Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
File: YdOLN5gKDfrpz5osW1at6X-vUC4.mft (raw, json)
Hash identifier: JmfNyGaVTYo4+AeYWPQ7iQDZzISNTcMLnXlNpQBAU+4=
Subject key identifier: 98:E7:78:D1:63:6A:C9:EA:F9:CD:EB:5C:F4:E7:24:73:69:74:0B:69
Authority key identifier: 61:D3:8B:37:98:0A:0D:FA:E9:CF:9A:2C:5B:56:AD:E9:7F:AF:50:2E
Certificate issuer: /CN=61d38b37980a0dfae9cf9a2c5b56ade97faf502e
Certificate serial: 019A33EBFBFB6E40B176208A4AC6391844F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YdOLN5gKDfrpz5osW1at6X-vUC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
Manifest number: 0B8A
Signing time: Thu 30 Oct 2025 07:01:34 +0000
Manifest this update: Thu 30 Oct 2025 07:01:34 +0000
Manifest next update: Fri 31 Oct 2025 07:01:34 +0000
Files and hashes: 1: C_VxgsrOTNHfcbo19nO36kuNZTY.roa (hash: elP/uo536peeHFglZZfLB7X6uPEm9F3vZkqB1C65yyw=)
2: YdOLN5gKDfrpz5osW1at6X-vUC4.crl (hash: uDTTIsRcitf8ZmmtajNmqoHgdkrkO/HoFYj8ACs5b78=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/YdOLN5gKDfrpz5osW1at6X-vUC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 31 Oct 2025 07:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:33:eb:fb:fb:6e:40:b1:76:20:8a:4a:c6:39:18:44:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61d38b37980a0dfae9cf9a2c5b56ade97faf502e
Validity
Not Before: Oct 30 07:01:34 2025 GMT
Not After : Oct 31 07:01:34 2025 GMT
Subject: CN=98e778d1636ac9eaf9cdeb5cf4e7247369740b69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:8d:53:1c:d4:c7:d6:dc:52:5e:64:92:1a:df:
e4:a3:2c:6e:df:ca:52:58:b8:78:66:e3:5c:d4:a9:
3c:ba:0e:df:8e:98:05:3f:1f:93:6a:d8:d4:f6:8f:
80:56:01:d6:b9:80:95:2c:ce:32:ed:2c:b7:93:76:
76:04:d8:e6:2a:fc:46:0f:8c:2b:59:d1:d8:e4:96:
7b:5b:0a:33:03:d2:f4:30:cf:98:71:0d:f4:f6:60:
22:91:1c:26:20:91:cb:89:99:68:0d:fb:b2:19:02:
4a:c7:d0:49:7b:50:18:90:15:bc:76:11:82:0d:da:
4f:7e:87:58:b2:45:ee:da:e7:bf:f9:9c:6a:58:ad:
47:2a:7c:80:01:a6:49:81:57:65:d5:ea:10:45:1e:
7f:87:3f:2b:26:20:b5:e0:23:02:09:2b:4d:c9:8b:
10:57:dd:56:7b:16:10:78:66:06:52:b3:80:85:05:
b5:27:51:3c:a9:50:3c:c2:b6:2d:18:08:dc:18:3a:
80:03:a1:bd:64:96:22:bc:9a:d5:64:32:96:95:dc:
14:ac:96:75:fa:f3:ce:57:92:2f:51:5c:6c:01:16:
de:39:2f:b1:b3:1a:53:84:52:55:53:ab:71:53:ce:
c0:d5:63:da:5b:15:cb:61:59:62:7f:b4:2c:05:d0:
48:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E7:78:D1:63:6A:C9:EA:F9:CD:EB:5C:F4:E7:24:73:69:74:0B:69
X509v3 Authority Key Identifier:
keyid:61:D3:8B:37:98:0A:0D:FA:E9:CF:9A:2C:5B:56:AD:E9:7F:AF:50:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YdOLN5gKDfrpz5osW1at6X-vUC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:a6:c3:99:ae:7a:fb:31:74:3a:91:24:bb:30:1a:0b:f6:fb:
24:4c:1e:48:66:7a:f1:ae:19:04:3e:45:87:b1:0c:51:49:9f:
bc:7a:c9:77:8b:49:3f:86:80:2f:91:bb:22:d4:0f:55:98:aa:
26:65:96:06:c5:21:9c:22:28:08:76:8a:5c:9c:cf:ac:6f:d4:
ee:23:aa:c8:8e:68:06:e8:a2:5c:00:54:d7:26:27:45:d7:05:
c5:52:a5:38:80:f7:db:24:3c:48:47:75:11:c1:35:66:bb:cc:
21:93:60:e6:48:17:51:63:02:f3:93:39:c3:25:cd:1c:fa:eb:
4e:58:8e:38:73:06:57:60:07:f5:f3:2e:8e:8e:af:28:b6:cd:
d8:c3:86:b8:64:3c:ad:20:f5:c7:c6:07:00:a1:34:87:1a:3f:
e6:70:38:62:f8:c4:fe:a5:aa:63:9b:07:ae:d0:01:98:b9:f9:
18:04:48:49:91:b4:e1:15:cf:88:43:51:33:af:42:67:c9:32:
db:8f:20:12:db:b0:e3:9b:ca:29:f3:8c:ef:a5:b3:55:a6:4a:
cc:26:6f:3d:4f:db:57:24:9e:7c:bc:52:d3:7b:0a:41:e3:3f:
ad:a8:07:bb:8f:b0:90:e0:a0:c1:8d:3a:6b:1a:25:af:12:e8:
73:3b:83:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoz6/v7bkCxdiCKSsY5GET4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxZDM4YjM3OTgwYTBkZmFlOWNmOWEyYzViNTZhZGU5N2Zh
ZjUwMmUwHhcNMjUxMDMwMDcwMTM0WhcNMjUxMDMxMDcwMTM0WjAzMTEwLwYDVQQD
Eyg5OGU3NzhkMTYzNmFjOWVhZjljZGViNWNmNGU3MjQ3MzY5NzQwYjY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8Y1THNTH1txSXmSSGt/koyxu38pS
WLh4ZuNc1Kk8ug7fjpgFPx+TatjU9o+AVgHWuYCVLM4y7Sy3k3Z2BNjmKvxGD4wr
WdHY5JZ7WwozA9L0MM+YcQ309mAikRwmIJHLiZloDfuyGQJKx9BJe1AYkBW8dhGC
DdpPfodYskXu2ue/+ZxqWK1HKnyAAaZJgVdl1eoQRR5/hz8rJiC14CMCCStNyYsQ
V91WexYQeGYGUrOAhQW1J1E8qVA8wrYtGAjcGDqAA6G9ZJYivJrVZDKWldwUrJZ1
+vPOV5IvUVxsARbeOS+xsxpThFJVU6txU87A1WPaWxXLYVlif7QsBdBINQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJjneNFjasnq+c3rXPTnJHNpdAtpMB8GA1UdIwQY
MBaAFGHTizeYCg366c+aLFtWrel/r1AuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWRPTE41Z0tEZnJwejVvc1cxYXQ2WC12VUM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82OTc0NmMtNTAxYS00M2U4LWI4ODct
N2Q0NDhiMzk2Nzc2LzEvWWRPTE41Z0tEZnJwejVvc1cxYXQ2WC12VUM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82OTc0NmMtNTAxYS00M2U4LWI4ODctN2Q0NDhiMzk2Nzc2
LzEvWWRPTE41Z0tEZnJwejVvc1cxYXQ2WC12VUM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGKbDma56
+zF0OpEkuzAaC/b7JEweSGZ68a4ZBD5Fh7EMUUmfvHrJd4tJP4aAL5G7ItQPVZiq
JmWWBsUhnCIoCHaKXJzPrG/U7iOqyI5oBuiiXABU1yYnRdcFxVKlOID32yQ8SEd1
EcE1ZrvMIZNg5kgXUWMC85M5wyXNHPrrTliOOHMGV2AH9fMujo6vKLbN2MOGuGQ8
rSD1x8YHAKE0hxo/5nA4YvjE/qWqY5sHrtABmLn5GARISZG04RXPiENRM69CZ8ky
248gEtuw45vKKfOM76WzVaZKzCZvPU/bVySefLxS03sKQeM/ragHu4+wkOCgwY06
axolrxLoczuDSQ==
-----END CERTIFICATE-----
Generated at Thu Oct 30 14:46:37 2025 by rpki-client