Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
File: YIYxT4djXnk7wuPbvtZkBbisZ3E.mft (raw, json)
Hash identifier: 3pDBM7Bi7cJ3AfSsUHSn25ufYERF9Lf3xfpw4MrGNjE=
Subject key identifier: 9F:18:85:12:DE:16:ED:C5:90:F9:63:85:E6:C5:F1:37:9F:01:C9:7A
Authority key identifier: 60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
Certificate issuer: /CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Certificate serial: 0199FC216F9AF5A90B26213B4A8D1ECFF843
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 11:01:13 +0000
Manifest this update: Sun 19 Oct 2025 11:01:13 +0000
Manifest next update: Mon 20 Oct 2025 11:01:13 +0000
Files and hashes: 1: YIYxT4djXnk7wuPbvtZkBbisZ3E.crl (hash: f2CkzrMz8OsZxuE6KAhN6lcn/o5nGMDUEPQDN7LyTWM=)
2: ul5EPC9Jg-xhzDe3-EnpTxgh7Dw.roa (hash: pDodgoORM1hTtwe+JSl0g3mWRdcfDqaXlT1wiKFyqck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:6f:9a:f5:a9:0b:26:21:3b:4a:8d:1e:cf:f8:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Validity
Not Before: Oct 19 11:01:13 2025 GMT
Not After : Oct 20 11:01:13 2025 GMT
Subject: CN=9f188512de16edc590f96385e6c5f1379f01c97a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:de:9a:b0:64:90:17:f9:5a:2a:db:55:97:c6:
fc:94:39:ab:99:6d:71:5e:23:32:2e:3d:eb:74:0a:
02:73:93:55:fc:1a:98:0b:f5:34:d0:b9:88:29:bc:
9b:39:86:a0:83:74:99:ab:14:11:4c:92:7d:30:cd:
91:03:78:b0:13:ed:7d:5f:45:a6:ce:ff:e2:fd:67:
38:e5:e0:ef:78:87:8c:95:c3:4a:ae:f9:a1:4f:40:
81:27:5e:87:3c:d6:65:fa:b4:fc:f6:b9:4f:98:7e:
94:4f:c7:a5:11:f7:9d:6e:fc:b8:1c:c8:20:61:6a:
bc:ea:90:2f:46:5c:71:e8:c9:7a:07:be:6d:c6:79:
1e:64:e9:03:8a:f8:fe:dd:cd:76:09:16:da:81:7f:
db:c2:79:14:41:41:a7:6a:c0:ad:16:71:e0:4c:cc:
0e:9c:c4:f7:8c:5a:b5:d8:b4:a3:8f:fc:9a:a4:c7:
67:a9:43:78:ca:17:41:94:c4:54:fb:2f:df:0f:3d:
db:4f:37:93:24:e9:b5:5c:89:87:c5:f4:20:21:53:
53:ac:e0:48:eb:bc:ef:d1:59:0d:80:2d:30:1c:26:
62:f6:77:ec:b9:8e:0a:df:e5:47:b3:5e:02:48:45:
ca:f6:02:93:59:2c:03:9d:c6:69:36:c0:36:e9:1f:
91:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:18:85:12:DE:16:ED:C5:90:F9:63:85:E6:C5:F1:37:9F:01:C9:7A
X509v3 Authority Key Identifier:
keyid:60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:d7:13:84:05:29:90:e5:24:5d:0c:62:5d:83:f1:bf:fc:9c:
45:fd:5d:c0:14:6a:0c:48:61:75:ac:63:d7:b5:80:82:9a:1d:
2c:06:33:5c:05:f3:df:54:0d:be:1c:35:66:2f:71:72:cb:e2:
c2:01:ac:8c:de:34:7e:b2:70:63:2e:a7:c6:5f:ce:a1:2a:35:
bc:b6:5a:76:a4:fd:92:d5:d4:03:16:2d:e8:e3:ce:9a:80:2c:
ba:3c:9a:00:48:d7:46:c7:b8:84:72:ed:30:a1:e1:f1:81:34:
c7:80:cf:7b:1b:d7:c9:02:a0:70:96:5f:90:ac:bf:e0:82:d2:
d0:00:5d:e2:97:33:e1:30:f6:ca:2a:44:a7:45:f4:4d:4b:63:
d9:8d:f4:4e:f9:54:e0:05:99:cd:10:00:af:9c:99:d1:34:c9:
63:7b:16:a3:8b:b0:bc:c0:80:47:c7:cf:17:35:ea:69:6d:33:
fd:cd:e3:fc:c1:04:f6:16:f6:c1:ad:d6:ab:21:04:8b:cf:b3:
dc:34:e1:7d:a0:21:ba:f1:91:f2:1a:eb:52:d4:66:ed:53:97:
f4:d7:1c:a1:76:00:29:1d:ca:27:59:2d:da:5e:66:fd:56:13:
c2:78:eb:6d:c7:d1:09:c3:3e:8e:a0:e9:d4:10:5b:4c:c1:b7:
bf:a0:ee:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:08:29 2025 by rpki-client