Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft
File: yTLAXdVS5YBU2FWljWFhlVP1HGM.mft (raw, json)
Hash identifier: nA124dVXA2oDJBt3GpYwENpS18cHwuGktsp+Ky9OOEk=
Subject key identifier: 00:4D:62:5A:2F:4E:6C:45:36:B3:8D:31:D2:CA:0A:12:80:B2:24:FB
Authority key identifier: C9:32:C0:5D:D5:52:E5:80:54:D8:55:A5:8D:61:61:95:53:F5:1C:63
Certificate issuer: /CN=c932c05dd552e58054d855a58d61619553f51c63
Certificate serial: 0199FD6B39F01AA3051FBCD2DEDCA73CBDD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yTLAXdVS5YBU2FWljWFhlVP1HGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft
Manifest number: 0169
Signing time: Sun 19 Oct 2025 17:01:26 +0000
Manifest this update: Sun 19 Oct 2025 17:01:26 +0000
Manifest next update: Mon 20 Oct 2025 17:01:26 +0000
Files and hashes: 1: yTLAXdVS5YBU2FWljWFhlVP1HGM.crl (hash: cGZPt4sI3iThzWQH4TtNprVXa3IOeQSH65nVi7Tc0xU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft
rsync://rpki.ripe.net/repository/DEFAULT/yTLAXdVS5YBU2FWljWFhlVP1HGM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:39:f0:1a:a3:05:1f:bc:d2:de:dc:a7:3c:bd:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c932c05dd552e58054d855a58d61619553f51c63
Validity
Not Before: Oct 19 17:01:26 2025 GMT
Not After : Oct 20 17:01:26 2025 GMT
Subject: CN=004d625a2f4e6c4536b38d31d2ca0a1280b224fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b6:51:9a:90:b2:30:87:f4:18:a5:33:06:2f:
b6:7f:1c:66:68:8d:72:04:00:11:40:14:48:d5:c0:
77:08:7e:9d:df:33:7f:53:8c:97:37:54:1c:0a:3b:
31:0c:58:5b:1e:f2:d9:b1:08:ef:6b:55:42:cf:b3:
35:04:cd:6e:c7:1c:c4:02:60:ec:20:f9:f3:59:07:
8e:7b:76:04:3d:c7:7e:b1:36:9d:a1:02:39:c1:31:
6d:88:3a:be:71:e7:b6:62:b7:48:30:2d:55:77:2b:
f7:ef:55:ad:77:92:a6:a1:68:2d:06:82:d0:97:46:
ff:59:6a:3d:17:d8:c9:0f:f6:03:de:d9:54:a3:71:
90:04:62:9f:8f:e4:f0:d6:aa:16:50:51:b5:c6:43:
99:ae:2f:d5:b4:9b:b5:b8:a6:d5:ec:c8:8a:58:27:
4b:ea:15:26:fd:08:23:5a:e7:4e:b9:6c:4d:e9:7d:
15:a6:ec:2d:ad:3f:76:bd:bc:ce:e3:56:c8:a1:dd:
b9:7d:fb:24:f4:15:85:a4:78:fb:c9:02:11:ce:d5:
53:4e:ad:ec:c7:2b:7d:ee:99:b0:86:d8:63:42:63:
d9:9a:02:a8:4a:fd:e2:61:f9:c9:87:9d:e9:b2:bd:
0e:11:43:5c:e7:5b:c5:da:ac:52:8b:d2:34:e6:df:
54:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4D:62:5A:2F:4E:6C:45:36:B3:8D:31:D2:CA:0A:12:80:B2:24:FB
X509v3 Authority Key Identifier:
keyid:C9:32:C0:5D:D5:52:E5:80:54:D8:55:A5:8D:61:61:95:53:F5:1C:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yTLAXdVS5YBU2FWljWFhlVP1HGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:d2:40:d1:77:18:97:86:8e:50:00:4e:92:6f:b1:c1:ce:b5:
b5:cc:42:58:a5:e6:64:01:a9:2a:a2:08:96:96:ee:8e:77:9f:
08:ef:1a:55:8e:03:34:cb:8d:76:83:2a:33:35:fe:1f:22:14:
d8:88:e3:2a:4f:f6:5d:98:6d:44:74:d3:6c:bc:47:9d:7d:3f:
90:36:d3:76:cf:17:5a:34:7f:99:67:1f:b7:e6:da:ca:13:92:
fa:db:45:9b:3f:f1:7b:a7:ef:e5:cb:b1:c7:1b:e4:bc:57:13:
c8:51:2b:17:f0:a7:f0:8e:ae:81:e4:db:78:91:b3:8b:d2:ec:
c0:39:ab:f9:98:8c:f8:6c:af:e4:db:ef:a2:2e:f0:53:b0:0e:
85:5f:a7:10:d1:8a:6d:69:ad:dd:c2:65:31:53:ce:33:a9:54:
b0:f1:96:e1:8b:a2:23:cb:fd:5c:b9:8e:95:69:81:fb:2d:51:
95:b0:7c:6b:78:27:80:b0:0b:af:ad:e2:2e:3b:82:77:f7:0b:
eb:4d:05:de:85:fa:b0:ef:ef:1f:4c:b4:af:81:49:d6:9c:15:
fe:b8:8d:0b:8f:bd:d0:db:c1:15:84:12:32:38:f0:83:d7:6b:
b0:0c:ad:50:06:d3:69:12:ce:44:5e:58:63:91:f2:df:da:fc:
6a:74:0b:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:19 2025 by rpki-client