Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
File: yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft (raw, json)
Hash identifier: dBAGKqa1HxXu1HL4H5NjSxWE+51vgjkNzCKKUYJcyJk=
Subject key identifier: E2:DD:53:39:75:8A:E6:DE:68:DC:C6:53:E2:F6:99:4B:B7:2F:79:57
Authority key identifier: CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65
Certificate issuer: /CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65
Certificate serial: 0199FBEB6939EB8ADACF4FDBADBAEA847BC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
Manifest number: 0467
Signing time: Sun 19 Oct 2025 10:02:13 +0000
Manifest this update: Sun 19 Oct 2025 10:02:13 +0000
Manifest next update: Mon 20 Oct 2025 10:02:13 +0000
Files and hashes: 1: eVWj75QB5-NY5cip7EaAMqsD3_Q.roa (hash: R8SYABsszbTf/c1Z91aXqCMR7hgNS09va3LcQa+6Zyg=)
2: yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl (hash: p+LHjjR7zbwr+hXO+d6fCkO7lXUuLwLjTn+MyQTcHS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:69:39:eb:8a:da:cf:4f:db:ad:ba:ea:84:7b:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65
Validity
Not Before: Oct 19 10:02:13 2025 GMT
Not After : Oct 20 10:02:13 2025 GMT
Subject: CN=e2dd5339758ae6de68dcc653e2f6994bb72f7957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2f:f7:23:f3:ed:3e:b2:a8:43:eb:a9:76:67:
cf:af:1c:ec:11:e8:0a:1d:7f:6e:73:e0:62:bf:a6:
15:fd:fb:0a:c9:b8:45:f7:dd:e9:f3:b3:19:fe:45:
39:d1:e6:6c:90:20:af:8f:25:0e:13:6d:17:90:d2:
ce:02:3e:5b:5c:fd:84:c6:9a:4d:6d:ca:cf:8b:de:
b8:63:91:04:02:be:57:ac:05:ef:2a:26:10:92:a7:
77:f7:7e:92:6e:f7:72:3a:32:5c:91:47:e7:88:c9:
e4:e3:51:d8:d8:bf:bf:ab:b0:80:69:29:cd:a3:f7:
59:d5:7e:03:96:83:bc:b0:da:ad:a6:76:ab:5d:06:
69:9d:ad:d8:34:31:e8:a0:f9:0e:64:74:e5:35:f1:
c1:ca:85:8d:46:f1:85:4a:3d:5f:29:7f:fc:15:a1:
1a:dd:31:79:d8:3a:85:cc:5f:b2:0e:09:81:28:ca:
d4:33:8d:e9:ad:82:eb:ba:66:18:de:c6:03:61:ec:
2b:e3:f7:5e:a2:97:48:c3:dd:f3:90:bf:c8:e4:59:
23:79:46:b7:e0:e3:e3:7f:d9:db:97:7e:9b:dd:b9:
23:8f:ba:b1:db:0f:f3:f6:b6:9d:5b:88:6c:55:ab:
11:6e:b0:00:d2:29:05:93:22:5b:5b:4c:35:ce:55:
27:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:DD:53:39:75:8A:E6:DE:68:DC:C6:53:E2:F6:99:4B:B7:2F:79:57
X509v3 Authority Key Identifier:
keyid:CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:bd:c2:0a:59:60:93:22:e7:73:fa:56:6d:87:c4:61:0b:b5:
1a:66:45:5b:af:d3:06:85:1d:f1:17:b5:82:55:81:fc:31:c6:
e7:59:02:21:b7:cd:97:1e:9b:54:d9:4b:4a:de:c8:fd:b2:a6:
03:b6:fb:fe:dd:d5:f6:15:92:ac:64:f1:06:7d:31:c3:66:7e:
e7:89:04:08:c5:eb:50:14:af:55:53:ea:18:a6:d8:27:b7:63:
4c:1d:2a:ae:52:30:f1:50:4a:65:0a:ba:67:46:5c:7a:8a:b1:
89:ff:db:67:3a:4b:de:6e:e1:46:9e:67:df:a5:dc:66:64:7c:
e4:ce:15:1c:32:af:41:f8:04:53:34:2f:63:fc:4c:8f:39:f2:
0f:bd:c0:a0:8f:b5:48:c3:40:04:f6:55:ca:f1:6d:3c:5f:51:
96:1f:17:2e:b7:6e:fe:88:89:d8:61:c1:6e:cd:ea:ab:68:ef:
04:b5:75:ce:d6:c5:b6:04:31:1e:64:32:57:56:45:51:d0:53:
64:2f:32:bc:9e:51:a5:c2:32:e4:2f:5f:58:f1:bc:21:ad:50:
52:9c:30:b4:cb:2e:f8:a3:20:be:4e:7f:0f:c7:72:99:c5:d2:
91:69:5a:d7:d8:89:71:19:ad:36:95:44:ce:c2:4f:ed:f1:93:
e1:19:3c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:36 2025 by rpki-client