Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
File: 0627YSN4H_DjVBNEaseTHP9KSQ0.mft (raw, json)
Hash identifier: RFLiBAQKXp+NhsI79KiIsoAdZcZ3k2PKA/+GNy2Q/z4=
Subject key identifier: E2:27:F1:94:37:79:7D:A8:C6:56:63:58:E0:CF:68:16:51:E7:D1:4A
Authority key identifier: D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D
Certificate issuer: /CN=d3adbb6123781ff0e35413446ac7931cff4a490d
Certificate serial: 019A2F323F287B9D19A68512EC7DAF4EF1F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
Manifest number: 16FD
Signing time: Wed 29 Oct 2025 09:00:13 +0000
Manifest this update: Wed 29 Oct 2025 09:00:13 +0000
Manifest next update: Thu 30 Oct 2025 09:00:13 +0000
Files and hashes: 1: 0627YSN4H_DjVBNEaseTHP9KSQ0.crl (hash: /O+yBxVQFiMDPQVELKhkBL7mA0tLXW0zVcen+/2yLaw=)
2: yWi1Y-nakOmyfRqesRZIzBZCSpo.roa (hash: XIYZfLdl8kZlRiSAj90PT17pvRJ8h9U9zRjI6i+BCkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 09:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2f:32:3f:28:7b:9d:19:a6:85:12:ec:7d:af:4e:f1:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3adbb6123781ff0e35413446ac7931cff4a490d
Validity
Not Before: Oct 29 09:00:13 2025 GMT
Not After : Oct 30 09:00:13 2025 GMT
Subject: CN=e227f19437797da8c6566358e0cf681651e7d14a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cd:b7:a8:74:7c:d2:76:d2:d8:2e:56:2f:8a:
43:dc:c0:43:8c:62:40:8f:36:b1:72:a7:33:af:48:
ae:f0:ad:58:9a:ae:22:6f:d0:b9:88:1f:f7:d7:98:
31:2e:c6:9f:33:d5:71:16:f5:96:4f:62:8a:7b:3c:
6e:3f:03:18:b0:dd:b6:63:6f:c7:a1:27:a2:33:1d:
ea:58:c3:49:51:fa:01:dd:e2:ad:fc:b0:a7:5b:96:
f1:56:45:ea:cb:87:0a:80:f6:f3:ab:a3:dd:60:27:
cb:b6:29:4c:af:7b:42:42:28:6b:03:0f:36:c5:47:
26:ab:94:f1:ee:1d:c5:f4:86:9d:48:3a:51:d9:13:
51:59:5a:06:19:5f:2e:e0:fc:92:47:b4:c6:a3:03:
b0:21:ba:f8:c3:84:ef:83:fe:a1:cd:2c:08:ae:7b:
ed:02:38:b8:20:94:f0:3e:c7:62:8f:5e:85:47:fb:
39:03:7f:31:8a:f4:47:88:40:4a:d1:21:4d:c9:ad:
b1:3d:ce:82:68:5d:a1:f6:61:95:63:40:d2:21:6e:
92:f3:55:3c:2f:70:da:66:1f:d3:92:b0:d4:d1:56:
03:80:aa:78:d1:80:bb:b3:fd:5b:1d:e0:3d:4a:de:
1e:e6:e5:a0:e9:86:fd:68:6f:4e:df:de:32:3b:ed:
c2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:27:F1:94:37:79:7D:A8:C6:56:63:58:E0:CF:68:16:51:E7:D1:4A
X509v3 Authority Key Identifier:
keyid:D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:59:48:93:88:37:14:f8:13:d5:a7:40:d8:8a:46:24:83:df:
55:68:dd:f1:55:89:de:00:13:24:29:b6:c3:14:80:45:80:93:
08:4b:62:a6:74:81:79:bb:07:87:6f:a3:97:e8:c3:d2:e3:e7:
67:25:3c:a2:b1:04:88:56:d1:70:e0:68:56:28:e8:67:6c:be:
d9:d0:ed:b4:18:9b:d2:16:8f:d5:d8:a0:12:99:f4:c6:13:5d:
8b:32:06:61:e6:30:59:58:a5:1b:8b:00:39:a3:00:4c:96:c8:
49:f8:17:ed:53:88:e5:51:b7:19:7a:2e:8d:93:13:9f:09:8a:
cd:87:cd:22:43:4f:ad:a2:75:f6:54:87:c6:19:cd:a7:95:b6:
2a:f9:22:36:1d:41:d7:f6:67:44:57:9e:be:14:a0:d6:68:18:
79:18:e0:41:4e:5d:87:d2:71:09:65:20:cb:16:92:ba:13:79:
38:8f:91:03:4b:90:cb:67:9d:b2:af:81:2f:4b:80:77:76:60:
ff:c3:1f:2c:f2:af:fc:88:0e:63:d8:cd:c4:81:5f:88:29:6d:
76:c0:af:f0:ca:d4:6a:ab:bf:d3:fa:2b:f8:f3:05:8e:73:6f:
e0:cc:85:80:33:a7:11:70:50:34:5f:17:f2:0f:f9:f7:8a:57:
cc:49:64:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZovMj8oe50ZpoUS7H2vTvH5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYWRiYjYxMjM3ODFmZjBlMzU0MTM0NDZhYzc5MzFjZmY0
YTQ5MGQwHhcNMjUxMDI5MDkwMDEzWhcNMjUxMDMwMDkwMDEzWjAzMTEwLwYDVQQD
EyhlMjI3ZjE5NDM3Nzk3ZGE4YzY1NjYzNThlMGNmNjgxNjUxZTdkMTRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu823qHR80nbS2C5WL4pD3MBDjGJA
jzaxcqczr0iu8K1Ymq4ib9C5iB/315gxLsafM9VxFvWWT2KKezxuPwMYsN22Y2/H
oSeiMx3qWMNJUfoB3eKt/LCnW5bxVkXqy4cKgPbzq6PdYCfLtilMr3tCQihrAw82
xUcmq5Tx7h3F9IadSDpR2RNRWVoGGV8u4PySR7TGowOwIbr4w4Tvg/6hzSwIrnvt
Aji4IJTwPsdij16FR/s5A38xivRHiEBK0SFNya2xPc6CaF2h9mGVY0DSIW6S81U8
L3DaZh/TkrDU0VYDgKp40YC7s/1bHeA9St4e5uWg6Yb9aG9O394yO+3CZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOIn8ZQ3eX2oxlZjWODPaBZR59FKMB8GA1UdIwQY
MBaAFNOtu2EjeB/w41QTRGrHkxz/SkkNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDYyN1lTTjRIX0RqVkJORWFzZVRIUDlLU1EwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS84YTNlZTktNGYzNy00NWJlLThhYWMt
Nzk4YWI3NzNlYWZhLzEvMDYyN1lTTjRIX0RqVkJORWFzZVRIUDlLU1EwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS84YTNlZTktNGYzNy00NWJlLThhYWMtNzk4YWI3NzNlYWZh
LzEvMDYyN1lTTjRIX0RqVkJORWFzZVRIUDlLU1EwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArllIk4g3
FPgT1adA2IpGJIPfVWjd8VWJ3gATJCm2wxSARYCTCEtipnSBebsHh2+jl+jD0uPn
ZyU8orEEiFbRcOBoVijoZ2y+2dDttBib0haP1digEpn0xhNdizIGYeYwWVilG4sA
OaMATJbISfgX7VOI5VG3GXoujZMTnwmKzYfNIkNPraJ19lSHxhnNp5W2KvkiNh1B
1/ZnRFeevhSg1mgYeRjgQU5dh9JxCWUgyxaSuhN5OI+RA0uQy2edsq+BL0uAd3Zg
/8MfLPKv/IgOY9jNxIFfiCltdsCv8MrUaqu/0/or+PMFjnNv4MyFgDOnEXBQNF8X
8g/594pXzElkaQ==
-----END CERTIFICATE-----
Generated at Wed Oct 29 18:31:37 2025 by rpki-client