Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
File: YHZWuPfoG1FJtIYPgSex1OO0h9w.mft (raw, json)
Hash identifier: R2nnr7rCxUtJ5g1MzpGbp5cq0yR9GPVMMaF0Dx8+z4o=
Subject key identifier: 8A:89:4D:49:49:B1:28:E4:27:5C:72:E5:FF:2A:32:3C:3F:68:79:80
Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Certificate serial: 0199FC58415ECB6E4110F4B0C1AD525B7604
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
Manifest number: 0CF3
Signing time: Sun 19 Oct 2025 12:01:06 +0000
Manifest this update: Sun 19 Oct 2025 12:01:06 +0000
Manifest next update: Mon 20 Oct 2025 12:01:06 +0000
Files and hashes: 1: 7-uxb2sVoc0kcAT2m9SP5qVnZ8E.roa (hash: acdZUKxa+ye22RHZ+hlpmz4eeOUGVIjJiD1cAB8HEbo=)
2: YHZWuPfoG1FJtIYPgSex1OO0h9w.crl (hash: STO19BjTfU1cW7yPBvhPvbNFV6yTfLLUEat5dFG+AYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:41:5e:cb:6e:41:10:f4:b0:c1:ad:52:5b:76:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Validity
Not Before: Oct 19 12:01:06 2025 GMT
Not After : Oct 20 12:01:06 2025 GMT
Subject: CN=8a894d4949b128e4275c72e5ff2a323c3f687980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b8:84:90:2c:37:ac:22:ec:d8:5b:1a:b3:20:
15:5b:bc:9c:d1:04:c8:f9:24:ad:14:55:20:36:91:
75:5b:8f:d0:52:9e:45:2c:8a:16:ec:5c:fa:38:c4:
6a:42:b2:56:66:c5:16:ef:11:9b:e2:2c:52:89:3a:
19:1c:f1:93:f2:a5:54:4f:ca:14:b9:56:da:dc:cd:
b6:51:f1:e5:6c:b7:5e:05:db:de:8d:1e:57:0a:fb:
23:e4:d3:3f:e9:95:9b:85:f7:fd:87:5b:5b:8b:bc:
8a:ab:13:53:c7:9d:e8:dc:f5:56:d1:56:5f:33:eb:
ad:f9:e4:78:a5:92:dd:8a:83:cb:17:e5:4a:83:57:
f9:b1:be:85:d0:aa:89:5b:d9:39:de:6c:0a:cc:27:
ca:55:f3:03:ef:33:fd:99:06:06:88:6a:63:9b:c5:
56:0b:38:16:ae:4f:45:3e:a2:cd:02:ee:9a:b9:62:
13:be:7a:52:5d:94:38:7b:d9:1c:2e:f1:d5:18:4d:
23:be:31:80:82:d2:f6:63:e1:9f:e4:32:a4:e2:3e:
36:c0:4f:0b:47:9c:17:1d:2e:85:6b:15:b4:4f:df:
f8:f4:b8:8c:26:31:37:1c:35:dd:97:48:bd:4a:d2:
10:a8:06:6c:99:c4:71:e8:26:fc:3e:30:e8:71:13:
b9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:89:4D:49:49:B1:28:E4:27:5C:72:E5:FF:2A:32:3C:3F:68:79:80
X509v3 Authority Key Identifier:
keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:47:0e:33:22:2d:b0:3f:d8:b2:0b:70:ca:d7:38:90:da:36:
4a:d9:b6:b9:ff:30:19:d0:a2:05:3f:3f:a0:48:85:c0:b4:25:
3a:b3:e0:b1:09:ad:3e:be:09:c6:1a:4c:95:4a:c1:b6:c5:5e:
1b:df:9b:49:bd:c8:cb:e7:a5:4f:17:66:0b:14:34:ab:e9:35:
a8:42:ac:53:4d:a1:38:81:e9:cc:33:9f:c4:25:52:da:43:ab:
30:cc:14:15:d0:0a:b1:45:b3:e0:84:0e:be:ee:19:9b:11:b4:
33:25:83:e1:d8:3b:c0:12:71:16:db:9b:89:44:ee:14:19:e5:
9e:a4:67:6b:94:9a:4f:61:34:55:f5:7a:1b:ac:a8:8d:58:d7:
8e:c7:11:94:76:86:bd:56:20:ff:26:10:8b:3f:ab:9f:85:70:
a1:c7:de:53:ed:75:49:d6:d3:87:d7:b7:90:98:44:6b:9d:c5:
b7:73:c8:8d:b2:95:f1:a6:c0:f6:20:24:85:0f:0c:e3:1f:9e:
78:aa:8a:e6:2b:9d:c8:cb:4e:16:9c:9c:7e:d8:eb:e6:ee:ab:
38:55:21:e8:ca:36:65:bc:e6:98:d0:7c:62:dc:3d:a9:34:86:
1c:34:d9:86:d3:f0:a2:50:3d:41:fd:b8:e2:3b:0c:15:39:33:
e6:fb:bd:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:34:39 2025 by rpki-client