Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
File: yoFg7-OfGjB3_dL68ipkgEtUE4I.mft (raw, json)
Hash identifier: nNWeBMEvX+Dpa4ezR/LdAP75dll6zfIyqzyMRg4dGKI=
Subject key identifier: FC:36:4C:3B:38:68:CF:B5:24:F6:69:68:48:95:84:5F:5A:75:8E:7C
Authority key identifier: CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
Certificate issuer: /CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Certificate serial: 0199FC8F194D53383253FD46624E6690FAAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
Manifest number: 1382
Signing time: Sun 19 Oct 2025 13:01:00 +0000
Manifest this update: Sun 19 Oct 2025 13:01:00 +0000
Manifest next update: Mon 20 Oct 2025 13:01:00 +0000
Files and hashes: 1: h-rZd3ShfaYedaYA6tLbzrX_MkU.roa (hash: 6iJffUIazxHr4GTAEcidCyRV9SNB9d9va8nX06PMskE=)
2: yoFg7-OfGjB3_dL68ipkgEtUE4I.crl (hash: w4yk/+UenuTrSnmDAIfheKc+epNF8R/8ycElusYMuMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:19:4d:53:38:32:53:fd:46:62:4e:66:90:fa:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Validity
Not Before: Oct 19 13:01:00 2025 GMT
Not After : Oct 20 13:01:00 2025 GMT
Subject: CN=fc364c3b3868cfb524f669684895845f5a758e7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:9b:78:99:ec:38:9c:ed:53:71:70:1d:e4:a2:
a5:ae:20:07:7c:27:3b:95:98:a5:93:62:9a:45:28:
e0:48:c8:03:36:42:e3:8b:b2:5e:55:54:43:1f:57:
69:0e:b4:31:ef:96:b3:35:78:de:90:e0:1f:e2:9d:
1e:b6:8e:90:02:ac:f0:c5:c0:88:71:0c:71:d9:4f:
79:04:d8:30:22:27:fb:09:08:ca:0e:01:65:e1:13:
cb:f6:c7:de:14:4a:1e:ad:cb:a6:4b:a0:08:ed:33:
7b:a6:6d:d5:d7:56:5a:2a:a4:df:9c:80:8e:a1:f7:
43:2a:44:a2:c6:70:78:13:4c:fb:62:32:9a:ab:cf:
f5:7b:1b:b7:e6:2f:2a:b7:67:90:40:73:a1:b8:be:
ca:05:26:f1:43:76:f4:67:9d:b8:a0:b8:13:e4:7f:
68:04:31:be:f0:cd:32:9f:71:aa:64:37:9c:01:66:
b1:0c:58:af:e1:3f:11:e0:1a:64:13:61:24:dd:f3:
95:2a:24:b8:17:e3:14:bf:11:0f:f8:d2:cf:39:f9:
77:fb:18:07:d0:1f:5d:38:2e:ea:2f:6b:1d:fb:47:
05:ef:52:14:ee:80:00:28:2c:a2:1a:85:bc:89:ac:
67:36:fe:bd:53:8b:52:07:68:85:e2:e9:8f:94:c3:
d7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:36:4C:3B:38:68:CF:B5:24:F6:69:68:48:95:84:5F:5A:75:8E:7C
X509v3 Authority Key Identifier:
keyid:CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:80:f1:dd:9d:1c:0c:8c:c8:5b:c9:43:cb:d0:e4:f0:1f:a9:
28:91:a9:91:74:65:53:d7:4d:40:6e:23:03:12:dd:44:d8:9e:
e0:db:9d:59:f8:af:e7:d4:3e:58:97:77:6b:33:ca:3b:30:56:
8a:90:77:5d:1a:8d:46:fb:bc:03:e0:4d:ad:9e:97:32:02:f8:
fe:f4:a9:58:82:92:bb:17:5c:82:b4:6e:a0:6f:02:18:fe:3a:
c7:94:ce:3f:eb:29:08:e3:da:d0:8d:ab:d5:c4:4c:11:7d:79:
1b:80:4c:fd:6e:0f:3f:41:a6:2f:ed:c2:e9:e9:99:70:e9:7c:
7f:f2:35:2e:49:41:52:1c:84:76:e2:fe:f1:e8:c9:82:22:5f:
32:77:08:8c:1e:fd:2a:0c:34:a3:70:2e:0b:f5:e3:ba:ba:b9:
be:cf:00:47:fe:f0:cc:d2:84:00:14:52:de:08:e2:4e:ba:ed:
a5:c3:4d:de:99:a8:cf:94:57:76:82:1b:02:1c:79:f9:cd:a6:
6d:59:49:f5:53:ee:f4:31:5d:f3:45:33:6d:9d:55:6e:57:9c:
1f:a6:ef:f2:82:48:ec:f9:ce:31:2e:fd:f4:e2:0a:9e:f9:03:
6f:9a:6a:44:e8:fc:aa:8d:95:08:b4:c9:22:04:d4:83:4e:9f:
e6:cc:d5:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:36:46 2025 by rpki-client