Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
File: yF0BtEKUbhkkMT1WTzG35C4kVec.mft (raw, json)
Hash identifier: 6Nmqkc2qL849YjYUprU25xlYB5x8NtmY0u5zU4nZtxA=
Subject key identifier: 07:F0:D3:B9:23:78:C1:0B:FF:88:65:BE:E2:44:1A:B5:3F:E7:F7:14
Authority key identifier: C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
Certificate issuer: /CN=c85d01b442946e1924313d564f31b7e42e2455e7
Certificate serial: 0199FF59AB08B655D09A5E87973ED15BE61B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
Manifest number: 0B65
Signing time: Mon 20 Oct 2025 02:01:30 +0000
Manifest this update: Mon 20 Oct 2025 02:01:30 +0000
Manifest next update: Tue 21 Oct 2025 02:01:30 +0000
Files and hashes: 1: DpCybAm9bBRoUpHGAuIQ86Lq5pw.roa (hash: 2p6cZB/6xzzCJ7jeUbBrD5Bf0hcHEh4tn/vPl+35cnU=)
2: yF0BtEKUbhkkMT1WTzG35C4kVec.crl (hash: vfpqTjvUh6hjrhihv/Y0VNJVtbbw+tvS/LHaOvB983c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:59:ab:08:b6:55:d0:9a:5e:87:97:3e:d1:5b:e6:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85d01b442946e1924313d564f31b7e42e2455e7
Validity
Not Before: Oct 20 02:01:30 2025 GMT
Not After : Oct 21 02:01:30 2025 GMT
Subject: CN=07f0d3b92378c10bff8865bee2441ab53fe7f714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1e:06:0f:17:74:66:19:52:26:75:a4:4d:a8:
c0:2e:36:c5:81:a9:ca:38:7f:5a:da:8e:7c:6a:40:
5f:1e:05:62:4f:78:76:b0:ca:33:e8:e9:a9:96:03:
d7:02:59:d5:38:2c:68:79:aa:30:e6:d5:3f:67:a4:
dc:c9:b7:78:18:ce:cc:42:03:91:b3:7e:d0:37:a7:
ef:f0:1f:f3:7a:a1:d7:b3:1f:28:de:b0:21:a4:4e:
e6:0b:02:88:24:37:27:7b:38:e5:cd:d1:dc:4a:5a:
8b:c6:00:13:4c:b3:f4:29:43:e6:5f:39:ee:fe:f2:
17:11:5b:5d:45:4e:6a:7e:1e:f5:07:bd:d4:36:4f:
4d:f7:0b:49:3f:06:d3:d6:13:41:ca:cc:35:08:f0:
14:e1:cf:e1:4b:a8:ab:4f:a6:de:1c:49:7e:55:0f:
e9:8a:e8:63:bf:e5:fc:d0:b9:68:1b:91:33:f3:2a:
ad:86:e7:2f:90:96:35:d8:2f:22:24:a5:66:d6:42:
0c:72:0a:36:46:2f:e7:18:8d:51:e6:a7:4d:fc:87:
84:95:b8:bf:f5:a3:ab:75:3c:82:ad:0c:8c:03:92:
c4:22:f8:fb:04:c7:81:28:e5:69:5a:92:6b:8f:97:
25:71:d1:94:90:d4:89:b7:c4:dd:8f:57:60:64:c8:
fa:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:F0:D3:B9:23:78:C1:0B:FF:88:65:BE:E2:44:1A:B5:3F:E7:F7:14
X509v3 Authority Key Identifier:
keyid:C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:a8:48:d4:55:41:2d:67:b7:1e:30:7c:40:db:cf:cf:c4:7f:
52:31:8a:57:2d:56:e0:c6:b7:20:21:40:ec:d6:b6:04:c2:4f:
f5:f3:b4:9f:bb:1e:68:9f:77:20:28:e4:59:19:98:be:ec:68:
47:9c:03:25:25:4e:a2:a7:2d:de:a0:9f:8f:45:07:7f:58:49:
b4:09:19:32:6f:fb:7d:1b:95:08:97:2a:30:02:ea:df:0e:64:
2b:bb:fe:f9:3b:43:d7:be:81:d6:f6:ee:53:e4:34:8a:51:5a:
03:65:37:ec:38:53:31:e9:f4:08:73:06:49:d1:e7:34:a3:4a:
f2:61:95:45:dd:c1:bd:61:c1:24:66:b0:34:5f:eb:28:c8:7d:
76:f0:2f:96:0e:a2:83:98:97:0b:f6:54:4a:b6:be:0b:41:ed:
c8:4b:98:63:2c:e2:77:d1:e1:96:bb:ac:d9:08:70:32:aa:84:
b7:67:30:64:1d:47:e4:ac:92:28:00:af:81:2f:0a:f5:33:42:
a3:fc:9e:0a:ae:1c:78:00:b1:7a:e8:52:b3:e1:51:d7:93:36:
af:6d:5f:2d:a0:d5:3b:77:0a:84:ba:d8:07:0c:be:78:fb:72:
87:5c:6f:f6:f6:aa:48:7a:ad:61:26:26:29:6f:b0:01:4c:4d:
ab:af:de:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:55:14 2025 by rpki-client