Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft
File: yWncvDPoAQQ4EpKC03rU6L-EuB8.mft (raw, json)
Hash identifier: 4Lzn6XLkSAIxk5gCLHSmvL+8FAd72fyGzGJs2dVanvc=
Subject key identifier: 97:A5:DC:6A:24:B4:A0:18:B9:2D:7A:91:18:2E:92:C2:B9:95:AD:40
Authority key identifier: C9:69:DC:BC:33:E8:01:04:38:12:92:82:D3:7A:D4:E8:BF:84:B8:1F
Certificate issuer: /CN=c969dcbc33e8010438129282d37ad4e8bf84b81f
Certificate serial: 0199FC8F740F4DD7CD82C7F874CBF2C673BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yWncvDPoAQQ4EpKC03rU6L-EuB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft
Manifest number: 160D
Signing time: Sun 19 Oct 2025 13:01:23 +0000
Manifest this update: Sun 19 Oct 2025 13:01:23 +0000
Manifest next update: Mon 20 Oct 2025 13:01:23 +0000
Files and hashes: 1: FU1o4K68ASMHjxslt5agTXMw1Z4.roa (hash: cFpnMXx4SNy55YthuxgRWkF2I8U6u41jmzS8UiT8Yts=)
2: yWncvDPoAQQ4EpKC03rU6L-EuB8.crl (hash: Tj3oF7RyZzFH0RkLY0d9mqEuwYLfQa5ZCzHsY2dYOOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yWncvDPoAQQ4EpKC03rU6L-EuB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:74:0f:4d:d7:cd:82:c7:f8:74:cb:f2:c6:73:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c969dcbc33e8010438129282d37ad4e8bf84b81f
Validity
Not Before: Oct 19 13:01:23 2025 GMT
Not After : Oct 20 13:01:23 2025 GMT
Subject: CN=97a5dc6a24b4a018b92d7a91182e92c2b995ad40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:94:d0:9a:aa:8f:bd:83:35:e4:43:69:f7:66:
f8:ac:ad:b8:5d:4b:c5:d3:fa:93:83:62:bf:72:84:
d6:72:3b:e0:86:c2:fa:a2:32:d4:de:6e:4d:c3:43:
f7:82:76:d5:77:56:1e:87:db:5e:bb:58:d0:57:6b:
aa:ef:2a:1e:c0:96:8e:ed:7f:19:c7:4c:fc:e5:a9:
02:4a:72:b0:56:8c:eb:a3:48:af:19:a0:0e:93:f8:
7f:8f:40:34:2e:12:1a:88:e6:22:76:54:c9:57:4e:
de:c8:78:2c:e4:7f:39:ed:83:36:5b:c5:e6:1e:e2:
4c:26:df:93:de:3c:e4:a6:b5:c1:ef:96:df:2b:ca:
b4:f7:c8:a5:90:e7:3f:68:0e:a7:1a:42:3e:74:ac:
01:43:0a:9e:0f:b2:5a:19:c3:6e:c9:26:11:37:3e:
16:a8:43:1f:fa:f0:19:27:48:c6:1a:bc:57:82:ff:
6e:b9:4c:44:0b:c4:0f:4a:ed:ac:d7:98:bf:c6:50:
ae:31:81:1e:df:48:7a:db:7a:4f:0b:40:29:93:f5:
40:b0:5a:6c:4f:fe:7b:ea:cf:49:0e:df:d0:36:16:
b5:d8:43:54:88:24:69:70:2f:fa:98:cc:4a:0e:4c:
0b:c4:7c:9a:54:45:0c:49:9b:06:bb:89:fb:96:f2:
06:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:A5:DC:6A:24:B4:A0:18:B9:2D:7A:91:18:2E:92:C2:B9:95:AD:40
X509v3 Authority Key Identifier:
keyid:C9:69:DC:BC:33:E8:01:04:38:12:92:82:D3:7A:D4:E8:BF:84:B8:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yWncvDPoAQQ4EpKC03rU6L-EuB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:93:ce:e8:a8:38:f0:6b:18:7e:de:81:fc:73:c0:29:79:4d:
b3:59:f3:96:b4:a5:69:a2:60:df:1b:71:50:77:8f:48:05:67:
91:6a:bd:3e:de:2d:f0:d8:4d:a5:11:36:35:c4:25:72:7f:44:
1b:1f:a2:1d:95:d5:21:4b:46:b3:44:6a:e7:3a:31:45:c6:ce:
98:b4:ed:0e:98:d0:e5:6b:be:7a:df:fd:14:b9:aa:1a:ec:7c:
3a:ca:9b:b1:49:11:8d:e7:46:46:d1:b1:c0:eb:87:3e:67:7f:
7c:89:5b:4e:54:7e:4c:79:e6:7b:a2:be:8f:33:21:b1:9e:0b:
0f:5e:0a:12:39:ed:69:a1:55:3e:6b:38:fd:63:04:d1:e0:e0:
cc:e8:a3:40:dd:b3:76:d9:d2:52:71:fb:d7:35:39:73:86:26:
7e:f8:e6:61:4c:2d:ab:ad:05:23:1b:8f:ae:05:d4:f4:7a:0b:
aa:81:ff:38:e7:8c:97:d2:ee:fb:03:66:58:c9:17:14:5f:b5:
92:f2:37:5c:ba:00:e3:2b:77:37:7c:3d:f1:d1:05:50:35:b1:
bd:4d:25:0a:5c:0f:03:46:db:3f:23:a3:2b:ac:63:41:4f:37:
ec:64:8a:17:4c:12:14:96:b6:47:26:00:97:fc:72:77:27:4a:
27:2f:35:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:29:00 2025 by rpki-client