing time: Tue 11 Nov 2025 11:01:35 +0000
Manifest this update: Tue 11 Nov 2025 11:01:35 +0000
Manifest next update: Wed 12 Nov 2025 11:01:35 +0000
Files and hashes: 1: YjqxggzkjFedpAxm2FJl8cLPy04.crl (hash: vr1gRvwRhyrjqHDGLM+dY2Md5FjX+2wJmmfmvItmqyM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:94:08:7d:6b:cc:d3:8a:cb:1d:4f:0f:9f:a9:ed:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e
Validity
Not Before: Nov 11 11:01:35 2025 GMT
Not After : Nov 12 11:01:35 2025 GMT
Subject: CN=6db147b1ce46c4adc69c7d072e470b5ec548c8ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8d:52:2b:c5:69:d1:7a:ec:98:70:80:72:22:
4c:3e:24:f4:31:ac:ab:9c:30:4b:38:67:62:d8:0f:
fd:34:25:c5:f0:47:0b:a2:8e:5e:bc:07:dd:08:24:
0c:cf:08:58:29:63:22:43:40:66:6d:6e:c4:21:1f:
81:b7:24:a8:0a:59:74:da:a1:ef:ec:a1:27:df:34:
86:f0:b3:d6:d4:c6:68:ec:35:c3:0e:69:bf:9d:3e:
cf:b8:bf:db:af:8a:37:ed:78:38:87:3d:be:ef:af:
31:df:bc:c9:0f:35:d2:b4:ed:fb:14:21:e6:72:3b:
ef:e7:c3:d0:3b:0b:5d:32:2f:55:79:96:73:c6:d1:
76:f7:e9:ae:f1:8d:56:a0:92:59:3f:9a:ef:83:df:
6d:8b:2a:4e:6a:4f:04:e9:64:68:f9:0c:8d:29:00:
d8:b2:2c:81:7e:79:dc:7d:b8:5c:c6:8e:95:84:fb:
7c:d1:92:f2:28:8d:88:f6:0c:3e:dd:c0:1c:a9:51:
ec:c4:02:61:ac:71:67:ca:df:db:f7:4d:87:1f:65:
e7:c4:bb:8f:aa:9d:66:04:71:27:20:49:70:66:84:
cd:f6:49:c6:1d:8c:bb:86:18:27:c9:fb:84:f2:99:
65:5e:1d:1b:f6:a2:12:ae:26:7f:dd:2c:bd:2a:4d:
e6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:B1:47:B1:CE:46:C4:AD:C6:9C:7D:07:2E:47:0B:5E:C5:48:C8:EA
X509v3 Authority Key Identifier:
keyid:62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:b1:1d:4a:22:6b:1d:32:e3:a0:fc:98:71:e0:b9:b4:9c:fe:
b2:7c:ae:6f:e4:61:90:f1:6d:fe:c5:82:33:1e:e1:97:c4:41:
fd:9e:dc:fc:29:b2:60:32:36:9c:d5:2b:ae:e2:9a:56:96:1c:
1c:4f:16:df:34:56:e2:1c:05:e4:9e:5f:32:c5:79:c8:1e:f3:
dc:3a:0c:bb:cd:a0:c2:73:7d:08:28:af:92:6a:8a:13:e4:25:
34:ea:1b:f6:56:2e:f3:b5:d5:95:9a:28:33:10:cf:ee:32:f7:
b0:0b:37:97:ec:5c:39:89:40:ce:08:42:f3:f1:71:28:e9:18:
2d:f7:2b:7b:86:51:5f:35:89:10:0b:65:78:1d:14:d4:52:25:
df:5d:94:6d:13:08:fd:ec:93:65:34:f8:45:4c:f5:9e:27:28:
57:b7:c3:4c:ed:a6:aa:c9:12:d2:e1:65:be:03:73:0d:2b:cd:
7c:83:22:57:43:47:0d:2a:da:3e:13:7d:fd:83:c5:c0:05:af:
e6:0d:56:ac:44:b7:c4:50:d7:72:1c:e7:7d:81:a9:3a:83:fd:
b3:4b:14:da:9e:8f:86:d8:bd:68:20:07:d2:b6:bb:8b:95:b0:
4a:52:93:c7:9a:16:51:0b:58:27:6d:fd:ba:ba:e9:04:79:e4:
76:ae:16:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpylAh9a8zTissdTw+fqe2fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyM2FiMTgyMGNlNDhjNTc5ZGE0MGM2NmQ4NTI2NWYxYzJj
ZmNiNGUwHhcNMjUxMTExMTEwMTM1WhcNMjUxMTEyMTEwMTM1WjAzMTEwLwYDVQQD
Eyg2ZGIxNDdiMWNlNDZjNGFkYzY5YzdkMDcyZTQ3MGI1ZWM1NDhjOGVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoY1SK8Vp0XrsmHCAciJMPiT0Mayr
nDBLOGdi2A/9NCXF8EcLoo5evAfdCCQMzwhYKWMiQ0BmbW7EIR+BtySoCll02qHv
7KEn3zSG8LPW1MZo7DXDDmm/nT7PuL/br4o37Xg4hz2+768x37zJDzXStO37FCHm
cjvv58PQOwtdMi9VeZZzxtF29+mu8Y1WoJJZP5rvg99tiypOak8E6WRo+QyNKQDY
siyBfnncfbhcxo6VhPt80ZLyKI2I9gw+3cAcqVHsxAJhrHFnyt/b902HH2XnxLuP
qp1mBHEnIElwZoTN9knGHYy7hhgnyfuE8pllXh0b9qISriZ/3Sy9Kk3myQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG2xR7HORsStxpx9By5HC17FSMjqMB8GA1UdIwQY
MBaAFGI6sYIM5IxXnaQMZthSZfHCz8tOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWpxeGdnemtqRmVkcEF4bTJGSmw4Y0xQeTA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9iNGM5ZDUtZTI3Zi00NGJmLWJhNDIt
NmMzZDExZDQwZDc4LzEvWWpxeGdnemtqRmVkcEF4bTJGSmw4Y0xQeTA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9iNGM5ZDUtZTI3Zi00NGJmLWJhNDItNmMzZDExZDQwZDc4
LzEvWWpxeGdnemtqRmVkcEF4bTJGSmw4Y0xQeTA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALLEdSiJr
HTLjoPyYceC5tJz+snyub+RhkPFt/sWCMx7hl8RB/Z7c/CmyYDI2nNUrruKaVpYc
HE8W3zRW4hwF5J5fMsV5yB7z3DoMu82gwnN9CCivkmqKE+QlNOob9lYu87XVlZoo
MxDP7jL3sAs3l+xcOYlAzghC8/FxKOkYLfcre4ZRXzWJEAtleB0U1FIl312UbRMI
/eyTZTT4RUz1nicoV7fDTO2mqskS0uFlvgNzDSvNfIMiV0NHDSraPhN9/YPFwAWv
5g1WrES3xFDXchznfYGpOoP9s0sU2p6Phti9aCAH0ra7i5WwSlKTx5oWUQtYJ239
urrpBHnkdq4Wsg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:45:09 2025 by rpki-client