Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/497dd1-755e-442a-b31d-1c13250a6a3c/1/y_nNJDztaTe2vqVxAoFP-bpCZiE.mft
File: y_nNJDztaTe2vqVxAoFP-bpCZiE.mft (raw, json)
Hash identifier: dvl8wd75/hWyt7THrOGsjSiszEiW2wyJeKfxWknGnBA=
Subject key identifier: D8:66:A1:C6:A9:AF:CE:B2:B0:3B:02:5B:F7:97:A2:0C:55:02:79:49
Authority key identifier: CB:F9:CD:24:3C:ED:69:37:B6:BE:A5:71:02:81:4F:F9:BA:42:66:21
Certificate issuer: /CN=cbf9cd243ced6937b6bea57102814ff9ba426621
Certificate serial: 0199FE474C3B16A1C6143E75FD5E9DD18C02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y_nNJDztaTe2vqVxAoFP-bpCZiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/497dd1-755e-442a-b31d-1c13250a6a3c/1/y_nNJDztaTe2vqVxAoFP-bpCZiE.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 21:01:49 +0000
Manifest this update: Sun 19 Oct 2025 21:01:49 +0000
Manifest next update: Mon 20 Oct 2025 21:01:49 +0000
Files and hashes: 1: y_nNJDztaTe2vqVxAoFP-bpCZiE.crl (hash: zGWCEPk0DEna9r1+BZqx+30oDmSpsPN3kZ66G5DIT7c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/497dd1-755e-442a-b31d-1c13250a6a3c/1/y_nNJDztaTe2vqVxAoFP-bpCZiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/497dd1-755e-442a-b31d-1c13250a6a3c/1/y_nNJDztaTe2vqVxAoFP-bpCZiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/y_nNJDztaTe2vqVxAoFP-bpCZiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:47:4c:3b:16:a1:c6:14:3e:75:fd:5e:9d:d1:8c:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbf9cd243ced6937b6bea57102814ff9ba426621
Validity
Not Before: Oct 19 21:01:49 2025 GMT
Not After : Oct 20 21:01:49 2025 GMT
Subject: CN=d866a1c6a9afceb2b03b025bf797a20c55027949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3c:e2:3f:92:a7:fa:c9:a0:96:18:ba:52:6e:
ae:c9:6d:1a:d7:44:33:c0:b8:94:57:93:41:07:ec:
1d:ac:c9:15:a4:69:b8:a6:6c:a6:a2:80:2e:23:1a:
58:e1:df:2d:4f:ab:7c:7c:d6:31:04:5f:9f:0e:85:
31:ee:fc:d3:ea:f0:09:1c:cf:f7:40:db:3e:93:b7:
f0:e3:f4:1a:a2:83:61:45:d0:17:71:7c:cc:c7:b6:
66:80:82:1f:1e:41:6a:be:97:49:f7:50:6c:94:87:
18:6f:95:fb:ea:5c:5f:28:33:5d:ef:25:3d:b6:db:
c0:d4:d3:37:89:c8:97:a8:36:79:b9:cb:ee:ab:f5:
bf:03:0a:00:b8:22:19:7e:8e:c0:a9:31:54:24:c4:
47:bb:df:68:e8:f6:20:60:f3:19:d4:a0:d1:7c:ab:
67:3c:37:4a:f1:9e:5f:14:73:32:f6:ca:ea:11:14:
16:e5:1e:05:fb:ce:88:33:49:44:e4:32:3a:55:2a:
da:d3:5c:bd:5a:b5:10:b7:a7:9d:2e:2e:4b:b4:8d:
dc:7e:ac:56:92:f3:26:9a:6c:7e:69:23:9e:e2:6e:
26:b0:76:3b:33:17:a3:2f:da:ed:d5:25:bd:21:d7:
e5:a1:89:13:c0:32:f1:d2:7d:00:45:16:54:61:0e:
b8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:66:A1:C6:A9:AF:CE:B2:B0:3B:02:5B:F7:97:A2:0C:55:02:79:49
X509v3 Authority Key Identifier:
keyid:CB:F9:CD:24:3C:ED:69:37:B6:BE:A5:71:02:81:4F:F9:BA:42:66:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_nNJDztaTe2vqVxAoFP-bpCZiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/497dd1-755e-442a-b31d-1c13250a6a3c/1/y_nNJDztaTe2vqVxAoFP-bpCZiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/497dd1-755e-442a-b31d-1c13250a6a3c/1/y_nNJDztaTe2vqVxAoFP-bpCZiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:21:93:e8:50:29:83:35:6a:db:a5:1b:df:52:bc:f9:ce:b1:
5f:32:56:59:90:0b:20:50:af:7a:82:06:75:4e:1a:cf:29:1c:
32:df:dd:b3:b7:4b:dc:f9:91:a8:dd:d4:76:4e:95:8b:7d:22:
cb:40:16:b8:dd:4f:91:a5:e1:d3:0e:90:e2:d7:48:c5:8e:57:
83:e4:79:74:4a:9f:d2:a8:86:1d:e9:87:da:f8:c4:49:dd:ea:
f4:18:ed:a1:39:87:02:a8:d1:0b:87:d5:8d:fa:e6:4e:33:a0:
32:cf:f1:0c:79:84:39:50:8a:cd:93:cc:30:5b:9f:ef:5b:d2:
5a:d8:c9:0f:5a:ca:51:38:76:e7:42:ab:16:c7:94:2e:49:1e:
db:dd:4a:b9:65:9c:b0:cc:a6:f7:0b:25:6f:46:10:c9:6b:fe:
18:78:5e:fa:c5:cb:d8:49:87:c4:32:c8:d9:9b:a8:c1:db:10:
50:c3:7e:62:a8:a9:29:14:1e:1f:0d:ac:a1:66:3f:a0:89:51:
a5:20:0c:32:50:47:67:46:15:ce:22:92:fd:8e:35:57:12:25:
d5:6d:db:ce:c8:c8:19:4a:3f:d7:0f:22:e9:ff:fa:59:f4:b3:
26:f3:a7:9e:da:0a:d0:b3:19:3a:1b:65:9a:dc:6d:ed:42:98:
ad:61:03:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:11:24 2025 by rpki-client