Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
File: yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft (raw, json)
Hash identifier: T37cciHhdnJk0GfQaRU161/zT7aE3Xabd/ZVhv87j3A=
Subject key identifier: 65:8D:ED:2A:3D:47:16:26:BE:1E:B1:0B:A8:9B:D1:CA:80:75:EE:B2
Authority key identifier: C8:15:D5:C0:CD:21:46:BA:AF:E8:AA:6B:8B:9A:A7:CE:B6:E4:17:5A
Certificate issuer: /CN=c815d5c0cd2146baafe8aa6b8b9aa7ceb6e4175a
Certificate serial: 0199FC58993B99D117CE46BD01B3DCC89C07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yBXVwM0hRrqv6Kpri5qnzrbkF1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
Manifest number: 0E8F
Signing time: Sun 19 Oct 2025 12:01:28 +0000
Manifest this update: Sun 19 Oct 2025 12:01:28 +0000
Manifest next update: Mon 20 Oct 2025 12:01:28 +0000
Files and hashes: 1: n0pJCaUiRCl5Ps5_Vu5R9Y3I9qU.roa (hash: yrWbMC7j+dM+coJf76N3ZfAw2TV7juT6B31o0/J59Ds=)
2: yBXVwM0hRrqv6Kpri5qnzrbkF1o.crl (hash: Olh/J/sI13aswywcrpaHvcSqdtI0Cxm9XAWexDACMa0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/yBXVwM0hRrqv6Kpri5qnzrbkF1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:99:3b:99:d1:17:ce:46:bd:01:b3:dc:c8:9c:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c815d5c0cd2146baafe8aa6b8b9aa7ceb6e4175a
Validity
Not Before: Oct 19 12:01:28 2025 GMT
Not After : Oct 20 12:01:28 2025 GMT
Subject: CN=658ded2a3d471626be1eb10ba89bd1ca8075eeb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c4:c8:c5:4f:13:6a:ab:03:d0:81:48:25:03:
1d:9a:f7:64:9b:ff:11:2e:c3:ff:86:dd:13:7f:45:
68:06:c0:4c:47:57:3c:18:72:6a:23:ea:07:2b:a1:
20:52:e5:d6:a9:d8:f3:3b:68:05:07:a4:8d:8b:42:
50:bc:73:eb:02:12:92:44:7f:74:43:e0:89:ea:87:
20:9e:2d:5a:cd:ff:fc:34:f4:96:f1:24:82:f0:63:
1d:ce:0b:73:bb:ab:10:ec:e8:b6:35:94:9f:1e:0b:
bf:4d:21:ab:bb:5a:a4:78:fb:44:52:e7:a7:27:46:
b4:35:f8:d4:fa:66:75:98:b7:04:fe:4d:55:68:6d:
56:a3:0f:62:17:1f:e7:25:b6:b7:36:d1:88:d3:aa:
b1:8a:2f:98:ef:e7:03:07:cd:c0:35:0b:76:20:5f:
5e:08:f1:d4:38:e5:9e:b3:1e:35:06:80:df:b5:16:
98:bb:ad:b2:78:70:3c:c6:66:6e:d8:a4:ad:2b:6c:
29:0a:b2:27:9c:43:c1:53:cc:4c:6d:d1:a2:08:11:
37:a4:9a:d1:2c:96:fa:2c:df:37:57:0e:01:b5:56:
4a:cb:45:24:24:c0:e8:0c:07:f7:38:86:b0:0c:ef:
f0:83:a3:13:48:88:e7:77:ee:42:9d:c9:0f:78:1b:
cf:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:8D:ED:2A:3D:47:16:26:BE:1E:B1:0B:A8:9B:D1:CA:80:75:EE:B2
X509v3 Authority Key Identifier:
keyid:C8:15:D5:C0:CD:21:46:BA:AF:E8:AA:6B:8B:9A:A7:CE:B6:E4:17:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yBXVwM0hRrqv6Kpri5qnzrbkF1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:77:8d:33:bb:3a:35:32:83:96:62:0b:6b:b7:21:3c:ff:e5:
2e:5c:4d:be:2f:ed:58:e0:3d:93:56:25:1f:fe:08:d8:f6:ce:
7f:d0:2d:01:30:d0:a3:3a:44:bf:1d:e9:21:be:45:52:6b:62:
44:27:0c:4c:e4:fe:3f:4c:2d:96:09:bd:99:f2:98:3b:9f:1d:
dc:54:47:09:bc:ea:f2:a7:c9:9a:51:90:7a:b2:af:1f:42:6e:
83:cb:46:f3:57:71:42:dd:b8:d0:d4:af:29:21:65:85:39:dc:
b8:4b:bc:63:f2:ba:d2:19:37:26:b0:3d:c9:13:5e:3c:fd:22:
97:6a:89:6e:36:50:0b:e2:a6:34:5f:a7:77:5f:52:00:62:61:
50:8f:ac:88:b3:c4:c9:8a:c9:d6:99:5a:ea:52:4e:a9:25:c7:
b9:33:1e:e3:58:d9:ef:06:e7:34:99:e1:34:bc:3e:3d:c3:d8:
01:23:a8:15:1c:82:e1:e5:88:1b:8f:bc:c3:79:80:c8:da:b1:
42:70:91:ee:0f:a0:dd:f3:1e:48:53:33:74:f4:aa:e7:7a:66:
3d:ea:3a:8d:d4:ff:ec:ed:09:ea:57:32:15:9c:39:09:f8:b6:
f9:13:43:72:30:aa:3f:77:6a:f0:d9:f1:59:0e:b1:aa:0c:35:
bc:0b:70:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:02:54 2025 by rpki-client