Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.mft
File: YihBc2HBxAaumnJX2qn7BiB4LTU.mft (raw, json)
Hash identifier: wft9U0GH+Zrj2+UAusqMdVkeIS2CFxCReXTO/BI9NPI=
Subject key identifier: E0:59:34:EA:4E:E4:A7:D1:F1:0C:65:A0:A2:D2:C4:30:8F:ED:59:C5
Authority key identifier: 62:28:41:73:61:C1:C4:06:AE:9A:72:57:DA:A9:FB:06:20:78:2D:35
Certificate issuer: /CN=6228417361c1c406ae9a7257daa9fb0620782d35
Certificate serial: 019A1505053426505ECBD2EA6D0A5BB13F69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YihBc2HBxAaumnJX2qn7BiB4LTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.mft
Manifest number: 0F94
Signing time: Fri 24 Oct 2025 07:00:41 +0000
Manifest this update: Fri 24 Oct 2025 07:00:41 +0000
Manifest next update: Sat 25 Oct 2025 07:00:41 +0000
Files and hashes: 1: YihBc2HBxAaumnJX2qn7BiB4LTU.crl (hash: k2ZhPAws3FnZUbkLfus7w6ntDYM3F499LNF8MndpaEo=)
2: orR6QmUobPq58IiNnqewDNf0I7s.roa (hash: cEMGLelbH1U4lpzSE43pcUZRdK2/HRG/uJ16sgFxOVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YihBc2HBxAaumnJX2qn7BiB4LTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 07:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:15:05:05:34:26:50:5e:cb:d2:ea:6d:0a:5b:b1:3f:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228417361c1c406ae9a7257daa9fb0620782d35
Validity
Not Before: Oct 24 07:00:41 2025 GMT
Not After : Oct 25 07:00:41 2025 GMT
Subject: CN=e05934ea4ee4a7d1f10c65a0a2d2c4308fed59c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ca:e9:99:81:66:e7:a8:db:bf:dc:97:7d:11:
fe:fb:36:85:2c:f2:83:8e:aa:09:2f:a9:0c:dd:5e:
8e:3e:22:67:79:3a:b7:e4:a9:97:61:8a:3a:82:98:
e3:55:42:8c:96:ee:86:a6:ac:9d:16:54:f7:80:2b:
29:33:97:c3:8f:90:a6:97:70:2d:87:b9:f6:bc:ab:
9b:bb:c0:30:4b:f1:07:aa:55:62:d8:89:01:90:8c:
b3:5b:23:25:59:af:ef:5c:d3:69:12:21:fb:5d:80:
ea:01:41:57:d3:b6:7c:be:27:f9:19:7e:bd:8f:ac:
6e:50:e8:d1:77:05:e3:04:de:fa:26:22:f9:af:32:
d9:34:2c:7e:f1:a2:a6:fc:51:02:34:6d:6a:4b:3a:
f8:3a:98:46:38:be:87:96:d0:7a:92:bb:bf:07:ae:
ae:98:3d:3a:8e:0a:7e:c3:00:66:41:42:0a:c0:90:
af:ad:35:60:84:58:32:af:d9:e8:b7:2f:0c:4d:bb:
a1:7d:3c:76:f3:c8:18:5d:63:aa:3e:59:8d:e7:40:
ed:07:93:8d:6e:90:ef:8c:8a:19:aa:8e:d2:87:d5:
c1:9c:fd:72:5a:0d:a2:82:e8:8c:a9:11:c8:12:aa:
0d:68:49:ad:79:2e:9e:d7:25:75:9e:4f:c5:65:29:
29:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:59:34:EA:4E:E4:A7:D1:F1:0C:65:A0:A2:D2:C4:30:8F:ED:59:C5
X509v3 Authority Key Identifier:
keyid:62:28:41:73:61:C1:C4:06:AE:9A:72:57:DA:A9:FB:06:20:78:2D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YihBc2HBxAaumnJX2qn7BiB4LTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:c7:97:39:0b:76:3b:be:bc:9f:5b:a5:b3:8a:aa:52:88:c4:
a5:67:a7:5c:ea:d4:d4:23:c0:83:08:23:58:89:dd:14:29:e5:
6b:35:22:8c:07:be:83:60:95:58:e5:aa:43:77:e3:05:24:d7:
6f:62:5f:0c:16:89:9e:db:fa:14:ca:50:33:1f:4a:84:6d:e7:
d9:39:14:18:d7:28:b5:10:7c:ed:fd:3f:ee:bc:d3:ad:3a:41:
01:5d:f6:7f:41:79:b4:55:a1:e2:97:0d:5d:34:38:3d:ef:79:
4f:23:82:31:9d:77:9e:6b:bd:77:04:f9:5f:d6:47:d3:49:d6:
92:bb:41:9d:59:01:e5:68:f4:c3:29:4d:70:50:d3:b8:ce:6d:
66:47:ca:ba:7e:3b:55:0e:db:2d:de:fa:cc:67:d3:25:7b:25:
9c:23:d0:a1:72:c4:44:53:c0:0b:02:66:9f:70:ed:26:e0:74:
49:45:d2:ba:f6:16:af:7f:a2:49:e4:e0:f7:47:dd:ad:97:e1:
32:87:a6:d9:b4:94:c4:03:a9:10:5c:b7:b2:1f:dd:e4:6f:ac:
14:61:89:a1:3d:f9:f1:0d:03:71:aa:18:f0:a6:ce:be:01:fa:
45:9d:2b:33:9b:5a:3d:ee:62:46:43:b6:c1:4d:3e:f5:4a:62:
af:d5:f0:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoVBQU0JlBey9LqbQpbsT9pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMjg0MTczNjFjMWM0MDZhZTlhNzI1N2RhYTlmYjA2MjA3
ODJkMzUwHhcNMjUxMDI0MDcwMDQxWhcNMjUxMDI1MDcwMDQxWjAzMTEwLwYDVQQD
EyhlMDU5MzRlYTRlZTRhN2QxZjEwYzY1YTBhMmQyYzQzMDhmZWQ1OWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1crpmYFm56jbv9yXfRH++zaFLPKD
jqoJL6kM3V6OPiJneTq35KmXYYo6gpjjVUKMlu6GpqydFlT3gCspM5fDj5Cml3At
h7n2vKubu8AwS/EHqlVi2IkBkIyzWyMlWa/vXNNpEiH7XYDqAUFX07Z8vif5GX69
j6xuUOjRdwXjBN76JiL5rzLZNCx+8aKm/FECNG1qSzr4OphGOL6HltB6kru/B66u
mD06jgp+wwBmQUIKwJCvrTVghFgyr9noty8MTbuhfTx288gYXWOqPlmN50DtB5ON
bpDvjIoZqo7Sh9XBnP1yWg2iguiMqRHIEqoNaEmteS6e1yV1nk/FZSkpQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOBZNOpO5KfR8QxloKLSxDCP7VnFMB8GA1UdIwQY
MBaAFGIoQXNhwcQGrppyV9qp+wYgeC01MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWloQmMySEJ4QWF1bW5KWDJxbjdCaUI0TFRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC83MWYyZTgtYmQ4Ni00YzVlLTk1NTEt
NGQzYTU5Y2I5NDM5LzEvWWloQmMySEJ4QWF1bW5KWDJxbjdCaUI0TFRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC83MWYyZTgtYmQ4Ni00YzVlLTk1NTEtNGQzYTU5Y2I5NDM5
LzEvWWloQmMySEJ4QWF1bW5KWDJxbjdCaUI0TFRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOMeXOQt2
O768n1uls4qqUojEpWenXOrU1CPAgwgjWIndFCnlazUijAe+g2CVWOWqQ3fjBSTX
b2JfDBaJntv6FMpQMx9KhG3n2TkUGNcotRB87f0/7rzTrTpBAV32f0F5tFWh4pcN
XTQ4Pe95TyOCMZ13nmu9dwT5X9ZH00nWkrtBnVkB5Wj0wylNcFDTuM5tZkfKun47
VQ7bLd76zGfTJXslnCPQoXLERFPACwJmn3DtJuB0SUXSuvYWr3+iSeTg90fdrZfh
Moem2bSUxAOpEFy3sh/d5G+sFGGJoT358Q0DcaoY8KbOvgH6RZ0rM5taPe5iRkO2
wU0+9Upir9XwEg==
-----END CERTIFICATE-----
Generated at Fri Oct 24 11:11:11 2025 by rpki-client