Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
File: YC8n-tkkUqJUswoGDtODsTx1jtY.mft (raw, json)
Hash identifier: GgMHPAvHmV3Fn3N5wF4Fd3BMW7B8bEkVC62hg9Aw3As=
Subject key identifier: 76:35:9A:D6:A4:34:A5:28:47:06:6A:51:04:D3:74:EC:4A:F9:62:36
Authority key identifier: 60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6
Certificate issuer: /CN=602f27fad92452a254b30a060ed383b13c758ed6
Certificate serial: 019A00A2EABC31B2BB7687FB0287CF83BBDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
Manifest number: 0949
Signing time: Mon 20 Oct 2025 08:01:08 +0000
Manifest this update: Mon 20 Oct 2025 08:01:08 +0000
Manifest next update: Tue 21 Oct 2025 08:01:08 +0000
Files and hashes: 1: TRV1zvMwN77u4mbYXqSf5mMtgyk.roa (hash: AGCpSC7dzCZj1/xhxXIQK1OjIYEOjpJ4XzT4WLt1kl0=)
2: YC8n-tkkUqJUswoGDtODsTx1jtY.crl (hash: 8D8mF0ZAu/0awURTawvqcCM8I60MmWzk7dyd6eVA8aE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 08:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:a2:ea:bc:31:b2:bb:76:87:fb:02:87:cf:83:bb:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602f27fad92452a254b30a060ed383b13c758ed6
Validity
Not Before: Oct 20 08:01:08 2025 GMT
Not After : Oct 21 08:01:08 2025 GMT
Subject: CN=76359ad6a434a52847066a5104d374ec4af96236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:c3:59:d0:7b:ce:55:e1:62:95:19:f7:3d:a4:
d8:5c:4c:3d:fc:ec:29:4a:31:87:5b:87:bb:01:25:
8e:68:70:f9:a3:9a:5a:63:99:2b:55:72:44:5b:83:
b8:48:d3:a6:bb:d8:db:42:77:22:e5:c3:85:8a:b4:
51:46:bd:20:af:98:28:28:1b:7e:b2:d2:dc:63:2f:
ee:1b:21:35:e6:51:74:1d:6e:f9:57:73:dc:43:06:
b2:88:c7:ae:e0:55:75:64:b1:f4:c9:04:8a:eb:6d:
60:dc:e8:44:d5:b3:dc:dc:35:4a:25:f1:ad:cd:4f:
7a:92:b3:a1:df:83:c7:30:bc:8f:f2:6c:52:9b:7b:
c9:0e:5c:ba:9b:0c:13:7e:35:d7:17:0f:aa:e3:fd:
2a:1e:91:3b:de:a7:26:0f:a9:17:19:94:31:a0:78:
44:9d:e7:0f:b4:06:84:fd:17:9c:23:46:5f:21:03:
7b:07:4d:1a:8e:3a:c0:e4:3f:14:e1:2c:c1:4c:89:
2b:40:c9:42:54:7a:48:38:05:e8:07:8b:28:3a:27:
52:23:f0:95:4b:b0:a0:a8:48:88:2a:aa:4f:64:e5:
c2:9c:c4:1f:13:41:36:47:cb:ab:c8:56:74:72:6d:
bd:ce:73:f3:85:74:5d:a7:eb:8f:d8:f2:46:1a:87:
bc:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:35:9A:D6:A4:34:A5:28:47:06:6A:51:04:D3:74:EC:4A:F9:62:36
X509v3 Authority Key Identifier:
keyid:60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:71:fe:5f:61:8e:2b:bc:12:91:df:71:68:69:69:d4:d9:39:
89:ae:a5:38:4e:1b:90:c1:71:58:49:de:87:0a:f0:06:b3:54:
76:b8:3f:8b:37:a2:fc:bd:6d:d6:af:f2:7d:dc:83:81:b1:af:
2d:d6:06:cc:5d:e1:c7:a0:14:51:5e:b2:37:f8:7d:fd:96:2a:
78:78:b2:1a:69:d6:4e:3d:9f:1f:58:f6:be:ca:cf:42:df:ce:
53:5f:e1:44:2e:79:fa:70:17:27:e7:5e:0d:7b:4d:a0:08:fb:
51:9f:76:f5:ab:19:fa:cf:30:84:4a:72:c1:a8:7b:8d:52:2d:
82:eb:98:d1:23:91:f8:bc:e1:98:5c:2d:b1:ca:e2:e8:82:77:
1a:16:f4:2c:f4:d1:27:c3:e6:ce:87:82:90:ae:06:2d:96:3d:
e1:53:f8:f7:cf:7d:6e:4e:2f:88:17:73:6e:7f:08:94:95:36:
54:a1:66:16:03:94:83:38:a0:84:c6:c8:56:0c:b6:93:56:ca:
d2:db:2e:da:18:4b:37:9a:f9:bd:62:fb:78:b3:38:b7:dc:4b:
db:81:cc:74:2a:63:c9:b0:ec:c2:5e:9f:16:1f:97:a2:86:fa:
25:c0:89:62:ad:4b:59:55:cb:5b:57:a8:8d:c5:b1:c0:95:92:
42:aa:37:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:43:41 2025 by rpki-client