Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
File: yABBYZAh42MorViY6Jl4cEa48Pk.mft (raw, json)
Hash identifier: dDiKOvt5ZlO14LDRHmx6/y77MlUDIHwNQjguBgCsPgk=
Subject key identifier: 92:42:D2:C5:D2:E0:06:FB:B9:2C:73:80:85:20:5E:B4:2A:F8:ED:DA
Authority key identifier: C8:00:41:61:90:21:E3:63:28:AD:58:98:E8:99:78:70:46:B8:F0:F9
Certificate issuer: /CN=c80041619021e36328ad5898e899787046b8f0f9
Certificate serial: 01991808E98CBE34EC5B6CD597641DB59FDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yABBYZAh42MorViY6Jl4cEa48Pk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
Manifest number: 06FB
Signing time: Fri 05 Sep 2025 04:01:01 +0000
Manifest this update: Fri 05 Sep 2025 04:01:01 +0000
Manifest next update: Sat 06 Sep 2025 04:01:01 +0000
Files and hashes: 1: Mok6_FqiiR5wYGEWZBTs8xeaVoQ.roa (hash: FbjTDRIPu8bBy/5KLYHNgVHrWy/v2L+xeWuUUm4Xmek=)
2: yABBYZAh42MorViY6Jl4cEa48Pk.crl (hash: GailLQdC2m6/f+hi6MB5tkAy6kLpsX1zJMPGO5tvz6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yABBYZAh42MorViY6Jl4cEa48Pk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:08:e9:8c:be:34:ec:5b:6c:d5:97:64:1d:b5:9f:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c80041619021e36328ad5898e899787046b8f0f9
Validity
Not Before: Sep 5 04:01:01 2025 GMT
Not After : Sep 6 04:01:01 2025 GMT
Subject: CN=9242d2c5d2e006fbb92c738085205eb42af8edda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5c:49:24:1b:dd:8e:b6:da:de:04:00:81:0c:
9c:8b:ef:e3:fc:4c:53:40:25:b0:51:7e:f6:ed:e5:
ca:e7:4a:39:70:d5:3d:27:d2:ba:9a:ee:bd:96:20:
6a:a7:5f:34:16:f0:e3:2c:69:7a:f6:86:bd:95:38:
70:b7:6c:8c:dc:e3:0c:30:0d:63:0b:ed:cb:6b:12:
75:65:70:5a:6c:8c:52:c0:d0:cd:df:e8:eb:14:79:
fc:a5:50:12:31:ce:7b:31:d3:4d:51:be:aa:5e:bf:
21:06:74:70:a9:be:22:c0:69:7b:df:2e:8a:76:75:
01:63:c2:33:4d:42:04:6a:25:ac:c9:cc:59:5e:6c:
52:ab:a7:86:ac:a5:c2:36:aa:3c:7b:65:e0:ec:9a:
aa:d2:bf:9d:cd:ff:f0:70:11:eb:19:5f:d7:33:bf:
b0:c6:bb:55:2f:2e:c2:48:fc:88:f6:1e:9f:3a:32:
86:00:be:9e:99:6c:67:49:c4:96:cd:6e:39:79:ea:
de:f5:3f:e3:7b:1e:e0:d7:eb:1d:29:11:f8:39:8a:
5f:80:87:c6:1b:0d:d6:7d:c1:39:19:f3:e4:ec:62:
e0:39:64:ff:fa:55:12:a7:02:3e:02:a7:93:58:eb:
c3:21:87:ff:36:7a:95:f4:9c:c9:5f:09:d1:7c:80:
e5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:42:D2:C5:D2:E0:06:FB:B9:2C:73:80:85:20:5E:B4:2A:F8:ED:DA
X509v3 Authority Key Identifier:
keyid:C8:00:41:61:90:21:E3:63:28:AD:58:98:E8:99:78:70:46:B8:F0:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yABBYZAh42MorViY6Jl4cEa48Pk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:c3:61:7b:5e:5d:26:fc:a1:6f:5a:d2:3d:fd:c8:8b:ba:91:
1c:e6:4e:e4:57:f6:90:71:94:d0:26:0f:02:95:33:e2:11:0b:
c3:2c:99:a7:0f:90:fc:86:f3:7c:6c:75:ae:e1:08:41:88:f6:
f4:33:6b:b5:77:a6:0d:31:cc:34:d1:f8:48:ef:53:af:47:fa:
6f:d9:49:65:d4:c5:8a:9d:3d:55:1c:d0:84:1c:02:7a:86:fe:
c1:3e:ab:02:c8:c7:4e:1c:48:b7:52:64:7e:8c:8a:62:75:9d:
73:14:a4:ca:ab:3c:9d:89:bc:1c:92:7f:68:df:9c:1e:f0:e2:
67:f0:f4:d6:45:f4:20:1a:b3:37:ec:b0:3d:95:70:d5:a5:97:
b5:c0:50:f4:08:04:47:ae:64:90:d0:67:95:de:47:6f:23:46:
b2:f1:6d:36:27:43:4e:da:b8:1a:38:4b:19:e6:47:81:29:d8:
26:31:0b:08:8c:a7:c2:63:a8:d0:88:52:0f:6c:b9:54:9f:92:
25:b9:8a:f5:c0:be:d5:15:24:aa:74:73:44:bc:da:8b:b5:84:
22:88:d1:4b:ba:1c:d7:df:05:b4:a4:43:e1:47:37:d7:c5:82:
ce:08:83:8e:ab:4f:c9:df:52:20:78:bf:b1:78:29:fc:0d:49:
59:37:30:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkYCOmMvjTsW2zVl2QdtZ/cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4MDA0MTYxOTAyMWUzNjMyOGFkNTg5OGU4OTk3ODcwNDZi
OGYwZjkwHhcNMjUwOTA1MDQwMTAxWhcNMjUwOTA2MDQwMTAxWjAzMTEwLwYDVQQD
Eyg5MjQyZDJjNWQyZTAwNmZiYjkyYzczODA4NTIwNWViNDJhZjhlZGRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAplxJJBvdjrba3gQAgQyci+/j/ExT
QCWwUX727eXK50o5cNU9J9K6mu69liBqp180FvDjLGl69oa9lThwt2yM3OMMMA1j
C+3LaxJ1ZXBabIxSwNDN3+jrFHn8pVASMc57MdNNUb6qXr8hBnRwqb4iwGl73y6K
dnUBY8IzTUIEaiWsycxZXmxSq6eGrKXCNqo8e2Xg7Jqq0r+dzf/wcBHrGV/XM7+w
xrtVLy7CSPyI9h6fOjKGAL6emWxnScSWzW45eere9T/jex7g1+sdKRH4OYpfgIfG
Gw3WfcE5GfPk7GLgOWT/+lUSpwI+AqeTWOvDIYf/NnqV9JzJXwnRfIDlpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJJC0sXS4Ab7uSxzgIUgXrQq+O3aMB8GA1UdIwQY
MBaAFMgAQWGQIeNjKK1YmOiZeHBGuPD5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUFCQllaQWg0Mk1vclZpWTZKbDRjRWE0OFBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82ODVjOTktY2ZkZi00MmEwLTg0MzYt
ZDI5N2RiMjMwYTE0LzEveUFCQllaQWg0Mk1vclZpWTZKbDRjRWE0OFBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82ODVjOTktY2ZkZi00MmEwLTg0MzYtZDI5N2RiMjMwYTE0
LzEveUFCQllaQWg0Mk1vclZpWTZKbDRjRWE0OFBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAisNhe15d
Jvyhb1rSPf3Ii7qRHOZO5Ff2kHGU0CYPApUz4hELwyyZpw+Q/IbzfGx1ruEIQYj2
9DNrtXemDTHMNNH4SO9Tr0f6b9lJZdTFip09VRzQhBwCeob+wT6rAsjHThxIt1Jk
foyKYnWdcxSkyqs8nYm8HJJ/aN+cHvDiZ/D01kX0IBqzN+ywPZVw1aWXtcBQ9AgE
R65kkNBnld5HbyNGsvFtNidDTtq4GjhLGeZHgSnYJjELCIynwmOo0IhSD2y5VJ+S
JbmK9cC+1RUkqnRzRLzai7WEIojRS7oc198FtKRD4Uc318WCzgiDjqtPyd9SIHi/
sXgp/A1JWTcwYA==
-----END CERTIFICATE-----
Generated at Fri Sep 5 07:37:32 2025 by rpki-client