Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
File: yBi-GcEJgPFbze4HZpAHhJGoqiE.mft (raw, json)
Hash identifier: F5RwieuvCXa7wXh8oU+AMzo1tIkehCIc/dndvijeUQU=
Subject key identifier: F1:51:9A:A4:9B:A6:C8:E6:A3:99:DB:A2:CB:D9:4D:8B:B1:37:C2:CE
Authority key identifier: C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
Certificate issuer: /CN=c818be19c10980f15bcdee076690078491a8aa21
Certificate serial: 0199FAA0DDAD57CBA2B2DEF38781FCC37F17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
Manifest number: 0D0F
Signing time: Sun 19 Oct 2025 04:01:10 +0000
Manifest this update: Sun 19 Oct 2025 04:01:10 +0000
Manifest next update: Mon 20 Oct 2025 04:01:10 +0000
Files and hashes: 1: gZMQxr61w0P4Si-B6lBsVj_b8vM.roa (hash: 3Vc/pW8ygtdQIimX5iqQ/MSW6PLhJ2nbGCIzRJsZshI=)
2: yBi-GcEJgPFbze4HZpAHhJGoqiE.crl (hash: LQvwKeutSnv12rlVYsRCuScvlpebKl2ACWIh/ujUvCA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a0:dd:ad:57:cb:a2:b2:de:f3:87:81:fc:c3:7f:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c818be19c10980f15bcdee076690078491a8aa21
Validity
Not Before: Oct 19 04:01:10 2025 GMT
Not After : Oct 20 04:01:10 2025 GMT
Subject: CN=f1519aa49ba6c8e6a399dba2cbd94d8bb137c2ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f1:e0:93:3a:5e:f8:6d:22:94:86:c7:3d:db:
ef:fc:91:c6:a1:e5:d9:3a:8d:0e:2c:c2:2e:bd:9a:
f7:bd:e5:0d:66:42:a7:68:e2:1a:78:69:74:81:3c:
c8:76:dc:41:91:f7:4f:e4:da:6e:13:c0:8e:e6:f6:
79:ca:7f:c0:79:2c:d7:8e:bc:e1:05:8b:d0:1b:bc:
e2:8f:62:72:d9:4a:10:0f:46:85:d0:b1:78:aa:30:
1d:71:d8:d9:7b:8f:31:b2:e0:26:23:fc:a6:9a:3f:
a1:38:1b:85:66:fd:10:81:b7:3d:90:1b:2b:6b:13:
c5:dc:34:cc:87:3c:34:8b:df:a2:5c:83:c8:38:cb:
7a:d7:34:03:34:e2:12:d1:2c:1d:14:6e:51:fb:97:
e6:5b:9f:f0:a1:f7:71:9d:2b:50:8a:7a:50:5d:4d:
64:7d:79:01:57:6a:e1:03:40:71:e8:6a:b2:90:1b:
86:fc:f9:85:f3:26:e9:74:f9:e7:47:b9:d1:1a:bf:
14:84:b7:84:cf:4a:ee:66:a8:15:08:59:6b:bd:d1:
c2:02:8f:ad:4b:2f:65:4b:92:4c:8d:ca:15:50:77:
34:30:9d:a5:1e:69:e9:6d:12:cb:38:39:34:06:0e:
1e:06:ba:87:53:c8:14:87:a5:d9:ca:39:5b:f6:9c:
11:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:51:9A:A4:9B:A6:C8:E6:A3:99:DB:A2:CB:D9:4D:8B:B1:37:C2:CE
X509v3 Authority Key Identifier:
keyid:C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:28:d7:ed:4b:8b:8a:d6:a1:e5:05:83:e8:87:05:fa:04:82:
64:07:ff:c8:4f:d8:d8:a9:fa:de:79:3d:9a:b6:6e:f3:68:6b:
b0:08:88:09:96:32:c0:7f:72:e8:bf:5a:e4:98:b3:81:8b:90:
00:18:fd:32:a8:48:2f:84:0b:43:bb:b8:c1:f8:ce:f3:9b:7f:
44:58:41:dc:25:e8:4e:2e:57:f6:bb:0e:2e:f0:56:fd:72:af:
ae:5e:46:d8:5e:c3:90:bd:09:75:68:a3:b3:e6:e2:25:72:4c:
20:c3:d7:6c:da:9b:bb:bb:8c:10:fb:dc:51:d3:cb:dc:08:0b:
3b:03:71:7a:c5:13:4f:18:bb:c6:91:2b:d6:12:73:c3:00:f1:
1e:8d:75:89:d6:e1:c3:c1:4a:ff:93:c3:7e:94:79:33:9e:54:
5d:09:88:f4:16:b2:72:da:00:aa:10:a6:7f:41:9c:24:43:68:
0f:31:08:04:cc:82:a4:98:4b:c6:53:e6:cd:9d:c8:f3:fc:5f:
f9:de:b6:47:90:91:46:f7:58:98:3b:17:05:60:86:d9:a8:d9:
69:14:51:31:92:a1:4e:77:26:86:8f:71:6f:96:a1:27:e1:9b:
6a:3e:aa:78:18:65:82:59:6d:4c:1a:ad:bc:56:c8:96:79:15:
71:64:1a:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:14:25 2025 by rpki-client