Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
File: yd_q7KItLSYYtDPPAKsUS9i4Db0.mft (raw, json)
Hash identifier: K/uiQ65e/A3gzVUDZqaQhdK6UreXOJ3VtPwz0/JW+HY=
Subject key identifier: 38:52:79:56:65:25:AD:09:B0:73:C9:E8:C7:ED:D4:10:B9:DF:25:F2
Authority key identifier: C9:DF:EA:EC:A2:2D:2D:26:18:B4:33:CF:00:AB:14:4B:D8:B8:0D:BD
Certificate issuer: /CN=c9dfeaeca22d2d2618b433cf00ab144bd8b80dbd
Certificate serial: 019A006C4BF6A1B5A4B1E67D159B0FBDC6FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
Manifest number: 0818
Signing time: Mon 20 Oct 2025 07:01:28 +0000
Manifest this update: Mon 20 Oct 2025 07:01:28 +0000
Manifest next update: Tue 21 Oct 2025 07:01:28 +0000
Files and hashes: 1: YSlfWP3DY80Smx0TIqkuPzTOoec.roa (hash: zxri6NDPBUgI6E9l7vT1svBXNo7QAt30+iiVihETiFE=)
2: yd_q7KItLSYYtDPPAKsUS9i4Db0.crl (hash: kJ+QRWPmLTn/eTuNnf6ziFfLLy9abnaPXAcKTzpuC6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 07:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6c:4b:f6:a1:b5:a4:b1:e6:7d:15:9b:0f:bd:c6:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9dfeaeca22d2d2618b433cf00ab144bd8b80dbd
Validity
Not Before: Oct 20 07:01:28 2025 GMT
Not After : Oct 21 07:01:28 2025 GMT
Subject: CN=385279566525ad09b073c9e8c7edd410b9df25f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fd:79:5b:dc:a8:fa:af:fa:ab:e5:89:f7:9d:
b8:2c:40:8a:32:10:9a:35:dc:24:1b:d0:15:f1:56:
49:cc:3f:d8:39:3b:e2:95:a6:4a:d9:5d:02:7f:cf:
94:f6:4d:d2:fb:ca:d9:e9:79:6e:74:a1:34:c4:1f:
65:e9:7c:8b:3a:72:7c:99:c0:af:e0:40:85:7d:e1:
6a:df:94:a8:68:30:b3:61:a7:ed:9a:1a:b5:26:36:
81:6e:ae:10:ff:2d:30:14:5a:33:35:1b:95:a6:42:
67:cd:ce:c1:2e:17:b3:ab:6d:21:b1:5b:51:33:63:
99:aa:28:0f:3b:f4:8e:93:8c:7e:bb:3f:94:e3:0d:
15:88:0e:77:e8:68:11:01:84:cd:0a:c3:9d:cc:c9:
a6:59:44:21:26:d8:28:b3:65:f1:95:6e:b3:3b:be:
cb:c8:b7:d0:85:60:c8:54:32:b2:77:44:3e:f4:7e:
82:9d:08:c0:7a:a5:d5:f2:ee:e9:64:e7:5a:6f:14:
8c:d6:4a:3c:ac:44:1a:2b:63:b7:3c:a5:20:35:e2:
3d:70:9a:e0:18:dc:91:4a:f4:8c:cd:bd:13:35:48:
f3:c6:ee:2e:4b:4a:85:dd:a4:66:58:ed:95:63:58:
fe:4d:65:f9:e3:19:46:02:59:fd:2f:6e:fd:3b:5d:
e1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:52:79:56:65:25:AD:09:B0:73:C9:E8:C7:ED:D4:10:B9:DF:25:F2
X509v3 Authority Key Identifier:
keyid:C9:DF:EA:EC:A2:2D:2D:26:18:B4:33:CF:00:AB:14:4B:D8:B8:0D:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:c5:51:7e:13:99:12:3f:48:8b:db:42:ac:91:a6:cf:19:22:
03:6b:77:cc:01:36:b9:56:f7:ca:f5:0d:a2:b4:80:30:25:d7:
09:05:2d:a7:f5:21:86:e2:28:dc:17:2b:1d:5a:a6:d2:a7:a6:
00:24:ce:4b:cc:74:28:a5:4f:9f:73:33:bc:7d:a9:57:61:d6:
39:b1:74:3b:b7:83:fa:96:75:4f:aa:59:d0:ed:c3:4a:81:0c:
01:2e:45:ea:a9:bd:8e:70:4f:18:2c:46:c6:31:d1:6b:fc:20:
97:7c:ab:09:b3:77:cc:01:03:21:fb:6d:9b:c5:8a:11:ff:ef:
dd:2b:23:d1:e1:2c:01:9e:bb:55:5a:63:00:19:2f:e5:0f:87:
bc:c8:90:f7:e9:fb:31:d9:c7:52:a5:9d:4e:56:0a:a3:c5:5b:
bf:31:f9:82:9a:0a:33:47:44:ef:35:89:98:2d:e5:58:a1:d4:
fc:ef:34:ee:61:63:27:42:90:f7:a5:46:7c:dd:a7:dc:3a:dd:
4b:13:51:12:67:c9:ea:4a:dd:4a:11:e1:07:ad:46:22:c5:70:
0e:fe:2c:69:67:38:cc:c4:c7:4d:46:e7:22:c3:eb:61:32:4c:
3c:13:2b:fb:3c:5e:2e:b0:77:b5:1a:99:c2:32:6b:3a:ec:92:
77:81:ff:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:53:14 2025 by rpki-client