Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: r8glKmwaHYbDlIxMeoGYkJtHR/xjI0KBbKCWcbc1+xY=
Subject key identifier: 1D:09:3D:75:22:F4:8D:D5:8A:D2:25:1C:8C:AD:5B:65:FF:65:AA:DD
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 019A18E19D8C7AB294AF79C069622ACDDF7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 0A1B
Signing time: Sat 25 Oct 2025 01:00:30 +0000
Manifest this update: Sat 25 Oct 2025 01:00:30 +0000
Manifest next update: Sun 26 Oct 2025 01:00:30 +0000
Files and hashes: 1: qUq_q62qYu3qxVOMe_F0xihpmUw.roa (hash: SovqRJc4ePvthgrrsQXCalBtYnWMU+TdM7o0xgmwIiE=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: WL1bHKW4s5jHBo42ZxGPBEdFaGhbFKrWd1PFEHeLIlc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:18:e1:9d:8c:7a:b2:94:af:79:c0:69:62:2a:cd:df:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Oct 25 01:00:30 2025 GMT
Not After : Oct 26 01:00:30 2025 GMT
Subject: CN=1d093d7522f48dd58ad2251c8cad5b65ff65aadd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f6:31:03:c3:61:ac:3f:15:b4:27:ac:4d:e5:
60:51:b9:15:46:17:4a:3b:1c:ee:4f:65:69:8f:7b:
f6:76:b5:b8:a9:ab:af:82:29:7b:ff:f1:fe:1d:8e:
f4:c6:0d:9f:b5:e3:0b:4c:7e:24:b8:84:d9:8a:bb:
6c:46:f7:23:ba:6f:f5:92:8d:26:01:b8:63:51:fe:
11:ab:e8:2a:39:df:52:6f:1b:ee:24:d1:45:42:cb:
85:ce:e1:ae:25:dc:1a:9b:f5:f3:05:02:c0:b5:3c:
cf:71:97:1d:1b:9f:b2:3c:40:f1:da:f2:1b:0c:81:
66:d8:72:fd:6f:3c:8c:f1:73:07:0a:bf:94:22:36:
33:cb:87:09:01:f8:1f:da:46:ce:c9:6a:c0:95:46:
86:26:f4:dd:a5:32:4e:bf:a2:05:d8:2d:5c:3d:90:
58:18:95:8f:54:26:09:d7:fa:75:31:1d:9d:15:bf:
b4:2d:16:26:a7:9e:ad:69:65:09:fd:cc:2f:07:5e:
de:a3:dc:0c:59:9a:63:9b:cf:30:77:a4:38:3b:7f:
f2:0d:45:5d:b6:0d:65:60:f4:d8:8f:82:1a:9d:21:
9e:25:32:54:90:0b:ff:bf:ab:61:ee:ad:a9:16:4a:
e9:ea:00:a4:57:3e:31:a4:81:fc:36:f5:01:0f:a8:
05:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:09:3D:75:22:F4:8D:D5:8A:D2:25:1C:8C:AD:5B:65:FF:65:AA:DD
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:49:b1:68:3f:18:91:18:d2:e0:83:f2:0c:15:09:74:5d:c3:
f1:89:db:d9:67:d0:aa:6f:f9:11:c3:1e:55:3b:fc:14:aa:a3:
77:6a:f7:b8:0d:4b:d8:c8:1e:6d:6a:ea:97:a9:05:2a:7a:e3:
db:1e:38:9e:9d:b2:5a:6a:b5:60:7b:9a:af:5e:cc:20:2a:d4:
28:28:cc:ac:82:aa:d0:d1:24:38:ae:de:d1:8d:98:a1:3f:d8:
88:7a:2d:05:2d:fc:99:6e:24:57:10:2e:f3:a2:c2:ae:2a:4f:
d2:fe:f7:55:c2:5e:e9:f4:bf:db:1d:81:1d:0b:63:01:67:50:
46:4c:38:5e:38:a4:d9:7e:49:4f:7d:29:94:0a:78:42:3d:d1:
f8:b1:76:a0:ce:3d:0f:cd:b7:a5:26:ad:28:50:10:9a:c9:3b:
53:8f:b4:f5:21:f5:80:e8:f8:c6:d8:fe:f5:67:d0:3c:52:2a:
5f:4e:46:28:63:07:2e:4c:23:57:5d:ee:8d:fc:b1:93:e7:c8:
6d:39:28:1a:d8:d7:4b:76:c6:fb:62:0c:3f:03:a2:b4:d3:e5:
07:71:9e:01:ba:68:ca:2e:96:f3:38:70:9c:d2:87:7a:f7:4f:
6c:85:73:8f:93:1a:6d:95:8b:c8:38:b2:e4:23:6e:18:13:e3:
0a:47:98:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoY4Z2MerKUr3nAaWIqzd97MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkODUyNzJhNDA4MDkwNGY3NWUyMzVhNDdhZjBiNDEyNjZl
MmE2MDMwHhcNMjUxMDI1MDEwMDMwWhcNMjUxMDI2MDEwMDMwWjAzMTEwLwYDVQQD
EygxZDA5M2Q3NTIyZjQ4ZGQ1OGFkMjI1MWM4Y2FkNWI2NWZmNjVhYWRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0fYxA8NhrD8VtCesTeVgUbkVRhdK
OxzuT2Vpj3v2drW4qauvgil7//H+HY70xg2fteMLTH4kuITZirtsRvcjum/1ko0m
AbhjUf4Rq+gqOd9SbxvuJNFFQsuFzuGuJdwam/XzBQLAtTzPcZcdG5+yPEDx2vIb
DIFm2HL9bzyM8XMHCr+UIjYzy4cJAfgf2kbOyWrAlUaGJvTdpTJOv6IF2C1cPZBY
GJWPVCYJ1/p1MR2dFb+0LRYmp56taWUJ/cwvB17eo9wMWZpjm88wd6Q4O3/yDUVd
tg1lYPTYj4IanSGeJTJUkAv/v6th7q2pFkrp6gCkVz4xpIH8NvUBD6gFwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB0JPXUi9I3VitIlHIytW2X/ZardMB8GA1UdIwQY
MBaAFL2FJypAgJBPdeI1pHrwtBJm4qYDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMt
MjRmMjBmOTY3NWVjLzEvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMtMjRmMjBmOTY3NWVj
LzEvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM0mxaD8Y
kRjS4IPyDBUJdF3D8Ynb2WfQqm/5EcMeVTv8FKqjd2r3uA1L2MgebWrql6kFKnrj
2x44np2yWmq1YHuar17MICrUKCjMrIKq0NEkOK7e0Y2YoT/YiHotBS38mW4kVxAu
86LCripP0v73VcJe6fS/2x2BHQtjAWdQRkw4Xjik2X5JT30plAp4Qj3R+LF2oM49
D823pSatKFAQmsk7U4+09SH1gOj4xtj+9WfQPFIqX05GKGMHLkwjV13ujfyxk+fI
bTkoGtjXS3bG+2IMPwOitNPlB3GeAbpoyi6W8zhwnNKHevdPbIVzj5MabZWLyDiy
5CNuGBPjCkeYWw==
-----END CERTIFICATE-----
Generated at Sat Oct 25 08:53:31 2025 by rpki-client