Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
File: YhuOSG7srmEk3hBJT9OROe1KN8s.mft (raw, json)
Hash identifier: sCDonkcbH5IBMy4J4v7jUFxNJ+KfOeD+tMlxxGdvRDA=
Subject key identifier: 6C:A8:CF:2C:3E:D4:BA:C2:51:D5:7C:6D:53:73:FF:07:F4:31:70:DC
Authority key identifier: 62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
Certificate issuer: /CN=621b8e486eecae6124de10494fd39139ed4a37cb
Certificate serial: 0199FE0FFBD0042CE05EA8AAEDF367B5895C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 20:01:24 +0000
Manifest this update: Sun 19 Oct 2025 20:01:24 +0000
Manifest next update: Mon 20 Oct 2025 20:01:24 +0000
Files and hashes: 1: YhuOSG7srmEk3hBJT9OROe1KN8s.crl (hash: BC7RgRMq4abVIFCNCYg60/CdAkHEAz8ctG+WdY/KVuw=)
2: eKGme1_RE2Cve029wfoTPnjkx8E.roa (hash: 7e5ken09Fa398flHkK+xPpARVfWAIKVd53mQhTUCt6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:0f:fb:d0:04:2c:e0:5e:a8:aa:ed:f3:67:b5:89:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621b8e486eecae6124de10494fd39139ed4a37cb
Validity
Not Before: Oct 19 20:01:24 2025 GMT
Not After : Oct 20 20:01:24 2025 GMT
Subject: CN=6ca8cf2c3ed4bac251d57c6d5373ff07f43170dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:de:05:62:d2:8f:d6:8f:28:d9:fe:65:3f:b3:
17:b3:24:34:29:a7:9f:0c:ea:2e:12:76:e4:70:da:
92:b7:37:a6:e9:76:c5:b7:b4:f1:e3:19:55:ee:e0:
41:33:b9:62:c8:37:ff:fe:3a:03:f3:20:70:4e:18:
8f:b0:f9:22:7e:2a:c8:15:2e:cf:5e:52:5a:e5:36:
b8:f9:52:df:f2:58:f3:a6:1a:6f:c1:fe:0f:c8:f5:
a0:84:39:25:14:8d:9f:a3:fd:a2:53:ae:4d:43:70:
78:a6:32:af:05:5a:74:77:78:e0:66:70:ba:24:9a:
45:fc:a7:4d:be:8b:56:b9:b2:88:e0:0c:a7:2c:61:
a7:80:4b:58:8f:53:77:9f:fc:85:c2:3d:97:1b:74:
b7:b3:c8:8a:6e:25:19:cf:02:ec:7d:9c:ec:67:fa:
6f:b1:6a:f8:bf:40:e0:4a:ff:4a:30:0b:93:0a:00:
ee:37:1f:63:c8:57:8d:37:66:2d:4d:69:62:c8:86:
32:21:14:fe:66:28:d4:b3:36:85:aa:e5:89:5e:7f:
b1:50:c0:8f:4d:ab:16:61:2f:a6:02:cc:c7:e0:78:
8b:ff:9b:fa:f7:42:d3:8f:46:89:a7:7a:bb:00:4b:
97:c7:4a:3f:ef:74:6c:a9:40:d8:49:f1:25:90:7d:
b2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A8:CF:2C:3E:D4:BA:C2:51:D5:7C:6D:53:73:FF:07:F4:31:70:DC
X509v3 Authority Key Identifier:
keyid:62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:84:37:75:42:58:de:43:80:f3:6d:69:27:84:c3:35:7b:b0:
9a:74:87:03:e9:69:b1:67:35:c3:a1:52:63:0b:1c:ab:ee:15:
e3:b0:8c:f5:23:f8:6e:b2:63:59:d4:b7:00:d1:b3:6e:69:af:
e9:f5:bf:66:c5:2c:9e:95:94:09:2e:9f:b4:d6:f4:63:66:1f:
11:c9:24:3f:f5:15:38:2a:70:70:89:4f:5c:3c:7e:bd:07:9a:
32:cc:21:a5:33:6b:fe:85:a2:46:f6:9e:da:b8:eb:7c:ff:65:
5e:41:b0:3e:f2:2a:44:a5:17:69:11:9a:0a:c6:2c:fc:f2:2c:
5e:46:d2:c3:67:81:16:0c:d1:8d:81:61:bd:c9:59:d3:e2:e8:
bc:6d:da:d1:57:c7:54:fc:75:05:bd:d2:1a:4d:10:ed:f8:93:
d2:20:ab:f3:a0:6b:9d:50:9d:3a:61:2f:37:92:6c:0c:63:dc:
d4:5d:fc:41:04:ab:c9:71:bf:73:19:a1:0b:c0:5b:19:19:7b:
b9:f8:a9:58:ee:5f:e3:e4:d1:91:9d:f4:a5:cf:58:02:3d:5f:
25:b1:c9:a5:db:d4:78:42:bc:0c:c2:f8:8b:0f:f6:1c:9c:0d:
3a:de:cd:10:62:6d:fb:66:5a:a3:82:ab:65:48:fe:dc:f5:94:
72:c8:2d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 03:41:42 2025 by rpki-client