Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
File: ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft (raw, json)
Hash identifier: GOpmcemHprIZM1al5jMHFSZUA+UlZClc6N5kwnzrgSg=
Subject key identifier: F3:37:40:6F:CD:6C:8A:54:3C:2F:72:E0:CC:ED:B2:09:C1:2F:56:71
Authority key identifier: CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
Certificate issuer: /CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Certificate serial: 0199FC584BE7B4C2D16FB213CC327B11D289
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
Manifest number: 029A
Signing time: Sun 19 Oct 2025 12:01:08 +0000
Manifest this update: Sun 19 Oct 2025 12:01:08 +0000
Manifest next update: Mon 20 Oct 2025 12:01:08 +0000
Files and hashes: 1: knggMszGXslbbJ2_Oh2Jaifz1gc.roa (hash: 1NY+pqUYlKwDvhTu3JTqY8SDs7jlakZ17fJjnTdwI9Y=)
2: ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl (hash: 3xIAb+ZvdPCu0flX8Y4bIuRV/oTEUfWt1y+uuNZ6dWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:4b:e7:b4:c2:d1:6f:b2:13:cc:32:7b:11:d2:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Validity
Not Before: Oct 19 12:01:08 2025 GMT
Not After : Oct 20 12:01:08 2025 GMT
Subject: CN=f337406fcd6c8a543c2f72e0ccedb209c12f5671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:19:7e:29:6f:c4:3e:db:6e:3e:b9:c1:22:f0:
ad:05:0f:d7:d1:63:6b:46:9f:06:68:b9:e4:c1:d0:
45:db:e3:af:18:61:64:08:ab:88:15:bd:c7:35:41:
a6:16:94:8e:da:17:d3:42:c9:47:c3:cc:7d:7b:7b:
c9:6f:e6:71:e0:bb:f9:df:8d:90:89:8f:07:69:10:
a2:d5:6f:5b:b1:0c:c9:75:38:54:a3:38:14:f2:e4:
b7:64:f3:b0:69:39:e5:dc:2a:94:7a:e4:a0:e4:b8:
ec:ba:a3:fe:c5:5d:ea:84:26:23:ed:01:1f:98:4f:
f9:0b:a9:0a:8f:70:73:f4:54:f8:35:27:04:b6:4b:
d3:28:54:56:a1:84:e6:23:f1:cf:14:cf:19:c7:dd:
06:cc:d7:93:c0:71:d6:39:34:06:88:d1:b2:07:a0:
62:aa:8f:ed:11:5b:f1:c0:6c:a5:94:22:60:b1:c8:
a2:49:ce:18:fb:a9:e6:e3:33:de:c5:b8:31:54:58:
ae:c4:f5:d9:15:f9:91:15:ea:9e:da:66:6b:e3:44:
8b:86:06:41:d6:3b:7a:74:59:4b:c6:9e:3b:ad:ae:
ce:86:66:32:78:74:3e:30:f8:1d:2a:82:ec:5f:e5:
f6:46:27:f7:0b:9c:82:c0:3f:ee:e8:f8:61:2a:b7:
05:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:37:40:6F:CD:6C:8A:54:3C:2F:72:E0:CC:ED:B2:09:C1:2F:56:71
X509v3 Authority Key Identifier:
keyid:CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:1f:a9:75:b1:4c:f0:81:d3:63:9b:3c:23:67:88:e2:6a:05:
a1:e2:0a:0e:51:e3:5b:fe:13:dd:a4:67:5f:bd:5f:da:b5:c3:
c1:f0:8e:eb:c7:5c:42:82:bf:03:2b:7a:0e:16:58:85:2e:cd:
09:85:a3:da:ca:9d:e1:4a:16:60:3d:29:08:b0:a0:e8:24:02:
a9:b6:49:39:9f:a8:c1:5f:ad:23:c5:93:5e:72:03:dc:09:73:
42:5e:38:7f:ba:b3:78:e8:6e:14:e0:d1:5c:af:b7:da:53:04:
1c:d5:ec:c2:4e:66:78:39:49:6a:a1:7d:a9:b0:47:1d:20:54:
d0:58:1b:82:93:2f:3c:a8:fb:5b:0c:97:01:9b:76:c1:9a:cc:
d7:f8:ee:83:27:78:fb:5d:95:a3:db:bc:e2:34:e2:32:5c:91:
0b:d8:8a:ef:96:bf:78:e5:ff:aa:ca:3e:a5:90:99:51:53:4b:
c9:4b:4e:ee:d3:5a:77:a5:57:dd:f1:3c:cf:49:6d:73:47:08:
48:45:50:df:32:fa:45:87:ed:29:a5:8f:50:5c:35:d0:3f:37:
5b:98:ee:80:ce:c8:bd:dd:86:76:fe:fd:b0:f5:17:68:fc:6c:
a2:64:3e:3c:23:ef:6d:78:07:d6:bf:85:82:b2:dc:02:01:f3:
2d:eb:0e:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:28:31 2025 by rpki-client