Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
File: YQy4N7bSF3jkw9u5aWefDxxQtIo.mft (raw, json)
Hash identifier: RC5iVq7kokNTM7In+qiWiJPArzPXjFeEqV+IpiG+XRg=
Subject key identifier: 1D:8B:F4:C2:49:CA:FE:D3:2D:1A:52:EC:77:11:1D:9B:A9:E9:41:8B
Authority key identifier: 61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A
Certificate issuer: /CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a
Certificate serial: 0199FDD90B70ACB61FBC5DF5F9B9A318E29C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
Manifest number: 0EFB
Signing time: Sun 19 Oct 2025 19:01:23 +0000
Manifest this update: Sun 19 Oct 2025 19:01:23 +0000
Manifest next update: Mon 20 Oct 2025 19:01:23 +0000
Files and hashes: 1: YQy4N7bSF3jkw9u5aWefDxxQtIo.crl (hash: LA8HetTBXDumVrwaHua/3rvwJInq8khfdLwFf/nmvr4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:0b:70:ac:b6:1f:bc:5d:f5:f9:b9:a3:18:e2:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a
Validity
Not Before: Oct 19 19:01:23 2025 GMT
Not After : Oct 20 19:01:23 2025 GMT
Subject: CN=1d8bf4c249cafed32d1a52ec77111d9ba9e9418b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:84:ef:a9:46:52:f8:34:ae:8c:f2:8e:a5:a4:
ee:55:f7:0a:9a:e9:53:86:4b:9d:b5:63:7e:de:70:
f7:92:37:1b:0c:b0:c7:33:22:bc:4b:81:35:7a:e0:
a7:50:f5:31:f9:43:2c:a9:39:ae:cd:79:23:48:56:
7d:0c:ae:26:bd:54:4b:53:e6:aa:7f:ed:37:09:d1:
c8:9b:51:dc:09:7f:46:ce:b2:1f:b2:73:af:87:5d:
ae:c8:20:65:8e:c1:3b:19:54:c8:bf:52:c4:b0:e3:
19:7c:70:dd:13:91:bf:7f:d1:d7:ee:69:c0:8a:68:
35:7d:24:00:1a:b1:d1:87:9e:24:f7:a4:bf:65:b6:
80:35:b2:8a:cf:63:1a:af:39:6b:e2:5d:05:a1:42:
77:d2:ac:f1:97:f4:04:46:7e:83:af:24:7b:38:c5:
64:c1:13:e5:a9:c5:41:89:d1:0b:51:a0:aa:5f:8c:
25:28:25:6a:82:29:a8:03:80:fa:9b:00:b6:a4:d4:
e7:05:a9:51:65:63:71:b1:76:e3:28:fa:9a:45:eb:
33:5a:ff:00:e8:17:59:e6:7d:13:69:dd:fd:0d:41:
18:63:5f:48:d5:f6:d6:b1:29:32:d5:62:78:02:7b:
0f:09:05:22:e2:26:b8:94:2d:ed:62:c5:ca:9c:4e:
ba:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:8B:F4:C2:49:CA:FE:D3:2D:1A:52:EC:77:11:1D:9B:A9:E9:41:8B
X509v3 Authority Key Identifier:
keyid:61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:e9:2f:cc:9f:bf:97:cd:08:d4:3c:35:58:9b:76:8b:93:5c:
04:0a:0a:47:74:db:94:10:51:b9:0e:f4:34:c9:82:83:c7:11:
9a:b5:bd:44:67:d0:85:69:85:40:79:30:66:c1:33:3f:74:b9:
df:5d:85:d2:6a:46:4b:20:d8:72:34:91:98:ff:f3:75:0b:f3:
ce:fb:d6:7d:b2:6d:39:0b:f5:c8:84:cc:4a:95:eb:f1:35:36:
e4:ce:2c:ea:0c:8f:fd:a4:3a:56:34:4e:bf:17:b7:d1:a0:4d:
3a:fc:30:b6:ab:15:6f:04:01:6a:ac:b4:aa:e4:d0:66:63:b2:
50:37:c7:b3:34:7c:17:25:f9:e6:39:b4:ac:b8:38:42:07:a5:
40:ff:56:66:b6:c3:35:c7:8e:4b:12:10:bb:fe:2a:4c:33:60:
8e:57:01:be:67:d0:2c:0b:78:84:e8:61:db:1b:cb:00:48:e5:
a9:5a:67:5c:90:97:35:fe:c7:a8:29:03:15:f7:52:a7:80:6d:
75:71:29:ce:4f:3d:5e:13:0a:56:6c:99:3a:50:a4:02:3c:ee:
be:b4:a7:0e:f1:15:50:ae:8d:31:72:d8:52:16:72:63:9b:ed:
76:a7:14:11:02:9e:a0:01:99:c1:7d:29:39:a4:1b:c2:61:36:
0f:b5:85:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:05:51 2025 by rpki-client