Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
File: yikNsvcpBfDbYmsAW6zwiHjRe6w.mft (raw, json)
Hash identifier: N+j+mtQ5U8ft0UbiMqiykotqIA5jVmIOIA8CDfp8gn8=
Subject key identifier: 28:73:39:EA:01:F6:27:F9:97:3D:E7:F1:16:A7:F8:A4:E3:41:8D:46
Authority key identifier: CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
Certificate issuer: /CN=ca290db2f72905f0db626b005bacf08878d17bac
Certificate serial: 019A71B8B913F37F94D37423E7810A5DFA8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
Manifest number: 0B49
Signing time: Tue 11 Nov 2025 07:02:02 +0000
Manifest this update: Tue 11 Nov 2025 07:02:02 +0000
Manifest next update: Wed 12 Nov 2025 07:02:02 +0000
Files and hashes: 1: 4hjeIW8185ZaECNggenf_uHhDOA.roa (hash: UoLjdkox8BXch3olGfF5NhOzyEQg7VA83kohLHFMIMk=)
2: Fw_kxU9y2ZFFUFhTyjj3cOM8HE0.roa (hash: RbilBDizHS14qZ4Da7c1uCTbplJrxj3lujK+7Ie1xww=)
3: IFrDv6Ls6n5V8fwzlZ-9RjYsC1A.roa (hash: /KA/Ir1BpmGewtvhuM2WTh9hgPTfLUu7FlDEzEKhle8=)
4: _6UZkqieR9kIkKZwwfKfkm35fd4.roa (hash: TAVIhSh9eMt1b6339NxSWJ46JPMbHN7C8v9n3qx3ibk=)
5: gqWeYouP3tCgtjbkj-l_gQg8hIo.roa (hash: /JDKYsMSdFrnBptTFdWQqSfzinHaa7LMqQq1Q4agYW8=)
6: iqYLpAFtuo6gr-j-Ly-Vnr8R2MU.roa (hash: qX/Ce2Cu2rGWIQEWtxm8FeM0QBiPxiljZdApDi//miE=)
7: yikNsvcpBfDbYmsAW6zwiHjRe6w.crl (hash: dVlwQzwOErjBevbZdCaHlC1DfXAQ8fIPuWTl3Ka+E/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:b9:13:f3:7f:94:d3:74:23:e7:81:0a:5d:fa:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca290db2f72905f0db626b005bacf08878d17bac
Validity
Not Before: Nov 11 07:02:02 2025 GMT
Not After : Nov 12 07:02:02 2025 GMT
Subject: CN=287339ea01f627f9973de7f116a7f8a4e3418d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:24:22:f5:b1:2c:d7:03:4a:d1:a8:be:8b:2a:
d5:0d:8b:ec:ae:98:8a:8e:47:14:c7:b7:49:a9:0c:
d3:3c:be:58:94:00:70:7c:0a:eb:82:66:ba:79:1e:
28:30:e0:2d:01:dc:11:e6:b2:ca:aa:50:1c:8c:1d:
c5:bb:71:97:d3:2f:b8:40:d0:41:8b:f8:e7:c7:96:
b5:d1:05:e2:c8:21:ba:22:ca:f3:46:ce:b0:9c:f4:
86:54:7e:d5:a7:61:21:b7:1a:a2:0f:13:4d:04:2c:
85:26:55:bd:7c:5d:ae:17:5e:ea:7c:56:03:7c:b6:
ed:11:30:8c:1e:13:da:69:fa:c5:ee:58:b7:39:b0:
5a:90:96:75:c2:0d:f5:74:c8:52:a1:09:69:a0:57:
0b:a4:c7:d8:6a:e6:7c:28:04:f4:b2:5b:bf:a8:98:
ed:bb:c7:d6:68:37:dd:c4:8b:80:be:b2:fc:65:d8:
4a:19:e6:63:58:18:5d:6f:8a:14:20:da:42:21:d5:
8f:c2:b7:49:37:f9:7a:ca:7a:2a:cd:53:0f:6b:98:
95:f9:87:06:aa:71:83:81:1b:04:7b:7c:a3:27:45:
02:15:a8:d4:70:d6:37:e1:97:25:1b:94:2d:6e:f0:
4d:c8:c6:79:5d:21:1c:6c:68:e3:a0:24:a3:88:b3:
bd:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:73:39:EA:01:F6:27:F9:97:3D:E7:F1:16:A7:F8:A4:E3:41:8D:46
X509v3 Authority Key Identifier:
keyid:CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:2e:66:5d:e6:fb:c7:4a:bf:56:c2:ed:ac:a0:ad:7e:a5:dd:
be:b9:72:f1:1b:e0:73:5a:7b:6e:ee:bb:eb:61:a5:98:81:19:
0c:2f:a3:d6:95:32:b1:db:b2:be:73:08:0f:3e:25:00:ce:f9:
1c:f2:e2:1d:b2:43:55:61:31:6f:ba:63:c5:fb:2f:5f:f4:2e:
cb:cd:99:7b:96:b4:cd:de:50:a4:b0:4b:5e:43:25:af:a9:cb:
ac:89:83:b9:2d:12:af:fd:c8:38:92:d2:fb:04:96:ea:d7:8c:
ed:f3:1e:65:f7:d8:c0:0a:98:44:cd:0c:38:b7:dc:e0:63:e0:
a2:9f:e2:8b:ed:65:3e:cc:fe:62:43:9d:a4:52:f0:26:fb:88:
72:a7:08:9d:73:28:f9:4b:0e:9e:37:5a:79:fc:6d:90:ea:b7:
c9:56:23:77:cf:68:e0:e3:1c:42:98:32:30:2e:73:9a:de:4d:
83:ba:5c:e1:b3:ed:36:21:84:4b:8b:f6:12:92:ef:c9:63:7a:
73:cf:27:b3:a6:0c:a3:35:5e:c2:ac:26:af:2a:a5:13:5e:d9:
c2:87:03:73:9c:41:26:3c:e8:d5:68:36:80:49:d1:0e:f9:30:
19:d0:65:3f:88:35:49:99:05:77:5a:1d:48:66:3c:f7:56:f8:
f2:ef:a5:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuLkT83+U03Qj54EKXfqPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMjkwZGIyZjcyOTA1ZjBkYjYyNmIwMDViYWNmMDg4Nzhk
MTdiYWMwHhcNMjUxMTExMDcwMjAyWhcNMjUxMTEyMDcwMjAyWjAzMTEwLwYDVQQD
EygyODczMzllYTAxZjYyN2Y5OTczZGU3ZjExNmE3ZjhhNGUzNDE4ZDQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuiQi9bEs1wNK0ai+iyrVDYvsrpiK
jkcUx7dJqQzTPL5YlABwfArrgma6eR4oMOAtAdwR5rLKqlAcjB3Fu3GX0y+4QNBB
i/jnx5a10QXiyCG6IsrzRs6wnPSGVH7Vp2EhtxqiDxNNBCyFJlW9fF2uF17qfFYD
fLbtETCMHhPaafrF7li3ObBakJZ1wg31dMhSoQlpoFcLpMfYauZ8KAT0slu/qJjt
u8fWaDfdxIuAvrL8ZdhKGeZjWBhdb4oUINpCIdWPwrdJN/l6ynoqzVMPa5iV+YcG
qnGDgRsEe3yjJ0UCFajUcNY34ZclG5QtbvBNyMZ5XSEcbGjjoCSjiLO9OQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFChzOeoB9if5lz3n8Ran+KTjQY1GMB8GA1UdIwQY
MBaAFMopDbL3KQXw22JrAFus8Ih40XusMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWlrTnN2Y3BCZkRiWW1zQVc2endpSGpSZTZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8yMTY5NzMtNTE2Zi00NTAxLTkxNjQt
N2Y0MzViZjU1MDFjLzEveWlrTnN2Y3BCZkRiWW1zQVc2endpSGpSZTZ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS8yMTY5NzMtNTE2Zi00NTAxLTkxNjQtN2Y0MzViZjU1MDFj
LzEveWlrTnN2Y3BCZkRiWW1zQVc2endpSGpSZTZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdC5mXeb7
x0q/VsLtrKCtfqXdvrly8Rvgc1p7bu6762GlmIEZDC+j1pUysduyvnMIDz4lAM75
HPLiHbJDVWExb7pjxfsvX/Quy82Ze5a0zd5QpLBLXkMlr6nLrImDuS0Sr/3IOJLS
+wSW6teM7fMeZffYwAqYRM0MOLfc4GPgop/ii+1lPsz+YkOdpFLwJvuIcqcInXMo
+UsOnjdaefxtkOq3yVYjd89o4OMcQpgyMC5zmt5Ng7pc4bPtNiGES4v2EpLvyWN6
c88ns6YMozVewqwmryqlE17ZwocDc5xBJjzo1Wg2gEnRDvkwGdBlP4g1SZkFd1od
SGY891b48u+lzQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:20:33 2025 by rpki-client