Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
File: yy2f-G42PbNNBVbsFkUfL38wPSQ.mft (raw, json)
Hash identifier: /8BFpp+p/CpDYMyGtonRIuteVi7mMlmmiKhKMncsptQ=
Subject key identifier: E4:79:6B:D2:8E:2D:23:BA:DA:19:C4:34:46:F3:A7:2E:3F:C9:1C:88
Authority key identifier: CB:2D:9F:F8:6E:36:3D:B3:4D:05:56:EC:16:45:1F:2F:7F:30:3D:24
Certificate issuer: /CN=cb2d9ff86e363db34d0556ec16451f2f7f303d24
Certificate serial: 0199FAA0FF155046A3B6CCBFCD9999771DD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 04:01:18 +0000
Manifest this update: Sun 19 Oct 2025 04:01:18 +0000
Manifest next update: Mon 20 Oct 2025 04:01:18 +0000
Files and hashes: 1: 92Huf3IHz49yEZcp8laODPaay4A.roa (hash: fHDvsxbqA8PNa+801vhXYVjpC3kLuwr6JG2deunc2nA=)
2: yy2f-G42PbNNBVbsFkUfL38wPSQ.crl (hash: 23CLllc2oC9Wai9SDCb0Ty16/zCGsCwGSfzGElOcx6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a0:ff:15:50:46:a3:b6:cc:bf:cd:99:99:77:1d:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb2d9ff86e363db34d0556ec16451f2f7f303d24
Validity
Not Before: Oct 19 04:01:18 2025 GMT
Not After : Oct 20 04:01:18 2025 GMT
Subject: CN=e4796bd28e2d23bada19c43446f3a72e3fc91c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ea:a0:08:68:10:8b:7d:52:39:46:f0:bd:c0:
08:20:6f:3e:30:92:d7:57:7b:49:4e:fd:7b:ee:4f:
43:4a:b4:23:80:d5:fd:ce:eb:6e:40:f5:e9:19:a4:
8b:fc:85:64:73:8d:38:65:7b:c7:10:da:ce:63:59:
c5:f0:94:cb:b4:76:4f:f4:75:18:f8:62:97:22:41:
e9:c3:ce:6d:a1:5a:03:5d:93:e6:e4:6b:e9:50:d1:
13:21:1d:22:3c:4c:49:b5:65:27:a9:7f:76:39:12:
9b:3f:fd:0e:be:4d:6a:42:0f:a5:3b:b8:0f:58:2c:
9c:b3:75:36:7f:97:4f:94:19:62:6c:ef:4e:29:b4:
cf:81:41:8f:e5:5d:5a:49:aa:aa:38:76:76:8a:38:
41:1f:d8:60:63:73:8a:42:cf:18:35:59:a1:51:26:
17:42:b6:49:9d:29:da:b0:30:7e:72:df:19:fe:6c:
d4:6e:95:37:dd:a6:21:dc:77:01:2f:b9:de:82:b1:
73:bc:02:91:60:35:b6:8e:f0:32:49:24:fb:d3:da:
c2:9a:f4:31:42:99:95:81:0c:c3:df:86:5d:b8:07:
bc:34:7a:d6:ba:f9:4e:50:d1:4c:25:83:4c:5c:9e:
a6:84:e7:74:f8:d7:49:62:bb:0b:7e:b4:77:1c:c7:
0b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:79:6B:D2:8E:2D:23:BA:DA:19:C4:34:46:F3:A7:2E:3F:C9:1C:88
X509v3 Authority Key Identifier:
keyid:CB:2D:9F:F8:6E:36:3D:B3:4D:05:56:EC:16:45:1F:2F:7F:30:3D:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:f0:ab:ae:b8:f6:51:51:8b:30:af:1d:e9:a3:7c:74:54:e2:
cd:b8:25:cd:5c:25:96:33:de:9b:6d:21:4b:e8:01:18:af:75:
1f:0b:7b:48:44:70:b2:84:55:42:95:a2:a1:85:41:e2:34:3a:
cf:62:38:4b:96:46:21:01:57:a9:b3:b7:dd:c1:bc:79:60:a3:
62:06:83:91:17:bb:60:62:9f:ee:23:d7:d2:93:ca:b8:dd:ae:
dc:a0:fd:19:38:07:b0:40:20:8f:a3:cb:1c:69:9b:2a:8a:c7:
1a:75:6a:62:28:2c:98:59:47:d3:c9:15:3b:65:3f:ea:14:8f:
2f:d0:e3:ca:e1:a7:27:4e:40:a3:54:24:be:a2:6e:1f:cb:a4:
51:d3:23:38:80:b5:80:5d:43:c9:93:fc:12:05:80:5b:e0:0c:
e8:0d:3b:be:99:78:ac:d1:70:9e:39:29:ba:83:76:98:e2:12:
e2:e9:c9:4f:af:61:0a:0f:47:fd:54:ff:4e:f4:5c:a6:a1:d2:
32:06:30:53:46:c7:c7:39:cd:6f:f8:2a:46:ec:45:67:a6:7f:
cc:07:0e:19:47:4e:54:4a:93:5f:4c:de:f4:6f:15:28:6b:ed:
9f:9a:1f:94:15:c5:62:bf:e9:8c:18:78:de:5a:dd:90:00:01:
88:28:0d:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:11:00 2025 by rpki-client