Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
File: yRggtQAH5BxT3WAps3lU01cvTCk.mft (raw, json)
Hash identifier: lU8+nVM8yFb2kfFVtFficWiLQrM9JR6YUDtr6J/Ad6M=
Subject key identifier: B7:81:84:3C:F0:52:17:6C:72:FA:94:08:4B:B0:A7:E9:C2:4F:AF:51
Authority key identifier: C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29
Certificate issuer: /CN=c91820b50007e41c53dd6029b37954d3572f4c29
Certificate serial: 0199FC8F36D985AF511C678512BA15D18D69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
Manifest number: 1226
Signing time: Sun 19 Oct 2025 13:01:08 +0000
Manifest this update: Sun 19 Oct 2025 13:01:08 +0000
Manifest next update: Mon 20 Oct 2025 13:01:08 +0000
Files and hashes: 1: juTNVsKtR118cxI6QcWd767caRM.roa (hash: MCsaWupCkvlIsE0i3wi2ave3G1GEJt2KTaWMIAFFXxI=)
2: yRggtQAH5BxT3WAps3lU01cvTCk.crl (hash: u5kPh9IRfnxYT2Yf0WstioO69aLRk5MdpxM+ddXjFN8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:36:d9:85:af:51:1c:67:85:12:ba:15:d1:8d:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c91820b50007e41c53dd6029b37954d3572f4c29
Validity
Not Before: Oct 19 13:01:08 2025 GMT
Not After : Oct 20 13:01:08 2025 GMT
Subject: CN=b781843cf052176c72fa94084bb0a7e9c24faf51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:62:7b:6a:0b:fa:f6:cf:eb:c4:dc:2d:18:93:
2b:5f:13:21:f9:63:b8:33:3c:77:35:55:86:90:47:
85:71:d2:48:3f:34:4a:72:73:66:87:93:58:ba:37:
4a:00:71:e9:d5:05:1d:fa:f5:65:ea:42:81:3e:4c:
c2:a8:0c:9d:30:06:75:76:2d:aa:53:81:b2:73:8f:
4d:ea:ca:c2:4a:25:07:a9:58:16:93:ef:cd:99:30:
a8:87:f9:69:91:1d:0e:15:7c:49:8b:b6:b1:c5:68:
66:24:59:4a:80:f5:ac:ae:b1:2a:58:95:4a:9d:f8:
2a:de:f3:de:59:0a:24:84:9f:a7:10:03:dd:07:a5:
9b:96:98:82:f7:6a:4c:0c:78:ce:e5:eb:91:7f:99:
64:e4:a5:0a:d9:b9:6d:2f:ab:ff:cc:27:73:51:d9:
d8:3c:2b:57:18:8e:a0:34:4b:ec:f1:2b:74:89:ed:
61:3d:15:3e:fe:c6:c6:98:ed:9c:c8:ec:0b:f3:22:
8f:90:ab:ec:71:31:c2:28:b3:e1:dc:af:0a:0d:70:
28:c5:3c:36:45:07:ff:f8:1f:79:57:f7:9a:c3:34:
44:b0:7f:3b:00:0a:e9:6e:04:2b:07:1a:c2:3d:f5:
30:3f:19:ca:8a:c2:35:85:fe:94:f6:b6:69:b0:56:
bb:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:81:84:3C:F0:52:17:6C:72:FA:94:08:4B:B0:A7:E9:C2:4F:AF:51
X509v3 Authority Key Identifier:
keyid:C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:b7:a9:db:d3:88:0f:76:52:be:ed:1e:7b:05:fd:f9:f8:09:
db:32:8b:7a:f1:a8:50:75:c1:b5:88:85:03:1a:47:b0:71:35:
98:15:ef:d9:d2:1c:22:80:48:1e:47:2a:94:31:c3:fe:db:93:
5d:d3:27:7c:98:6b:27:34:b6:53:f0:3f:2f:0c:f2:26:50:fd:
45:a2:9a:2a:e8:5e:7b:5b:68:76:8b:39:f4:02:21:45:29:b7:
fa:96:71:c8:69:c6:ca:1a:f2:66:a4:3a:75:44:f1:9d:d4:06:
29:8d:38:57:1d:35:73:a0:d6:3c:eb:62:d7:3f:07:a7:c8:f6:
18:29:0c:86:a1:b1:c8:4d:a5:4e:1a:49:bc:71:c1:44:6a:42:
d3:f7:d1:10:4b:57:10:e5:b7:3f:de:7b:ad:8f:2d:d8:b0:56:
30:1f:aa:08:d4:62:14:dd:2b:eb:94:0d:84:13:e0:b5:8c:5f:
e4:d4:db:58:fe:8b:d1:76:87:4a:82:52:dd:00:44:05:f2:01:
22:32:1d:92:29:33:d6:c8:2f:51:4e:64:9d:f7:be:02:58:c8:
52:55:b3:f0:d9:66:66:ca:28:eb:9f:b2:d7:b9:4b:3d:1e:66:
63:eb:b8:0a:82:c7:23:ba:96:09:54:6b:4e:7e:c5:80:e2:16:
09:0d:36:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:02:57 2025 by rpki-client