Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
File: YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft (raw, json)
Hash identifier: AQ5OoQKIgeAoVmw2okKYAyov+Zfqh5bOoJ3IE9+Awto=
Subject key identifier: F0:A6:9E:A5:6C:1C:54:F2:DD:3B:46:1B:2B:5A:C9:91:ED:19:EB:63
Authority key identifier: 61:2A:EF:4C:7B:FE:7E:07:2F:62:D2:DD:50:5A:B5:7E:37:EA:38:5E
Certificate issuer: /CN=612aef4c7bfe7e072f62d2dd505ab57e37ea385e
Certificate serial: 0199FCC68A036AF082567C19A721A3F79910
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 14:01:33 +0000
Manifest this update: Sun 19 Oct 2025 14:01:33 +0000
Manifest next update: Mon 20 Oct 2025 14:01:33 +0000
Files and hashes: 1: YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl (hash: dp1W6CefIFKtGE2r3T3qXQVfd4PhlcI9ffz6yd66NIw=)
2: lpQpCVUUyuieF-my1hQ69F4PEZk.roa (hash: WA4/OyJVwgJx0ERp2sKecmZzmYmPwtki2xCkuF+SczM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:8a:03:6a:f0:82:56:7c:19:a7:21:a3:f7:99:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=612aef4c7bfe7e072f62d2dd505ab57e37ea385e
Validity
Not Before: Oct 19 14:01:33 2025 GMT
Not After : Oct 20 14:01:33 2025 GMT
Subject: CN=f0a69ea56c1c54f2dd3b461b2b5ac991ed19eb63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:05:5e:30:a0:3d:63:9e:4f:07:fc:38:be:c0:
b0:5b:6f:ba:ed:63:07:02:0a:ea:c2:e2:5a:17:be:
0b:52:ae:43:e0:cc:b9:95:d4:58:3f:17:48:2d:bb:
76:f2:59:b5:9c:f9:12:e1:11:6b:85:f8:41:45:8f:
b4:38:74:a5:97:1f:7a:02:3b:2e:d4:d9:3c:b9:d1:
bc:06:bf:bd:34:ec:0c:fa:f8:20:85:ec:2d:d8:fc:
bc:b5:cc:25:0a:81:db:5f:58:59:eb:0a:cb:d1:dc:
29:8e:f9:bd:65:08:66:c4:cc:ad:38:7f:69:bc:cd:
24:a0:9b:de:a4:f8:65:b0:23:35:6f:42:69:cb:b3:
ba:65:aa:e5:5b:72:c2:22:99:ff:f0:33:20:9d:3a:
9a:09:e7:20:a2:dc:03:eb:86:ec:8c:4e:e9:03:60:
24:62:5d:46:f5:17:1e:97:bf:ed:25:c3:f9:ed:78:
7e:f2:a3:2f:be:62:86:80:14:84:e6:2a:1b:c5:ec:
dd:fe:8a:30:6d:93:fb:f0:2b:bf:35:dc:9a:13:c7:
18:95:d9:30:48:4b:fb:12:33:23:a4:f3:7c:c8:86:
6c:aa:cb:41:5e:98:2c:1c:54:a6:f7:89:95:1b:32:
bd:31:d8:49:80:ff:cc:ec:53:97:de:b9:7f:b2:c6:
2e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:A6:9E:A5:6C:1C:54:F2:DD:3B:46:1B:2B:5A:C9:91:ED:19:EB:63
X509v3 Authority Key Identifier:
keyid:61:2A:EF:4C:7B:FE:7E:07:2F:62:D2:DD:50:5A:B5:7E:37:EA:38:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:9f:ea:c6:3f:7e:3b:ca:c3:99:9f:08:87:2e:93:8e:a3:90:
0f:50:3f:b1:fb:87:df:df:fc:9e:f8:ac:fe:07:9c:c6:71:26:
f3:34:9c:44:3b:d6:f6:94:14:ca:86:d0:bb:58:70:39:38:ce:
13:8c:93:34:14:43:83:9a:e5:e7:c7:11:ec:84:6d:31:48:a7:
9f:72:5c:93:6c:7a:13:05:7d:04:b4:47:b9:82:5f:a1:f9:7d:
d4:b8:a7:d1:c0:02:e6:b1:44:a5:c7:9b:70:e9:8a:b3:3b:18:
67:a7:c4:d0:07:f3:de:34:ab:45:0c:5d:94:e5:07:20:1e:c3:
fc:e3:88:da:30:71:29:8d:9d:ef:07:a0:f0:57:26:72:55:f0:
9a:b5:7a:8a:e9:a5:05:69:88:9d:71:79:75:68:9c:b6:3c:d4:
3d:6b:87:ca:29:c8:61:7d:fe:ef:af:02:77:e7:7b:e7:52:67:
63:2b:c1:75:7a:da:3f:f9:a4:60:f5:51:49:e6:2a:02:f9:d0:
f6:c1:89:aa:10:9c:22:96:df:7b:7d:da:f1:77:24:5c:2e:16:
f1:f5:72:32:dc:7f:86:4b:5b:93:f4:c6:00:87:55:4d:07:46:
76:c4:1e:d4:04:1f:c9:9a:6b:a4:9c:20:74:aa:45:8e:ee:81:
cb:52:7b:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:26:59 2025 by rpki-client