Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
File: YG03z4fxLyqy3vMTgMOGuCbBnWU.mft (raw, json)
Hash identifier: JxejjcsCjYharvCozVBnU3R0pBLYrt/hw1tDwMUVD/s=
Subject key identifier: B7:A6:0D:C6:C6:A0:01:D4:73:C7:CB:EE:C6:95:B6:93:90:9E:86:23
Authority key identifier: 60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65
Certificate issuer: /CN=606d37cf87f12f2ab2def31380c386b826c19d65
Certificate serial: 0199FC588F28C756BE02B85504A868C9AB09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
Manifest number: 16DE
Signing time: Sun 19 Oct 2025 12:01:26 +0000
Manifest this update: Sun 19 Oct 2025 12:01:26 +0000
Manifest next update: Mon 20 Oct 2025 12:01:26 +0000
Files and hashes: 1: YG03z4fxLyqy3vMTgMOGuCbBnWU.crl (hash: NiewYLn1PuVkVi2C43s10Tk5A3KJ4cnWZlqjZXwg0SQ=)
2: nLsyVuehs4jeCS4JRJE2VO5aV5I.roa (hash: ypIKdtNC4Ic9Sqbxvpei64KUmu5yr6lYiqShQ2+fMBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:8f:28:c7:56:be:02:b8:55:04:a8:68:c9:ab:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606d37cf87f12f2ab2def31380c386b826c19d65
Validity
Not Before: Oct 19 12:01:26 2025 GMT
Not After : Oct 20 12:01:26 2025 GMT
Subject: CN=b7a60dc6c6a001d473c7cbeec695b693909e8623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:71:ec:27:e3:e3:00:17:90:63:bf:d4:13:3f:
75:78:03:af:af:56:c9:2f:43:57:d4:e5:2a:b9:40:
c7:61:d4:8a:0d:3f:5c:63:53:41:74:69:75:1a:18:
1d:76:ab:9b:2f:c3:df:54:87:fa:59:cf:bb:4c:ae:
f6:28:91:4e:1c:ff:ef:75:f6:23:8c:97:79:98:9e:
11:80:70:0d:d4:db:f5:39:6e:b9:3e:b1:82:72:2a:
3f:38:51:00:35:32:d2:48:3c:3c:18:d7:b9:e3:ca:
b9:ac:0e:06:c7:e7:80:a7:f6:89:c9:a4:ab:3f:2d:
fc:3d:3e:75:5e:0e:82:22:45:97:60:f9:9c:3d:f6:
aa:4d:9c:d6:9d:bb:0f:04:f3:ba:77:1e:0e:29:c2:
5d:a3:f6:e4:b2:1f:8d:fa:1a:37:e9:31:bb:ae:23:
05:ae:4a:d9:39:d1:05:2d:e5:4e:80:33:a9:86:51:
ab:f1:1f:79:51:df:12:be:a4:70:ba:c7:b8:6c:e6:
1e:82:ba:c0:83:e3:b5:96:0c:d5:2b:80:84:0a:e7:
f5:6f:86:dd:33:7a:0e:f5:e2:33:ec:89:03:a9:13:
5a:f6:89:6c:27:3e:18:d6:76:2d:6b:99:e4:03:de:
14:a4:3e:81:35:fa:17:30:53:1c:51:eb:84:34:9c:
6b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A6:0D:C6:C6:A0:01:D4:73:C7:CB:EE:C6:95:B6:93:90:9E:86:23
X509v3 Authority Key Identifier:
keyid:60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:76:30:81:7a:03:6e:95:2d:32:b6:c5:48:d8:8e:dd:0e:d8:
b6:a7:01:54:92:0c:86:f2:79:c9:0b:e7:62:24:6a:cb:c6:b6:
10:9c:24:aa:61:55:2a:14:73:37:7e:e1:6c:14:00:14:c6:00:
33:4f:db:ad:a0:bf:d9:aa:58:73:93:a8:6d:6a:ec:72:53:10:
69:00:3c:a7:bd:3b:fd:17:ec:d5:a7:c0:6a:29:3f:2d:14:44:
11:95:0b:71:e9:b4:43:fa:3a:ff:72:17:49:00:ba:5b:32:5a:
04:07:eb:43:74:0b:d6:ad:af:00:c7:15:84:6b:56:55:6e:24:
2e:5f:b2:d8:37:24:59:dd:44:ec:0f:29:e7:85:d2:e8:64:a1:
27:19:3b:9f:a4:50:97:54:28:6a:e9:5d:09:93:37:32:c0:ae:
32:ae:44:89:4b:2d:3c:1b:b9:ed:fd:b2:a5:74:12:57:fa:0d:
f7:fb:cc:62:13:de:a5:2f:43:5a:bb:fe:53:de:d7:a7:55:a9:
3a:6e:4c:20:e6:7d:b3:7a:51:f3:4b:8d:d0:40:e6:26:ed:48:
12:c8:61:21:72:fe:c6:86:30:f4:6e:69:30:06:7f:40:c5:40:
9f:71:c2:09:24:c3:c1:04:1b:f1:06:75:72:bb:58:2b:01:45:
9b:ee:67:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:07:04 2025 by rpki-client