Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
File: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft (raw, json)
Hash identifier: kJzFqyJv349ZUaGKsqV9z4c6+yUoZXeGbX/HSsMgkq4=
Subject key identifier: AD:68:F7:0C:06:A0:A9:99:38:D1:98:77:20:08:B1:6B:8A:51:2A:F4
Authority key identifier: CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
Certificate issuer: /CN=ca434d399d93a19d8a8108456c5575096c2ae588
Certificate serial: 0199FE7D96B8C98FACE364C5C364E918C0AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
Manifest number: 0704
Signing time: Sun 19 Oct 2025 22:01:07 +0000
Manifest this update: Sun 19 Oct 2025 22:01:07 +0000
Manifest next update: Mon 20 Oct 2025 22:01:07 +0000
Files and hashes: 1: 6KeHOxxWviP0lluNL5sOXVdQY7c.roa (hash: kUeVBsIsjzs7OuA1c4/VFEC1ddAvMO/ONIYaR+/BuFA=)
2: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl (hash: xflvNv+Dc7Uv9DKRwF/zNiD9E1uRt5G2QvcKwqr5L6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7d:96:b8:c9:8f:ac:e3:64:c5:c3:64:e9:18:c0:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca434d399d93a19d8a8108456c5575096c2ae588
Validity
Not Before: Oct 19 22:01:07 2025 GMT
Not After : Oct 20 22:01:07 2025 GMT
Subject: CN=ad68f70c06a0a99938d198772008b16b8a512af4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b0:45:5c:07:57:6e:cf:96:cc:a8:c8:7a:aa:
7e:0f:52:b2:a3:36:a8:42:c5:a0:19:25:78:cb:9b:
78:37:35:5a:e0:77:2b:5c:b7:9f:fd:6c:78:63:85:
55:a7:b1:a4:c9:fa:cd:dc:b4:a9:59:93:75:ba:05:
ff:99:ce:91:ce:53:36:79:0c:4e:d9:a9:ca:9e:7b:
c9:51:5e:62:b0:89:0c:e7:e6:8f:b7:54:4c:2c:ef:
69:7b:d3:25:72:46:da:e6:6f:ab:53:1f:32:eb:9a:
21:70:92:2d:6f:5f:f2:8e:cb:01:11:c8:62:12:c5:
6f:25:47:e4:2d:57:09:18:ff:72:70:32:41:4d:10:
ee:09:8f:4d:cd:d5:9c:45:b0:a3:e0:02:e6:e6:9e:
55:ab:23:02:bd:92:aa:0e:d7:13:ee:a0:08:2a:69:
c4:8d:09:3f:fc:f4:95:93:bf:3f:ba:15:b0:c8:b5:
35:08:5e:78:05:91:29:ad:25:1f:7b:05:b0:27:ca:
ab:7e:67:df:a1:c4:1a:be:02:c9:db:f4:a8:83:a3:
10:dc:18:fb:25:10:0a:e0:dc:6c:ed:0e:c9:e2:54:
c4:76:5a:a1:b2:e7:f9:da:d1:d4:b5:07:c2:89:05:
b7:18:d4:60:2b:24:88:ca:a3:79:68:e9:f2:0f:31:
a7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:68:F7:0C:06:A0:A9:99:38:D1:98:77:20:08:B1:6B:8A:51:2A:F4
X509v3 Authority Key Identifier:
keyid:CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:57:4d:ac:d0:2d:ce:b0:c0:a6:f1:f9:2e:1b:cd:d2:2d:81:
0e:67:2d:03:39:cb:15:0a:d8:87:a6:b2:ba:66:23:ee:c5:50:
f6:c3:84:bc:97:a4:af:c1:3c:a2:91:8f:fe:f8:b2:6c:69:bb:
8b:a1:3e:ae:9a:48:e9:2b:be:87:53:42:3c:59:08:ee:9e:7b:
26:1d:eb:94:2a:ba:df:35:ff:dc:7f:f9:9d:15:fc:00:15:69:
9c:bc:d4:33:22:2b:67:ba:52:63:1e:ce:59:b5:09:70:7f:23:
08:ff:f0:29:6e:f0:86:9a:a0:72:16:e8:2c:ed:b2:0d:63:90:
0f:f2:62:29:be:d2:f7:79:61:fe:21:81:6a:f3:b1:e9:ac:60:
1f:a6:4b:20:35:04:2d:80:19:17:4e:94:be:d1:d5:dd:ac:d5:
7d:4f:f3:04:8a:bc:9e:6c:ca:ea:b6:52:10:62:a9:46:73:5d:
66:f1:36:56:63:98:3b:fb:71:ba:0b:a5:5a:a0:0e:34:f1:2c:
d1:62:a9:63:cc:c3:09:06:e9:bf:ce:81:51:a5:fa:a6:ee:50:
84:06:39:80:ff:b0:e2:58:f7:1e:34:62:cb:98:c9:54:66:d8:
07:9d:d6:fe:d6:9d:c8:be:f1:9a:58:ba:a1:4a:c8:c9:bf:b5:
86:dc:6a:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:55:57 2025 by rpki-client