Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
File: YhoTCpDLA344A_6gv0ZaoIL-NJg.mft (raw, json)
Hash identifier: KikTH9dYhaI6fiJcqAKqX2eQn/MOh3srcGIi2nFnokM=
Subject key identifier: 99:FA:32:BE:50:71:7A:2F:53:4E:D7:0A:8D:22:AA:38:3C:40:7C:7D
Authority key identifier: 62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
Certificate issuer: /CN=621a130a90cb037e3803fea0bf465aa082fe3498
Certificate serial: 0199FAD7E68D60DA2F9695F127DA1D409D1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
Manifest number: 0509
Signing time: Sun 19 Oct 2025 05:01:17 +0000
Manifest this update: Sun 19 Oct 2025 05:01:17 +0000
Manifest next update: Mon 20 Oct 2025 05:01:17 +0000
Files and hashes: 1: 8tq6vUxikXVafkdQNOumeQjFfpc.roa (hash: UpmsMokgr2OHdk8MVVsUZdaiVZYh5g21JKYfdCc4ZA8=)
2: YhoTCpDLA344A_6gv0ZaoIL-NJg.crl (hash: DqI7Qx/lvIYH1yIRt09noX7DtdkzU/LHZuEmbCJu0fY=)
3: j89ASOslTb0sA8qPaNCnvdarbHI.roa (hash: pTH6+0WVaBMdNBqgh83yrPXmlHTEaPDbAotvSzt0CT4=)
4: vSrVfCiFhwuThaFge_HlQGTrHjk.roa (hash: Bc63krCzWLaf7LOD/k916HgQOiH2H7M6asbeefYBGos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d7:e6:8d:60:da:2f:96:95:f1:27:da:1d:40:9d:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621a130a90cb037e3803fea0bf465aa082fe3498
Validity
Not Before: Oct 19 05:01:17 2025 GMT
Not After : Oct 20 05:01:17 2025 GMT
Subject: CN=99fa32be50717a2f534ed70a8d22aa383c407c7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ba:ab:26:07:23:1a:5b:d3:01:6e:f5:11:62:
b1:d7:7c:c0:84:cd:7b:37:b4:cc:a9:46:d2:59:4e:
44:ca:dd:d0:26:91:86:03:4e:05:d7:a7:31:15:83:
29:45:1e:0a:29:a0:59:80:4e:76:a8:ec:50:b5:7f:
e2:e6:32:14:ce:f4:4d:14:83:8e:cf:e5:9f:ef:b2:
21:19:65:52:a8:17:60:2f:63:f8:56:72:8a:a3:4a:
3b:69:bd:9d:1c:49:02:b2:9a:6f:0a:04:ef:72:1e:
d4:db:0b:d5:01:ef:17:a7:69:46:17:d3:de:5a:60:
21:21:28:37:31:2d:b5:dd:32:1a:55:bd:0b:bb:54:
26:b5:8e:d2:10:39:45:6b:23:9f:b3:c1:3a:51:f4:
64:73:09:02:28:bf:a5:d9:4b:1f:10:b6:b9:a5:45:
73:9e:1f:1c:cb:2a:00:bc:05:af:c3:b5:b9:4e:7d:
dd:f5:02:5c:8e:91:5a:c3:61:d7:26:d7:81:e9:66:
5b:81:8c:69:4f:6e:8b:92:af:39:f2:9c:71:01:4a:
76:ec:4f:c7:5e:21:a9:c4:f4:54:31:65:5a:6d:65:
fd:60:2e:df:95:7f:f9:d2:dd:db:4c:bf:b7:c4:20:
5a:c9:03:84:b5:e9:2e:4a:a9:bd:5e:8c:93:5d:d0:
e0:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:FA:32:BE:50:71:7A:2F:53:4E:D7:0A:8D:22:AA:38:3C:40:7C:7D
X509v3 Authority Key Identifier:
keyid:62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:fd:64:ce:08:17:43:e5:2c:86:21:7d:00:5b:8d:1c:ea:11:
a6:3a:b1:2d:8f:12:de:67:1a:21:80:36:f5:db:89:54:d0:4d:
20:c4:fa:5e:30:93:74:fa:31:40:f2:2e:24:26:55:af:05:7c:
8b:1f:81:1c:a7:f7:f3:f9:2a:bc:a3:32:94:36:c0:73:eb:86:
8b:32:9d:47:7b:81:ba:13:33:bc:71:cc:14:49:f0:fe:6a:76:
cd:17:bb:e0:37:8a:80:3e:55:69:a7:d0:ba:f5:d1:52:8b:43:
7a:e2:a7:34:0a:ee:c7:76:f3:5b:77:8f:37:32:06:a7:51:44:
fc:0b:67:81:59:20:4e:39:e8:83:59:75:3b:6c:b9:4a:82:de:
03:78:ee:6c:dd:fe:b1:3b:4e:91:15:ea:80:07:d6:13:cc:b2:
b4:08:64:e3:db:a2:17:18:63:42:ba:41:c8:97:ba:cb:96:d1:
97:d9:2a:73:40:b5:f1:05:fe:a4:c8:d6:78:d6:cd:e6:c3:18:
f0:9f:35:60:49:bc:f9:22:d6:47:a9:ed:fc:98:5e:8b:1e:12:
51:a4:3f:8d:df:b4:5d:f5:aa:6f:02:d8:bb:d1:8d:9e:49:0c:
9b:88:5f:24:58:05:76:e2:27:dd:11:f9:cb:22:2d:fc:65:97:
35:61:78:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 12:51:42 2025 by rpki-client