Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft
File: Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft (raw, json)
Hash identifier: CYDvvcMklva60L7UvMWu3WeTh0t8cCPCruknQdrkUZ4=
Subject key identifier: E0:18:6E:F8:51:45:B9:11:9A:59:F7:20:0A:74:0D:E4:C5:45:B9:92
Authority key identifier: 62:5B:5C:F9:E2:99:12:44:8C:BB:BC:86:D2:05:61:89:9C:DB:10:4D
Certificate issuer: /CN=625b5cf9e29912448cbbbc86d20561899cdb104d
Certificate serial: 0199FD6B3EE7F270311428C93D0E88F016FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yltc-eKZEkSMu7yG0gVhiZzbEE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft
Manifest number: 129F
Signing time: Sun 19 Oct 2025 17:01:27 +0000
Manifest this update: Sun 19 Oct 2025 17:01:27 +0000
Manifest next update: Mon 20 Oct 2025 17:01:27 +0000
Files and hashes: 1: 3ir5WkvJIRxtwZei2sctSN0sCz0.roa (hash: kbUd9aHqn6kQ8QUhYDDaCsn+6zI4AKFQfFGDo83vd6o=)
2: Yltc-eKZEkSMu7yG0gVhiZzbEE0.crl (hash: j+hSDuw41WIYHMiGL2SO1RFBoptx1kyGriIRWBYCya0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yltc-eKZEkSMu7yG0gVhiZzbEE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:3e:e7:f2:70:31:14:28:c9:3d:0e:88:f0:16:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=625b5cf9e29912448cbbbc86d20561899cdb104d
Validity
Not Before: Oct 19 17:01:27 2025 GMT
Not After : Oct 20 17:01:27 2025 GMT
Subject: CN=e0186ef85145b9119a59f7200a740de4c545b992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ba:5a:94:40:56:fb:fd:4e:f2:4a:c0:64:d7:
0a:b1:42:4d:58:a2:e5:f0:dc:e1:d5:13:73:d5:57:
d3:1b:f0:0d:eb:39:b2:8a:8f:e6:41:13:91:73:2c:
0d:e1:a8:74:55:9f:6b:90:3f:69:b5:d0:f0:dd:63:
77:83:13:e4:c3:bc:0d:ef:7b:8a:dd:b4:de:68:b1:
3f:24:0a:e4:00:61:df:82:ac:46:55:8d:e1:57:d5:
6b:16:2f:e4:c2:16:68:f1:10:f1:76:35:32:bb:51:
a4:b3:51:a8:11:2c:62:3d:88:dd:96:a4:ff:9c:72:
53:ff:8c:a6:a1:26:89:67:31:be:ca:40:7a:91:e9:
c8:2f:67:51:5f:2f:a4:69:c3:86:f5:4a:39:34:da:
b2:6b:57:9d:cb:9e:ae:90:da:74:92:cd:2a:d6:2f:
7b:53:c7:f5:f1:3c:bf:71:d0:95:8d:e5:d9:19:89:
32:c9:4f:88:e5:f5:3e:6c:3c:65:9b:0c:01:28:49:
45:42:48:da:0e:33:58:43:f5:46:f4:50:e0:e2:28:
f6:0e:50:fe:88:a5:02:7a:de:96:48:26:1a:30:28:
d5:a9:2f:6c:87:ed:23:69:1c:d8:ab:89:ae:66:e3:
01:29:6d:65:05:2e:d7:53:a7:7f:9e:7f:17:90:ed:
73:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:18:6E:F8:51:45:B9:11:9A:59:F7:20:0A:74:0D:E4:C5:45:B9:92
X509v3 Authority Key Identifier:
keyid:62:5B:5C:F9:E2:99:12:44:8C:BB:BC:86:D2:05:61:89:9C:DB:10:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yltc-eKZEkSMu7yG0gVhiZzbEE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:8c:59:64:82:05:5d:b7:77:6a:b9:55:53:34:35:87:17:0c:
1d:4a:05:c6:da:bd:8e:11:3a:85:63:99:a4:56:0b:ea:6c:49:
8d:48:da:80:ed:04:8c:ee:e8:01:6e:cf:17:04:21:2e:c4:d8:
0a:df:89:01:43:db:75:61:db:41:d1:11:b2:f7:25:ad:a3:7c:
61:9b:87:6b:60:d8:b6:3d:56:8b:fe:0b:e1:60:04:04:34:9e:
44:fb:d9:aa:a1:0e:8c:b1:b8:41:55:3f:05:05:ae:94:57:4c:
c2:4c:03:b9:2c:a5:6c:cb:37:bf:3c:4f:42:96:9d:8e:68:84:
47:f5:06:5e:67:73:85:0e:a4:26:33:20:e9:d5:bf:6a:7b:6a:
b6:ad:01:fe:78:d3:7a:4d:88:7f:66:92:a2:00:e1:64:5c:4a:
2e:f7:d8:fc:6e:f2:29:61:b0:0d:5b:13:91:10:01:a5:bd:a6:
5e:ec:18:f9:6e:a3:f8:d1:da:7c:8d:80:ca:1f:f5:0c:2b:42:
fa:82:c7:e9:82:37:10:94:8f:95:b0:15:af:59:48:12:c7:8f:
1c:43:30:95:27:e7:a2:8a:36:96:da:fd:cc:3b:70:5d:c2:6b:
c1:32:e8:8e:0b:97:bb:ec:0d:31:94:73:0d:ca:16:cf:ab:59:
4c:4b:cb:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:59:53 2025 by rpki-client