Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
File: yaOl5BHeryKE_9AVML-0H4Fsu6M.mft (raw, json)
Hash identifier: TBwRCgByfsgODpmi/QUC/n7Ukx4XEltHw22mgpwYjSE=
Subject key identifier: 15:01:07:B9:3B:AA:48:E4:1C:91:E8:95:93:30:75:AD:C0:AA:DB:DF
Authority key identifier: C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
Certificate issuer: /CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Certificate serial: 0199FBB35FC3D5C0B1496DD9E65296AEDA43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
Manifest number: 04B8
Signing time: Sun 19 Oct 2025 09:01:00 +0000
Manifest this update: Sun 19 Oct 2025 09:01:00 +0000
Manifest next update: Mon 20 Oct 2025 09:01:00 +0000
Files and hashes: 1: UVQQxsyFxE5G_GAZUd3A6ZXjkCE.roa (hash: zpm9oScjJUHtNk/CwO+EVZyjIHRYFCB8FAgH34Qnsvo=)
2: yaOl5BHeryKE_9AVML-0H4Fsu6M.crl (hash: p7Ll95XijnlCZVh5Dnppn6V2YgqugajapbeOPcExvYE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 09:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:b3:5f:c3:d5:c0:b1:49:6d:d9:e6:52:96:ae:da:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Validity
Not Before: Oct 19 09:01:00 2025 GMT
Not After : Oct 20 09:01:00 2025 GMT
Subject: CN=150107b93baa48e41c91e895933075adc0aadbdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:51:b6:05:bc:98:6a:4b:f9:07:c7:f8:06:bd:
f7:51:c9:8f:33:88:d3:99:e9:0e:c2:e1:de:21:04:
ea:19:45:41:98:84:7c:e6:78:c1:cf:da:19:74:62:
55:a8:00:dd:f6:a0:4e:3b:55:35:7f:63:f8:75:c1:
d8:c4:3c:a0:01:6b:9e:60:22:8b:2b:dd:5a:73:4c:
38:42:f7:16:11:5c:e4:af:41:97:51:5d:ad:ec:65:
4f:62:87:65:f0:7a:86:f1:62:21:be:ca:21:e8:aa:
8c:12:9a:6f:7a:e2:d9:81:15:ef:fd:2e:84:11:63:
62:5e:6c:a0:91:74:2f:89:ba:db:94:29:11:01:81:
3b:e2:dc:a6:5f:f7:78:27:6b:5e:ac:9d:67:ee:49:
be:93:c6:f4:e5:9f:6f:33:de:2a:e3:52:19:68:dd:
2b:86:9b:2a:43:19:80:09:2b:14:0b:cf:f2:57:d7:
37:a1:8a:7e:71:55:e3:8a:f5:3f:18:ec:e5:e5:5d:
67:8a:26:5c:f9:c3:74:95:a3:5b:f8:bd:55:0f:c9:
e1:db:1a:16:c2:50:b4:45:88:1f:6b:82:20:f7:c3:
a1:01:45:a3:a1:72:31:5e:1f:b3:6e:04:66:12:49:
3e:a1:a7:2a:13:62:30:ec:39:46:da:8d:a1:5f:d4:
84:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:01:07:B9:3B:AA:48:E4:1C:91:E8:95:93:30:75:AD:C0:AA:DB:DF
X509v3 Authority Key Identifier:
keyid:C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:70:4e:be:1b:1f:42:1c:e2:fc:63:5a:53:39:0d:8f:21:ec:
0d:0c:ea:d9:aa:8b:4c:84:e8:72:8a:cc:b1:f6:97:06:46:7e:
18:33:65:18:70:4f:35:83:e6:4f:61:91:78:a5:8a:30:ee:80:
09:d4:70:69:9d:e2:01:ab:63:b1:16:d1:80:5e:74:e1:6e:fe:
99:6f:54:5d:a4:19:97:03:8c:8b:ab:76:75:31:1d:fe:ed:a4:
20:78:5a:76:0d:67:fc:a7:f5:96:5b:43:5e:3e:05:07:86:c3:
01:e2:25:e6:36:81:30:d9:c7:2f:9a:5e:4f:59:74:63:49:56:
dd:aa:95:41:66:b2:d5:12:a4:7b:46:c2:77:18:0b:73:9a:c6:
90:7c:58:5a:c6:21:86:14:96:2e:d2:23:63:88:98:72:2c:28:
f0:a0:9f:c5:fd:87:3a:8e:60:84:18:17:c1:ef:bc:4d:b8:3e:
f7:af:97:c4:44:d2:99:cf:79:95:14:ef:9d:46:69:15:0c:d8:
78:a5:9f:52:fb:0d:95:74:e8:7e:0a:a1:e0:1f:d6:25:71:e1:
a9:93:b1:34:a6:a6:25:fc:03:02:f7:01:55:d1:8d:dd:53:b1:
19:1e:54:2f:8f:94:cc:0f:f2:50:04:96:b4:ff:1c:5b:c6:79:
6a:45:cb:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:41 2025 by rpki-client