Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
File: YO9KF7jv9Fugs51HSWVX44j__lI.mft (raw, json)
Hash identifier: TYxklA2d+8VNCGXyGuf9CU9jOhK/QgXRmIOHMsbJRSk=
Subject key identifier: 52:0F:6B:F2:F1:C7:AD:CE:08:FB:AC:10:25:8D:A4:A7:B2:BF:06:71
Authority key identifier: 60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
Certificate issuer: /CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Certificate serial: 0199FC21500FD310E3191B994874BFAE9EED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
Manifest number: 01C7
Signing time: Sun 19 Oct 2025 11:01:05 +0000
Manifest this update: Sun 19 Oct 2025 11:01:05 +0000
Manifest next update: Mon 20 Oct 2025 11:01:05 +0000
Files and hashes: 1: WJ8mDGp2R9SerzYw88vehn3HSik.roa (hash: h5SXKLsi4QXI6eIjbslnIuS0eoxKGY5pZRrkhG82mKM=)
2: YO9KF7jv9Fugs51HSWVX44j__lI.crl (hash: oamrWqvPppQT+GVTS/WFaC4tjqaT76mDk1sf3ftjzjY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:50:0f:d3:10:e3:19:1b:99:48:74:bf:ae:9e:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Validity
Not Before: Oct 19 11:01:05 2025 GMT
Not After : Oct 20 11:01:05 2025 GMT
Subject: CN=520f6bf2f1c7adce08fbac10258da4a7b2bf0671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:9f:d1:ec:a8:f9:04:0d:97:a7:a7:d5:12:16:
c5:cd:4c:5e:8c:dc:ea:3f:16:bb:33:70:0f:77:d3:
86:79:aa:0d:b5:10:d0:86:99:3f:50:2e:b2:7e:46:
8f:a1:c3:af:1c:78:05:73:bb:8d:cc:4a:3f:fd:5e:
8a:5d:22:ec:b8:fb:6b:a7:a2:11:4a:72:c9:04:36:
f7:d8:ed:68:41:79:78:4e:eb:99:b0:db:f1:9c:c5:
5d:66:9e:cd:b7:f3:01:5a:d1:f0:ad:1b:6c:c1:00:
85:35:b9:e4:a9:d1:be:e2:7f:78:8d:80:0f:52:7c:
16:4f:ca:b7:84:d9:3a:2d:fe:64:da:12:af:a1:6d:
12:11:4d:dd:52:aa:00:3e:ba:42:e4:5c:09:9a:95:
02:b8:02:21:39:2f:37:8a:c8:45:50:fd:1a:d3:2c:
96:8d:93:06:bf:54:e4:cd:64:72:6e:20:28:11:ad:
87:d2:f9:33:5c:e5:98:57:c7:ea:a0:cd:cc:7f:74:
03:4f:4a:51:3b:45:61:8a:33:10:e6:da:ec:32:57:
88:87:d0:a5:26:da:ad:25:36:8b:b9:91:31:bd:2f:
27:83:7a:17:42:ec:f9:40:5a:36:b9:96:ac:55:d0:
33:29:12:e3:6b:7d:24:0c:2b:46:67:b0:df:86:20:
94:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:0F:6B:F2:F1:C7:AD:CE:08:FB:AC:10:25:8D:A4:A7:B2:BF:06:71
X509v3 Authority Key Identifier:
keyid:60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:58:4e:dd:7a:8e:3b:e9:79:32:f5:ea:83:f3:33:00:f7:36:
98:de:20:8a:c3:73:1a:35:0c:2a:c6:fd:eb:7c:b1:f0:50:9b:
cb:0b:8d:79:f2:e7:55:dd:81:7d:f4:b1:22:50:66:45:4c:1d:
96:ce:99:9c:9c:51:be:45:44:bd:88:57:04:5b:ab:a7:ee:5d:
23:62:31:df:c1:ea:24:52:e9:54:a0:64:25:03:d1:93:bb:fe:
27:4f:32:31:5a:e3:22:6a:1a:af:0a:2d:15:cc:54:6f:bd:d7:
e7:82:bb:3e:64:60:73:03:cd:c2:49:a8:72:bb:d5:64:86:42:
35:44:a8:ff:30:98:04:6e:bb:fa:07:ea:e4:a2:20:96:e6:f7:
8c:e0:62:f0:28:43:97:6d:68:cf:52:a2:a6:23:db:43:2a:ce:
23:cb:a5:50:84:52:e3:6a:90:aa:c8:01:52:6b:f6:57:80:0b:
4f:99:59:85:9d:1d:7b:68:99:f8:98:e0:bd:5c:a0:ae:3d:f8:
cd:33:9e:97:13:7f:98:15:99:19:db:cc:b7:21:d3:08:d6:96:
a5:dd:05:2e:9b:d6:a1:20:15:19:a9:40:9a:ff:94:eb:f2:3c:
66:52:07:f5:eb:dd:98:a7:70:aa:c4:15:7e:c2:13:8b:5e:b1:
f9:37:fb:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:00:15 2025 by rpki-client