Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
File: RyyyiCCZANGvGpmLsDnsdX5JPdU.mft (raw, json)
Hash identifier: dFX7+lzXjeXtaIoEroPevvlh5xG7sbJACLADshEtnKg=
Subject key identifier: AB:9A:5F:4A:49:60:04:41:CE:90:60:DB:2A:15:17:00:66:F3:E6:3A
Authority key identifier: 47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
Certificate issuer: /CN=472cb288209900d1af1a998bb039ec757e493dd5
Certificate serial: 0199FCFD832F05AC938B00250EAE980A764A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
Manifest number: 090B
Signing time: Sun 19 Oct 2025 15:01:36 +0000
Manifest this update: Sun 19 Oct 2025 15:01:36 +0000
Manifest next update: Mon 20 Oct 2025 15:01:36 +0000
Files and hashes: 1: RyyyiCCZANGvGpmLsDnsdX5JPdU.crl (hash: lIkGB8pzoA9+zeLjaYSqWjGwVaIB4jP+gjfehAWQkd8=)
2: S3dIMaIh62_y7HmBxhlxOM_ScHc.roa (hash: wYfLcBDYpc1piz/XiUHEld94m4pY4RAv7rF1GCt4/I0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:83:2f:05:ac:93:8b:00:25:0e:ae:98:0a:76:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=472cb288209900d1af1a998bb039ec757e493dd5
Validity
Not Before: Oct 19 15:01:36 2025 GMT
Not After : Oct 20 15:01:36 2025 GMT
Subject: CN=ab9a5f4a49600441ce9060db2a15170066f3e63a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:68:01:d1:a6:29:d2:e3:5e:89:79:14:1e:ba:
7d:8c:d4:5b:01:65:7c:5a:08:f1:3b:92:99:a9:62:
20:a2:25:f2:e5:24:31:96:5e:d7:a7:11:4d:8d:d3:
f6:a5:49:82:4b:7d:e1:be:c0:fc:fa:89:b5:04:8c:
76:c6:a4:9b:68:c5:c8:25:07:96:a7:e9:ce:fd:f9:
06:57:92:ce:a9:d4:b5:f0:df:dc:aa:17:a9:14:9d:
27:72:7b:a0:5f:36:6e:71:e1:49:46:96:fd:94:f8:
f8:45:17:32:8b:f5:ef:d0:ee:3c:86:ea:e3:8d:ae:
69:53:08:4d:a7:51:47:77:7e:f5:c5:33:e0:b7:47:
f1:f0:c6:94:6f:91:a4:4d:fc:6c:fd:6e:a1:f1:8a:
62:fa:b9:e6:c2:b0:d9:b1:a2:2d:4f:48:dc:83:31:
45:bf:93:45:67:84:d2:9f:4f:5c:21:c5:13:c8:e8:
6b:38:d5:be:63:63:92:7d:d4:75:26:ee:2b:61:c4:
97:b7:2d:ef:6b:e2:e1:79:ae:04:02:72:36:44:be:
ed:63:9b:8b:51:f7:74:a5:83:d4:2b:0a:27:ba:85:
06:69:de:4c:e9:12:dc:8f:64:81:1e:49:90:22:a2:
ce:dd:fe:a0:e3:00:48:db:49:29:70:50:1c:07:d6:
99:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:9A:5F:4A:49:60:04:41:CE:90:60:DB:2A:15:17:00:66:F3:E6:3A
X509v3 Authority Key Identifier:
keyid:47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:a0:09:ab:1e:a4:66:e5:89:e7:46:5a:72:e9:d6:a7:07:d5:
7b:a2:25:52:5d:ff:e6:b4:bb:6b:b5:c9:16:d2:ab:c4:29:8a:
ea:58:31:c9:d6:f0:71:dc:2e:2e:1b:ba:dd:d3:dc:f5:a2:7c:
75:8b:2e:6c:59:09:6e:a9:d8:09:37:67:21:a7:2f:0f:50:c3:
52:ef:a8:11:83:47:d3:c6:ed:18:a0:38:bd:e7:f4:a1:5b:47:
4e:a7:5b:10:4f:9c:24:79:52:10:2a:53:54:74:e4:8f:fb:65:
5b:ff:ba:bf:19:db:b3:aa:b4:84:36:8c:b7:36:e3:9b:53:52:
17:b0:12:33:4b:5e:f3:98:87:1a:23:2f:00:21:32:96:fa:5e:
03:8c:fe:b4:d3:1e:4c:75:1b:9f:66:aa:dc:5d:f1:8e:a8:5f:
2a:98:4f:ef:08:97:5c:7d:df:5a:e6:f3:dd:94:07:6f:ca:4c:
3f:fc:64:37:fb:e0:97:81:bc:86:1f:78:fe:49:3f:08:dd:77:
62:95:e6:31:bd:be:c7:de:16:c2:2d:bc:93:65:c3:65:cb:d3:
68:f1:d0:17:36:d1:5b:67:f4:2b:4b:5e:60:24:1c:53:03:b9:
06:e3:83:f3:45:7b:40:50:1b:66:bb:34:c9:1a:72:28:48:21:
47:0f:6f:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:57:39 2025 by rpki-client