Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
File: YL83NiAUbm8piugtLIqDccrLexs.mft (raw, json)
Hash identifier: fmwFiQ4feHNgaQgEtoZhRt8Jec+flIgRFQmmpTwZrFw=
Subject key identifier: 39:16:1E:67:08:C6:4B:BF:33:F4:60:1A:1F:D0:6B:9A:5C:A1:24:F7
Authority key identifier: 60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
Certificate issuer: /CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Certificate serial: 0199FDD8E4D60326D724D364781490764936
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 19:01:13 +0000
Manifest this update: Sun 19 Oct 2025 19:01:13 +0000
Manifest next update: Mon 20 Oct 2025 19:01:13 +0000
Files and hashes: 1: FcPpw1IibzSy4BenkulclpDum4U.roa (hash: HSUDUncC0CCpqaUKBhWSJTD0GmSsEAzCocsfF6H1tqA=)
2: YL83NiAUbm8piugtLIqDccrLexs.crl (hash: v/oH6eYNFgnhZMZMNiE/0xx+E8PmTf1tC12/MOlqYfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d8:e4:d6:03:26:d7:24:d3:64:78:14:90:76:49:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Validity
Not Before: Oct 19 19:01:13 2025 GMT
Not After : Oct 20 19:01:13 2025 GMT
Subject: CN=39161e6708c64bbf33f4601a1fd06b9a5ca124f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5d:78:a6:f9:d8:17:6e:04:1a:d1:9e:58:8d:
6f:bb:9b:f5:74:50:65:08:bd:08:6c:9b:29:5f:10:
94:93:e2:8c:c9:54:63:2f:f4:16:2a:49:25:a8:ec:
99:1e:28:ae:41:6a:50:11:3b:9e:d4:b9:f1:c4:3f:
07:27:6a:21:a4:75:f8:e2:a1:10:af:65:9e:3a:f3:
f9:25:38:71:88:c4:1a:08:5d:c8:33:c3:89:82:ba:
0e:6e:d3:be:21:e2:29:90:e3:f5:aa:74:f3:91:1d:
42:fe:59:93:04:bf:51:87:90:ea:58:52:81:8a:0b:
56:5d:e5:1e:66:99:6d:54:99:9a:65:1f:11:e7:98:
1f:09:43:1d:35:fe:54:40:00:9d:6f:2a:ce:45:64:
04:ee:c8:7c:dd:1e:a3:f8:28:86:45:78:52:e9:72:
50:a3:07:ee:43:b4:20:0a:bb:d9:52:ce:d6:24:f3:
94:2d:94:99:e8:15:f4:64:cb:2f:28:80:80:c0:ed:
cf:c6:9c:4b:db:50:32:e0:ca:2c:01:c7:0d:2f:a9:
67:64:9e:74:76:a5:3b:95:8e:55:37:ad:1b:3f:70:
e1:79:d0:3b:68:40:de:34:3d:3b:7b:ac:da:9a:4f:
07:11:ac:cd:e5:17:89:e4:06:32:e4:6e:eb:bb:42:
88:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:16:1E:67:08:C6:4B:BF:33:F4:60:1A:1F:D0:6B:9A:5C:A1:24:F7
X509v3 Authority Key Identifier:
keyid:60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:d4:f7:4d:11:c1:e3:95:30:2a:3c:d2:68:9b:8d:c8:7d:a9:
49:83:14:d9:aa:0c:81:14:e3:a8:ac:ca:65:dc:05:77:58:d1:
4a:3e:31:b8:84:d4:29:25:01:72:a6:b3:06:45:f6:3d:62:15:
9f:37:bc:9f:12:36:e4:55:3b:f9:89:5a:85:81:d9:8d:44:d5:
fc:76:0e:f5:0b:97:87:2d:ec:7c:11:23:5b:02:33:93:ec:0c:
05:29:9f:b0:36:57:9f:77:28:38:ba:e4:b2:59:46:bb:d4:9a:
2f:cc:46:06:6e:e2:b5:43:39:1e:0c:43:5d:5b:90:fd:0e:22:
96:72:ca:df:7f:fb:5c:30:4d:b8:c0:80:d0:48:9b:dc:11:f3:
86:47:8c:b1:7c:24:89:5e:6c:e1:91:09:a5:e0:50:90:ea:7a:
be:dc:94:a2:f1:c4:8a:b3:5e:10:00:9d:6d:0a:1e:af:c7:92:
77:7f:68:dc:25:e4:b3:c7:53:f2:f2:2d:59:3f:e4:1b:b7:7f:
bd:c4:b8:ea:06:c6:7f:c3:0c:0b:1a:f3:4c:bc:ae:05:53:d8:
f6:3a:32:e3:95:85:4c:0e:82:78:05:23:7e:f3:29:3b:96:0f:
7a:82:74:69:a9:08:51:5e:18:d0:cc:5c:8b:c8:1a:57:77:4a:
0f:88:98:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:08:10 2025 by rpki-client