Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
File: yQDvPdXdG-FdCLuTy91jtKyGDms.mft (raw, json)
Hash identifier: MaCMTIcaZg0HQu3yCHqEU1ur1OxH9jVqmQWL8UiBrC0=
Subject key identifier: 6B:D7:39:04:3C:1A:12:C3:27:F0:D2:E7:7C:EC:98:8A:B3:46:FF:94
Authority key identifier: C9:00:EF:3D:D5:DD:1B:E1:5D:08:BB:93:CB:DD:63:B4:AC:86:0E:6B
Certificate issuer: /CN=c900ef3dd5dd1be15d08bb93cbdd63b4ac860e6b
Certificate serial: 0199FF2282C2721ABEEBD0447C1083E76020
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQDvPdXdG-FdCLuTy91jtKyGDms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
Manifest number: 1154
Signing time: Mon 20 Oct 2025 01:01:15 +0000
Manifest this update: Mon 20 Oct 2025 01:01:15 +0000
Manifest next update: Tue 21 Oct 2025 01:01:15 +0000
Files and hashes: 1: kNwo0JsX3ICm84nVo9dsXQUG9kE.roa (hash: NK1ts8W0/zMpiUmbhnMjlz816+vYjFkNttYVHl02NWQ=)
2: yQDvPdXdG-FdCLuTy91jtKyGDms.crl (hash: a7cDXdQutfrdyV6o/Uv8P6y4or2ETGWEKj0fvYfmPog=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
rsync://rpki.ripe.net/repository/DEFAULT/yQDvPdXdG-FdCLuTy91jtKyGDms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:22:82:c2:72:1a:be:eb:d0:44:7c:10:83:e7:60:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c900ef3dd5dd1be15d08bb93cbdd63b4ac860e6b
Validity
Not Before: Oct 20 01:01:15 2025 GMT
Not After : Oct 21 01:01:15 2025 GMT
Subject: CN=6bd739043c1a12c327f0d2e77cec988ab346ff94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:de:75:5f:af:10:fa:3b:d3:11:c0:85:7b:01:
b9:56:34:f1:95:e1:8f:76:7b:49:1c:c0:f7:f4:08:
30:5d:c4:4f:19:d3:dc:6d:f6:e0:bf:2e:ec:2d:72:
a8:7c:21:72:52:e8:8f:82:41:65:bf:8c:73:13:17:
3b:2f:40:93:48:5f:97:34:a9:07:98:56:43:e8:fc:
9f:92:d5:e4:74:68:3d:a2:91:ae:c9:67:07:fc:71:
0f:8c:ea:a9:ff:ba:dc:cb:be:d2:f5:1a:25:08:af:
33:2e:f6:b0:36:1c:a6:bc:0c:b5:4d:98:21:74:d9:
41:70:33:28:bd:67:d2:25:9d:d9:05:88:8e:75:ab:
2c:08:f1:c4:a2:dc:3d:a2:be:0b:51:e0:08:56:d6:
b4:14:fe:13:86:59:42:a1:d6:a9:3a:42:86:ea:60:
c9:03:a1:47:d3:8b:b5:26:3d:96:22:7c:1f:02:0c:
0e:1e:5f:32:6a:89:56:72:09:dc:ad:1d:27:37:2c:
af:cf:72:f5:a0:8a:24:01:da:61:5b:00:9e:1a:bb:
53:c2:4d:1c:bd:04:53:69:4a:da:c9:c8:6b:77:ae:
4c:eb:b5:e2:2b:aa:45:95:b2:4d:fa:6b:88:a6:46:
61:2d:31:69:c9:20:de:2d:8d:23:b1:e2:c8:d9:8f:
ee:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D7:39:04:3C:1A:12:C3:27:F0:D2:E7:7C:EC:98:8A:B3:46:FF:94
X509v3 Authority Key Identifier:
keyid:C9:00:EF:3D:D5:DD:1B:E1:5D:08:BB:93:CB:DD:63:B4:AC:86:0E:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQDvPdXdG-FdCLuTy91jtKyGDms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:de:fb:00:be:b0:09:f0:e1:4b:10:aa:0c:39:a7:90:03:f7:
43:dc:c3:8c:3e:14:5f:b6:da:4b:4f:e9:31:29:00:bd:5a:fe:
55:ca:bd:7c:44:2e:50:0c:2a:6e:50:dc:a5:d3:72:18:74:7f:
7e:e7:32:9f:e1:c1:c9:ce:d0:f6:83:4b:a6:76:cc:84:ae:46:
bf:c1:92:88:ab:f9:77:b9:d6:1b:9c:93:83:a0:e6:09:27:d6:
be:64:fb:b1:a4:f2:07:04:62:28:3b:11:a2:0f:6c:d0:7e:b2:
5f:e1:1c:6b:3e:4b:fb:07:7a:7d:10:80:22:4a:ab:cd:09:9e:
d0:22:5b:da:56:56:93:32:23:d2:76:5a:aa:52:d8:a4:83:49:
be:55:88:59:6b:5d:92:90:73:5d:6e:2f:b5:69:87:6d:f8:e4:
75:d3:28:ae:80:53:44:3f:1e:61:1f:c5:a4:af:4b:59:4d:ec:
ab:46:6b:c0:4a:34:fb:12:5d:af:92:b2:ef:f6:ff:3a:79:78:
ff:51:67:2a:7e:08:4e:71:25:a8:f4:e3:9e:36:ed:aa:9f:71:
b5:cd:0e:20:f3:09:41:4c:cb:08:87:1b:03:ae:7f:c4:b1:a7:
ac:3a:dd:81:78:d8:2b:d9:bf:3a:9c:65:da:02:e2:11:61:cc:
02:40:2d:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 06:49:55 2025 by rpki-client