
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
File: yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft (raw, json)
Hash identifier: LaB1FxYIEJJBQfDrlS6q3jleWCcuuNhsoZzNaVv5R6A=
Subject key identifier: A8:25:F7:63:8E:D9:CE:94:4E:7F:D7:1D:28:42:FD:6B:91:AE:6A:41
Authority key identifier: C9:1D:7E:44:9C:FE:C3:12:0A:98:51:16:3C:77:9A:60:26:98:61:72
Certificate issuer: /CN=c91d7e449cfec3120a9851163c779a6026986172
Certificate serial: 0199FB7CF824F61F10ED2F54824E083600EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yR1-RJz-wxIKmFEWPHeaYCaYYXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
Manifest number: 0418
Signing time: Sun 19 Oct 2025 08:01:35 +0000
Manifest this update: Sun 19 Oct 2025 08:01:35 +0000
Manifest next update: Mon 20 Oct 2025 08:01:35 +0000
Files and hashes: 1: yR1-RJz-wxIKmFEWPHeaYCaYYXI.crl (hash: DmfiRkEy2NoRTU/viz+WXvh3o42BOtGxMlZJKXQg0Is=)
2: z4GL3R9iwn241BwmecTavitjvmk.roa (hash: gozzqy0wMPz097Vp/T+QSgyQzissUGlOoz2lP5A4OOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/yR1-RJz-wxIKmFEWPHeaYCaYYXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:f8:24:f6:1f:10:ed:2f:54:82:4e:08:36:00:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c91d7e449cfec3120a9851163c779a6026986172
Validity
Not Before: Oct 19 08:01:35 2025 GMT
Not After : Oct 20 08:01:35 2025 GMT
Subject: CN=a825f7638ed9ce944e7fd71d2842fd6b91ae6a41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c8:19:bb:f3:96:2d:1b:9f:6a:ed:76:b0:a2:
92:89:69:f0:f2:68:5f:ee:61:6f:6b:ae:2f:78:b3:
d8:8b:a4:37:ac:c0:cd:a9:7b:20:62:20:fe:cb:3e:
0a:bb:22:95:4b:63:21:51:3f:3e:f9:21:92:5a:f5:
e8:4c:bc:3d:80:e7:bd:0d:21:64:76:f0:09:47:fe:
1d:85:8c:d5:9d:eb:d3:db:ac:85:76:20:45:76:0b:
50:ce:0d:a9:62:02:ce:67:b2:a9:0b:7c:6d:07:b0:
fc:79:e9:12:ee:0e:87:a4:e9:29:54:36:9a:ec:e1:
60:1a:d0:55:3c:38:f4:71:aa:bb:35:5b:6a:76:c8:
e2:e8:af:82:68:54:bd:41:a7:ee:a6:62:9d:87:6e:
85:a1:00:04:ba:68:05:65:99:16:7a:e9:fe:2e:b5:
29:e1:50:24:e8:8f:c0:72:c7:eb:f4:ac:c2:8f:42:
2c:cd:d9:8b:50:98:e8:a7:02:0c:8d:74:09:2a:57:
e4:69:b1:bb:8a:c5:5e:6d:91:07:bb:07:75:c7:7b:
94:43:84:3b:8a:31:37:be:a5:7b:4d:4b:88:dd:71:
bc:8f:67:39:47:f4:14:1d:30:57:d6:84:ad:a9:55:
af:6c:ea:37:c0:92:aa:f9:95:df:f3:d3:08:a9:71:
14:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:25:F7:63:8E:D9:CE:94:4E:7F:D7:1D:28:42:FD:6B:91:AE:6A:41
X509v3 Authority Key Identifier:
keyid:C9:1D:7E:44:9C:FE:C3:12:0A:98:51:16:3C:77:9A:60:26:98:61:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yR1-RJz-wxIKmFEWPHeaYCaYYXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:f4:b4:b5:4e:13:c9:75:a1:09:cf:50:62:6c:5d:ce:2b:c9:
4b:95:d2:30:5a:0c:85:84:ba:14:c0:26:d5:46:c4:88:8a:e3:
6f:36:d9:aa:b9:71:99:97:f9:36:25:d2:d8:e8:72:c2:32:4d:
e4:77:cd:6f:bc:e6:90:7f:50:59:8b:63:45:1d:85:f5:e9:9c:
ce:d4:99:bf:24:5b:cd:92:b5:0d:dd:7d:4e:6a:ee:57:ac:dd:
2d:09:f7:f3:39:53:0a:dc:51:32:ae:45:cf:d8:84:23:03:1d:
1a:d2:dc:3b:37:41:58:64:3b:2a:0b:50:6a:3d:8d:2a:47:80:
f4:2c:4b:1a:94:43:c6:3d:32:c3:27:1f:a2:76:ee:6e:df:e7:
69:be:48:e2:57:d5:18:b0:aa:fa:d2:a6:ff:c1:dc:d9:9b:c7:
29:c2:54:cd:f9:cd:4d:0b:89:5f:92:b2:dd:47:64:97:d5:31:
fe:4f:89:ca:0d:80:c1:2d:21:f7:16:f7:43:a2:8e:14:d3:a7:
07:33:d6:c1:66:a3:db:9f:c8:a7:f6:13:cc:c2:d5:b2:e2:41:
dc:6b:90:ce:1b:82:ad:1c:ec:21:5d:3b:ee:32:28:f1:83:a9:
10:b1:a6:88:35:07:d9:10:8a:db:5b:93:e9:0b:82:4d:66:f6:
a3:68:9c:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:19:27 2025 by rpki-client