Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft
File: YgTQ-JHcR16nA-be89bq0ej3wtY.mft (raw, json)
Hash identifier: qHIvJQsjCURodk0wp7zGVb6s9hqdmmFuccIBTOs6X34=
Subject key identifier: 0D:FA:44:CD:C8:36:B2:BB:C1:06:2B:67:46:25:FC:DC:21:1A:A1:32
Authority key identifier: 62:04:D0:F8:91:DC:47:5E:A7:03:E6:DE:F3:D6:EA:D1:E8:F7:C2:D6
Certificate issuer: /CN=6204d0f891dc475ea703e6def3d6ead1e8f7c2d6
Certificate serial: 0199FB45D2EBBD49DF308D9C706495E51EB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YgTQ-JHcR16nA-be89bq0ej3wtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 07:01:21 +0000
Manifest this update: Sun 19 Oct 2025 07:01:21 +0000
Manifest next update: Mon 20 Oct 2025 07:01:21 +0000
Files and hashes: 1: 0BbFW_BAMtuxhOMr7yakRiiM3nk.roa (hash: cNxaXLNhQqWeIbn1R3i1vPo3toGI8Ah5QnfkdRtrGsY=)
2: YgTQ-JHcR16nA-be89bq0ej3wtY.crl (hash: 2kHBTym22CcwffZPXUrWz12SbRFbUsLZ49twwWli7AY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YgTQ-JHcR16nA-be89bq0ej3wtY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:d2:eb:bd:49:df:30:8d:9c:70:64:95:e5:1e:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6204d0f891dc475ea703e6def3d6ead1e8f7c2d6
Validity
Not Before: Oct 19 07:01:21 2025 GMT
Not After : Oct 20 07:01:21 2025 GMT
Subject: CN=0dfa44cdc836b2bbc1062b674625fcdc211aa132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:3c:cd:54:13:20:1c:11:07:9c:db:42:2f:a9:
88:73:ab:c2:04:b0:e6:75:00:0c:eb:ce:aa:90:c8:
38:76:99:af:01:1d:a2:53:09:41:5b:48:b8:7c:7e:
7f:6e:e3:60:b9:78:a1:70:4b:5d:34:cb:de:7c:81:
bb:69:aa:50:3a:33:ff:77:57:d4:60:4d:6a:3b:27:
a9:ad:22:08:64:7f:95:54:bc:db:a1:03:e7:17:f9:
1e:66:0b:e2:2e:14:ee:6c:2e:6a:c4:29:dc:ab:97:
05:83:01:bc:44:14:af:21:72:2a:90:6b:7c:41:11:
13:6b:21:c9:ee:53:78:9b:58:7b:18:dd:e9:8a:24:
62:74:0b:13:cf:64:26:7f:61:fe:c6:5a:ec:60:89:
51:a3:32:46:49:f2:be:95:81:9c:84:10:f8:a4:b5:
dc:7c:b9:82:30:dc:48:93:1d:ce:c2:59:37:45:1d:
a2:7c:63:4a:15:1f:c2:ec:d2:43:97:6c:6e:24:7a:
f6:ae:d8:a9:ec:ba:b6:85:e7:33:8a:cc:3f:93:7f:
9a:9d:11:ed:2a:4f:79:bf:bc:5c:4d:d7:5e:7e:d7:
f4:a9:93:e6:33:40:c5:a8:04:b8:6f:38:15:9d:21:
7c:27:2b:29:e3:2f:7e:a2:29:6d:3e:5c:fa:5a:67:
3b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:FA:44:CD:C8:36:B2:BB:C1:06:2B:67:46:25:FC:DC:21:1A:A1:32
X509v3 Authority Key Identifier:
keyid:62:04:D0:F8:91:DC:47:5E:A7:03:E6:DE:F3:D6:EA:D1:E8:F7:C2:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YgTQ-JHcR16nA-be89bq0ej3wtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:f9:11:90:04:5c:9f:90:62:a6:9a:c8:90:9b:96:3c:1e:a8:
c7:6e:77:94:9a:18:25:8e:42:f2:85:2b:ec:43:9e:63:c0:25:
72:4d:07:ff:26:9c:81:81:26:ba:b8:64:f5:12:56:d5:3e:cf:
21:e8:a0:2a:cf:79:cf:93:bb:1d:26:67:cf:75:e5:bd:ef:ac:
a3:5a:90:97:89:aa:ef:f7:a0:f9:11:a5:7f:38:b8:b5:e8:5f:
84:4a:94:03:d8:d8:77:31:74:07:79:91:d9:1c:d5:7d:30:44:
24:6d:3f:2d:5b:a9:89:7c:c0:0d:fe:4c:b8:34:5f:a5:28:9c:
b3:ea:2b:95:5f:a6:c4:14:7c:96:10:a8:37:e5:86:dc:5b:75:
68:7b:35:3f:5b:e3:9a:6c:e6:43:f4:4b:4c:87:58:1c:9c:30:
e1:e7:e4:25:5b:ad:28:bc:93:18:23:33:a9:b5:90:be:b8:d2:
53:11:34:2b:dd:17:2c:b9:b1:cb:e4:23:9a:20:75:3b:ab:26:
e5:5d:21:7e:8a:84:49:41:08:c6:0c:33:6f:ef:8c:24:f3:56:
18:8e:79:2b:91:46:79:b1:37:16:20:94:dd:c5:60:7c:ec:2e:
32:1a:3d:50:d3:d7:b1:18:2b:bc:33:65:d2:05:db:ba:5e:7c:
f7:4c:d2:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:40:22 2025 by rpki-client