Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
File: ypAPHhHi0l0LIxatbgEmhIOayB4.mft (raw, json)
Hash identifier: 1SJzZdW4Bv55OiEyGyBO9J9KIDcsqdxrNBD8csfCbnU=
Subject key identifier: EE:41:2B:94:BC:98:85:DA:1A:06:53:B3:A2:C0:D2:B2:CE:90:6D:BE
Authority key identifier: CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
Certificate issuer: /CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Certificate serial: 019A006BFD974D15890512FD2A8269A5C8E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
Manifest number: 16E5
Signing time: Mon 20 Oct 2025 07:01:08 +0000
Manifest this update: Mon 20 Oct 2025 07:01:08 +0000
Manifest next update: Tue 21 Oct 2025 07:01:08 +0000
Files and hashes: 1: UvHXXFoVL7W8kRf_CmjRtC48uH4.roa (hash: E8q/i3b6Anio6852XqG98vgAFVWa9Xn560kQh/u0aSY=)
2: ypAPHhHi0l0LIxatbgEmhIOayB4.crl (hash: +gFY5YC4rMQIbXrpoIyHZuCRsUJuxoBxDHnU1fyqggU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 07:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6b:fd:97:4d:15:89:05:12:fd:2a:82:69:a5:c8:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Validity
Not Before: Oct 20 07:01:08 2025 GMT
Not After : Oct 21 07:01:08 2025 GMT
Subject: CN=ee412b94bc9885da1a0653b3a2c0d2b2ce906dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ea:4c:8d:69:68:e8:98:6b:c7:71:b4:a4:d2:
30:2b:27:25:6c:a0:81:d8:6b:d4:10:5e:12:14:26:
c9:4c:09:26:e4:27:80:39:91:4c:d0:bb:7f:fd:58:
1a:17:53:f6:c2:98:57:03:2d:e7:d6:87:04:56:73:
71:3b:3f:99:5f:37:42:b5:a8:fc:bf:92:b4:26:ee:
e5:c7:4f:44:00:ba:a3:2c:1f:0f:38:f3:d7:e2:7c:
3c:7d:d4:9a:cc:d3:45:4e:a9:59:35:42:d5:fe:ca:
70:e4:23:3e:5a:dd:ec:68:bd:2a:15:92:ac:75:78:
97:d5:89:f6:06:5b:ff:ba:d1:05:9f:3f:75:2b:ca:
56:dd:d8:7f:dc:90:65:77:64:75:a1:27:a3:04:82:
58:8b:db:05:5a:40:a3:ad:27:f3:e0:fa:a0:2a:53:
fb:a2:ce:18:73:0d:5c:ab:db:b1:32:09:96:2d:28:
8b:d4:cf:ac:d9:8c:a4:d8:45:47:eb:0f:78:c9:f1:
43:ab:ff:d2:49:b8:3d:33:12:fa:26:4b:4b:e0:c0:
90:3f:69:c7:dc:1f:dd:8f:04:d6:f2:30:55:58:96:
eb:d7:49:ac:df:f2:19:56:10:a7:24:a2:ab:b0:f3:
d8:bc:ff:48:77:5f:ec:cc:fa:58:d0:d1:09:20:70:
84:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:41:2B:94:BC:98:85:DA:1A:06:53:B3:A2:C0:D2:B2:CE:90:6D:BE
X509v3 Authority Key Identifier:
keyid:CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:2c:ab:ad:4f:31:fb:2f:94:46:e8:f7:59:7a:23:79:2e:f7:
77:2a:3f:a5:b4:c8:70:0c:52:e9:f3:2f:1b:4d:59:5c:5d:1b:
5d:8a:6d:39:07:67:3a:ba:dc:f7:6d:7a:4f:0c:11:6b:66:72:
06:76:06:b8:73:e0:ce:9e:1d:55:3c:4c:ef:20:ee:f2:05:9f:
bf:d7:44:ba:7f:a7:f0:dc:84:0a:32:be:45:10:e3:76:9a:89:
30:36:12:e9:49:25:f4:d1:5f:6e:eb:c2:bf:aa:73:48:3a:e0:
c6:da:60:bb:2b:64:6d:81:a3:de:34:6a:93:06:53:a4:80:4d:
b9:c0:6e:c5:82:4c:81:d5:7d:1a:81:70:34:dc:cb:00:ba:46:
31:0c:38:a0:76:c0:77:57:4d:a3:d2:99:c3:7d:a1:d7:69:f7:
69:7f:2b:23:e7:fb:04:2c:f9:90:40:7b:dc:16:1b:2c:ae:f7:
2a:ac:f6:21:be:16:8a:59:89:92:0a:9a:b6:92:f9:b5:b3:32:
26:a8:2e:8f:29:01:8c:84:5f:49:6a:d8:f9:6c:a1:a6:37:cb:
25:0f:50:b0:56:05:52:ac:e5:6e:64:9f:c4:4d:81:6e:b4:32:
35:a4:14:b1:b8:88:46:ff:06:c7:7f:18:ff:91:4e:84:f6:2e:
e7:7b:69:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:40:18 2025 by rpki-client