Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
File: _YmzSchPx7NBKlLWX_Jg0swomrk.mft (raw, json)
Hash identifier: qRLEkU9qaEPA/+kHd6c/VBMcbZDvrPa687MguNQjijI=
Subject key identifier: EC:E4:00:74:56:4D:28:12:B9:4E:F1:04:F4:E2:CD:CD:98:DD:07:2A
Authority key identifier: FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9
Certificate issuer: /CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9
Certificate serial: 0199FC2170674D179E2F51FBB8AA96D17DEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
Manifest number: 0D72
Signing time: Sun 19 Oct 2025 11:01:13 +0000
Manifest this update: Sun 19 Oct 2025 11:01:13 +0000
Manifest next update: Mon 20 Oct 2025 11:01:13 +0000
Files and hashes: 1: 7voLoVZs2GImQRBCo5BKLZ-Uj7w.roa (hash: 4GwoSbNu+hRTl0Hpw8zq+LaDTkSr14kM179EFGiS8KQ=)
2: _YmzSchPx7NBKlLWX_Jg0swomrk.crl (hash: VDX7ETIrg/mq3ykZqv2cnFnQbpsCa1n0pznPIU0RscY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:70:67:4d:17:9e:2f:51:fb:b8:aa:96:d1:7d:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9
Validity
Not Before: Oct 19 11:01:13 2025 GMT
Not After : Oct 20 11:01:13 2025 GMT
Subject: CN=ece40074564d2812b94ef104f4e2cdcd98dd072a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:27:13:e6:e9:af:bf:85:fb:5b:6f:a2:6c:98:
07:60:f4:b4:b5:e4:3d:3f:59:47:5c:f0:5f:7f:74:
b7:89:12:a3:15:bc:76:e2:4e:1c:25:8f:7a:0e:41:
dd:10:21:28:c7:e1:c2:c2:1c:6d:bc:15:b4:b0:7a:
2a:67:98:48:af:67:92:da:3e:18:3b:db:57:eb:40:
cd:b5:88:a4:c8:98:c8:e3:53:ae:8a:5a:27:c9:5a:
b2:a7:3b:75:f3:01:96:23:fa:f7:f9:4d:dd:81:2c:
28:a2:10:ef:fd:06:f9:3d:b8:1e:1e:1e:f3:79:4f:
8e:1e:f5:72:ce:08:0c:82:47:43:2f:03:35:77:3f:
9e:e1:b5:6e:ad:a3:04:d4:37:00:82:44:59:e8:aa:
18:ee:7d:96:49:d2:de:f9:5a:e9:b8:79:ea:f1:8d:
f3:b9:71:55:39:5d:33:4a:44:b1:e1:da:52:16:33:
ef:27:d2:97:2f:9c:bd:3c:a7:79:89:7f:0f:df:a4:
cb:4f:89:a8:88:c2:db:a6:55:7b:86:68:db:96:ad:
a9:7f:44:1e:56:65:c2:02:0c:41:f7:b5:59:f7:51:
13:39:04:0b:df:06:64:b1:b5:64:ea:2c:22:f7:01:
9c:a7:93:23:db:0c:91:aa:ab:a0:81:1d:50:b7:42:
1a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E4:00:74:56:4D:28:12:B9:4E:F1:04:F4:E2:CD:CD:98:DD:07:2A
X509v3 Authority Key Identifier:
keyid:FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:20:58:54:ed:28:f6:f7:bc:54:ce:de:30:2a:d4:a2:c6:9b:
69:be:da:a1:dc:6d:29:c1:e1:ff:66:3b:c4:53:d4:17:0f:88:
ce:9b:60:6c:70:2d:f5:34:7b:46:69:87:0a:f9:62:f8:bf:ae:
1e:4a:f9:5c:4b:7a:e5:28:28:ea:9c:fe:ad:2f:68:b2:21:4b:
25:fe:d6:a0:ed:a6:f4:e5:85:9b:79:d1:ac:d1:2f:eb:5a:ca:
f5:fd:35:be:e2:49:8c:dd:a9:ea:1c:91:11:d3:3f:6a:b2:a0:
c9:86:01:3e:4a:d0:fc:a9:ea:7b:a5:fa:8c:21:cc:56:40:98:
b8:c9:e0:79:4a:bb:08:cc:7f:74:95:20:d8:f8:db:6f:db:a7:
64:f1:b8:74:eb:45:c4:e3:41:2e:f4:99:29:8d:11:11:8b:90:
09:71:83:37:6a:85:44:76:86:10:45:57:a3:95:cc:39:e1:65:
62:a5:97:96:a2:ff:cd:16:9b:ab:15:c8:b3:0c:6f:58:44:9c:
d8:86:97:3d:6e:e1:53:a3:12:d7:b5:64:fe:74:f1:96:d2:44:
1e:a1:6c:e5:b6:b9:cb:34:56:b3:11:4b:e4:a3:32:d4:5f:41:
db:62:3b:03:0d:05:6d:2d:5a:95:d2:5d:c0:eb:57:6a:28:01:
bd:3b:4d:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:21:10 2025 by rpki-client