Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.mft
File: YZp5QeDCyGEyL4Me0G8H-3CFo7s.mft (raw, json)
Hash identifier: +P6RaToOz7NejVb9LGkD4+f3ujZXGAo4R7dRkA9zxXE=
Subject key identifier: 05:A2:B0:54:02:61:1A:5D:28:B4:02:5B:37:8E:CE:01:C9:F8:03:2D
Authority key identifier: 61:9A:79:41:E0:C2:C8:61:32:2F:83:1E:D0:6F:07:FB:70:85:A3:BB
Certificate issuer: /CN=619a7941e0c2c861322f831ed06f07fb7085a3bb
Certificate serial: 0199FF2286333B038E7946B5B54D67782691
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YZp5QeDCyGEyL4Me0G8H-3CFo7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.mft
Manifest number: 12FE
Signing time: Mon 20 Oct 2025 01:01:16 +0000
Manifest this update: Mon 20 Oct 2025 01:01:16 +0000
Manifest next update: Tue 21 Oct 2025 01:01:16 +0000
Files and hashes: 1: YZp5QeDCyGEyL4Me0G8H-3CFo7s.crl (hash: b2Outwm13bUMay9Ap9mROe/dpsq0zVTDIbhpTUBFb+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/YZp5QeDCyGEyL4Me0G8H-3CFo7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:22:86:33:3b:03:8e:79:46:b5:b5:4d:67:78:26:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=619a7941e0c2c861322f831ed06f07fb7085a3bb
Validity
Not Before: Oct 20 01:01:16 2025 GMT
Not After : Oct 21 01:01:16 2025 GMT
Subject: CN=05a2b05402611a5d28b4025b378ece01c9f8032d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0b:22:2f:42:94:8f:d6:5b:19:80:28:de:ce:
43:a1:02:bf:ff:db:76:6a:f8:4a:24:b0:dd:c3:51:
85:b0:e1:ab:1d:b8:63:9e:1d:98:c0:2b:18:e1:92:
06:80:4d:a3:b5:f0:13:76:94:52:fc:6d:dd:0e:00:
97:5b:80:8c:df:f0:98:04:dc:26:65:44:f0:3a:03:
62:5c:6c:3c:3d:12:37:c8:16:35:3b:1e:54:a7:64:
8d:58:e2:7a:43:8e:b7:24:70:0a:57:1c:9d:9e:53:
ee:19:d1:7b:7e:f1:46:10:b8:1f:4f:43:fd:dc:81:
56:97:44:c2:6e:7a:23:00:78:c7:77:3e:61:dd:d9:
3e:5c:8b:4c:9b:56:06:65:96:7a:f8:be:82:30:e9:
23:0c:21:8a:a3:d2:e4:a9:a7:46:4c:3d:b7:18:65:
6f:dd:e1:6d:09:fb:ff:ea:cd:eb:4f:04:03:eb:b1:
6e:f8:a7:b9:61:70:3a:d4:a8:59:5e:43:39:82:f6:
90:1a:f4:7e:c4:cd:60:e7:3e:b3:29:46:9c:ba:79:
a2:f8:ff:75:7c:5a:68:6a:27:24:c7:f2:db:f1:3c:
a2:fc:76:f2:b4:be:c7:70:80:a3:94:39:99:e4:76:
83:f6:ba:47:12:1d:64:3f:5a:86:23:b5:cf:51:52:
71:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:A2:B0:54:02:61:1A:5D:28:B4:02:5B:37:8E:CE:01:C9:F8:03:2D
X509v3 Authority Key Identifier:
keyid:61:9A:79:41:E0:C2:C8:61:32:2F:83:1E:D0:6F:07:FB:70:85:A3:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YZp5QeDCyGEyL4Me0G8H-3CFo7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:cd:56:41:bf:c2:09:6c:e2:a8:63:0b:88:29:a3:6d:b8:1c:
39:83:52:6d:df:1c:ce:43:72:7f:54:12:10:0e:52:5e:30:58:
94:39:66:b6:e3:16:79:b4:b0:52:9b:b1:77:43:56:c1:9b:f8:
b6:99:0f:a1:98:a1:e5:9c:5c:8a:b7:f5:55:f4:b8:8c:fb:74:
f1:81:4c:e6:0c:8f:69:08:8c:66:c3:41:f3:07:c0:72:c1:cb:
9d:76:0a:d1:56:88:e1:b9:16:53:2d:b3:17:07:50:7c:80:8b:
fc:f6:50:b9:61:ba:18:22:b8:58:07:6a:d4:9c:c4:bc:08:96:
33:d1:f5:a0:9d:dc:08:90:e3:0a:37:65:f3:bc:22:86:c9:cd:
a5:04:95:76:0c:d0:76:28:b6:b0:f4:00:69:1c:c5:e0:26:0c:
3c:59:22:61:92:63:bf:ee:18:0b:15:32:6e:d9:10:6c:4e:31:
04:b9:82:51:51:38:40:ec:af:59:ee:bd:38:25:53:c2:bb:e6:
f0:cd:f7:ee:84:ef:e1:bb:2a:5f:31:25:08:cd:12:c6:f5:d2:
a0:f7:d4:bb:0c:90:f9:3d:68:8e:47:a6:d9:21:e3:f0:c8:ae:
c8:37:9c:0c:f9:c9:e7:36:76:46:b4:ab:5e:73:7f:32:28:e9:
fc:e3:fb:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:59:04 2025 by rpki-client