Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
File: YFUCYwejbuxeaBw5SK71Oif5lzY.mft (raw, json)
Hash identifier: etqz+VVGG9p+CpdJcRgTypiIzyoGkFA3BkJfGTeb7DY=
Subject key identifier: 0B:A3:A4:35:2F:78:C7:3B:0B:60:64:6B:44:03:2F:FE:A5:6E:4F:1A
Authority key identifier: 60:55:02:63:07:A3:6E:EC:5E:68:1C:39:48:AE:F5:3A:27:F9:97:36
Certificate issuer: /CN=6055026307a36eec5e681c3948aef53a27f99736
Certificate serial: 0199FDA1C070ACE2F8AC8B29F7EF54EE99C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFUCYwejbuxeaBw5SK71Oif5lzY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
Manifest number: FF
Signing time: Sun 19 Oct 2025 18:01:00 +0000
Manifest this update: Sun 19 Oct 2025 18:01:00 +0000
Manifest next update: Mon 20 Oct 2025 18:01:00 +0000
Files and hashes: 1: 7jIqwtDbMy9vdRo0YUm5EEwEiSU.roa (hash: zcVysxxJ8InMIpqNYEgmGN9PoMJVnhc3HSBD/6SlWos=)
2: YFUCYwejbuxeaBw5SK71Oif5lzY.crl (hash: GpmK10KtFWEGrGgL0LbACm132d+aPBPtdf9fZnlNkF8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YFUCYwejbuxeaBw5SK71Oif5lzY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:a1:c0:70:ac:e2:f8:ac:8b:29:f7:ef:54:ee:99:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6055026307a36eec5e681c3948aef53a27f99736
Validity
Not Before: Oct 19 18:01:00 2025 GMT
Not After : Oct 20 18:01:00 2025 GMT
Subject: CN=0ba3a4352f78c73b0b60646b44032ffea56e4f1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:12:9b:8e:8f:2e:15:9e:a4:fe:d3:b0:de:2d:
0b:0a:7b:2e:22:f7:14:94:91:b3:43:ab:b3:ee:39:
7c:39:ea:b2:30:42:ca:eb:05:8b:2d:ab:98:23:d6:
50:6e:f3:b1:bc:be:02:64:53:56:58:57:0a:2b:a4:
7c:15:7a:50:03:0d:ae:63:b1:0f:a3:3f:2c:14:b2:
2b:4f:3c:b5:ec:96:a7:c1:15:3d:a0:c1:aa:a8:87:
20:f9:d3:59:5b:5e:13:96:0b:0f:65:a2:06:e9:73:
83:90:c0:88:ba:38:90:39:65:c5:c0:c3:b6:11:2b:
c6:33:b5:c0:d3:23:f3:db:c8:70:0f:65:1a:39:cf:
6e:bb:5d:c1:80:02:c3:ef:d9:c5:61:93:20:97:ec:
0f:2e:fd:ca:c6:6e:36:a5:8a:d6:f6:07:39:3d:a0:
2f:dc:b7:6f:6b:d7:1e:7c:b8:ea:5f:65:40:36:04:
e5:09:89:af:27:d6:99:2a:82:51:25:12:0b:cb:fc:
55:4e:c9:d7:7e:d8:d5:ed:c5:bc:28:b1:3c:10:bd:
3c:80:90:1e:1f:5f:71:53:35:c1:b4:6c:66:9a:59:
5b:b8:c5:eb:d7:39:ef:76:ad:b2:0c:08:38:1f:68:
7d:5a:7f:ab:24:4c:3d:38:eb:b7:86:4e:be:df:3c:
00:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:A3:A4:35:2F:78:C7:3B:0B:60:64:6B:44:03:2F:FE:A5:6E:4F:1A
X509v3 Authority Key Identifier:
keyid:60:55:02:63:07:A3:6E:EC:5E:68:1C:39:48:AE:F5:3A:27:F9:97:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFUCYwejbuxeaBw5SK71Oif5lzY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:0f:a7:7e:1c:40:f0:d9:50:06:f2:fb:e2:96:14:4e:7d:84:
bb:88:a2:3f:3d:18:8c:08:1f:38:f3:aa:f0:c8:3a:4b:3b:fd:
44:0d:bd:8c:a6:16:36:1c:7c:9e:16:37:e0:6c:1b:85:00:e1:
0d:bd:f6:38:b1:cd:c6:37:8a:84:f6:1e:fb:0a:78:43:bc:50:
83:36:a6:2a:71:36:ee:e2:f3:f1:09:f4:bb:e9:bf:4f:11:57:
97:43:e1:a4:d9:bb:76:9b:ac:2f:63:16:63:84:14:45:2a:11:
89:c9:01:fa:fd:33:03:c0:41:90:96:47:65:e8:bf:ac:6a:56:
6b:26:59:fc:63:36:a6:92:01:a9:64:21:94:68:7d:c9:fc:cc:
1a:40:cf:7c:80:3f:ea:b8:d4:11:6c:d9:37:b0:50:f9:60:09:
83:a0:b9:c5:a9:5d:5c:30:8e:43:1d:8c:15:eb:75:9b:9e:a6:
7e:83:6a:33:3e:4d:c5:56:4d:d5:c6:54:49:b1:fd:00:1e:cc:
63:35:f3:ed:8a:9a:70:c5:7f:db:c0:55:d9:c4:49:4f:7e:ab:
7a:6b:a0:20:e8:04:26:a1:e6:1d:38:1d:ff:2b:34:fb:8a:b3:
6f:69:fe:40:68:02:9a:9c:3e:7e:db:bf:b1:96:41:5b:35:c7:
8e:24:0d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:17:38 2025 by rpki-client