Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
File: ymTavZvEZIX2qRY27edT2jjI82Q.mft (raw, json)
Hash identifier: oLtYohZ7Zz6y9tw4hDs5l7vvo+64MGIve2FveJVT+X4=
Subject key identifier: 88:F4:8A:EE:35:6F:7D:18:D5:62:72:14:2E:C3:27:2E:8C:24:BD:8C
Authority key identifier: CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
Certificate issuer: /CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Certificate serial: 019A4C6128A45168774FD8DA4187B1CAF9AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
Manifest number: 170C
Signing time: Tue 04 Nov 2025 01:00:26 +0000
Manifest this update: Tue 04 Nov 2025 01:00:26 +0000
Manifest next update: Wed 05 Nov 2025 01:00:26 +0000
Files and hashes: 1: NA5mgzoDK6jbbKh48XeliWtbDYM.roa (hash: 9nIV3wU01lTdftDhSQVjEb+D2h3DXok24aEDQGNAM3o=)
2: ymTavZvEZIX2qRY27edT2jjI82Q.crl (hash: JFrh09siEVpO3YY6188UBdWlpl/Lbz5Fzh8etXaDb+0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 01:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:61:28:a4:51:68:77:4f:d8:da:41:87:b1:ca:f9:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Validity
Not Before: Nov 4 01:00:26 2025 GMT
Not After : Nov 5 01:00:26 2025 GMT
Subject: CN=88f48aee356f7d18d56272142ec3272e8c24bd8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cb:d6:c1:3d:e5:fd:df:75:a5:67:31:f3:87:
14:1e:54:f1:40:d7:5f:a5:8c:a5:62:b9:d7:0a:94:
cc:8b:39:84:bb:2a:92:16:69:ed:2f:10:9c:c5:9b:
06:a1:0d:75:6f:66:9c:fb:45:02:0c:2e:17:ad:ab:
8c:00:b7:02:6e:19:34:d7:19:79:fe:03:c6:65:54:
60:6e:78:2b:c4:ec:2f:e4:3d:13:55:2b:3b:a9:bc:
36:89:40:38:92:9d:33:e7:e6:b0:9c:de:1c:4a:c4:
58:ed:91:ab:19:a2:5b:20:bd:aa:1d:39:12:3f:0f:
0e:53:f4:b5:cc:dc:c6:c9:f3:b8:0e:c0:1e:bf:41:
96:37:9b:bc:b0:0c:32:45:fc:b6:37:aa:f8:09:7d:
ba:59:96:9a:e9:8b:14:aa:38:61:36:bd:3f:23:73:
cb:d0:cf:53:ef:01:8a:4d:b7:33:50:43:d7:a1:cb:
ef:b4:42:39:6b:4c:ab:fc:5d:1a:a5:ac:e6:55:ba:
ff:9a:c6:e7:f1:7a:83:df:7e:73:e6:66:63:d9:04:
f2:f1:5a:53:8c:80:f2:a2:e2:ea:f5:37:09:4e:87:
2c:54:7e:85:a3:bb:2c:25:03:3e:db:7d:5c:fe:51:
a3:00:dd:28:fd:de:6b:a0:e2:41:06:0a:70:75:d4:
d6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F4:8A:EE:35:6F:7D:18:D5:62:72:14:2E:C3:27:2E:8C:24:BD:8C
X509v3 Authority Key Identifier:
keyid:CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:d2:ab:47:44:bd:cb:1f:8e:3d:43:16:ae:c7:43:9e:90:ee:
63:9c:c5:1a:f9:c4:7b:2c:9d:62:a3:5a:b2:87:32:20:a6:a5:
d0:04:76:49:87:29:5f:3a:59:cf:af:b0:de:60:ff:d9:ff:d7:
81:ef:5a:af:0c:59:1e:58:bc:73:42:a4:fc:fe:bf:90:c7:58:
49:6b:17:a8:78:76:7a:6f:e9:4d:64:84:a6:2f:37:32:46:7e:
f7:52:a3:96:e6:1c:b0:b4:6f:15:95:ea:32:22:92:26:f5:af:
6e:31:47:7c:42:bf:2d:7a:3c:63:63:24:c4:45:7e:8e:b7:5d:
35:8c:41:15:f6:5b:00:b4:a4:b4:79:e7:05:50:6f:09:63:0b:
71:68:22:c7:c7:85:ae:64:3f:95:47:94:fb:43:c1:f5:60:f0:
b3:04:9e:c1:78:86:15:c2:d3:41:cf:c6:a2:f5:2f:08:92:1b:
f6:c0:b4:14:a6:cd:5e:10:39:60:85:98:c0:40:37:f7:87:6d:
44:f3:c8:87:4f:2a:08:a1:c6:25:71:82:28:79:6d:ea:1a:a5:
75:42:5e:89:fe:54:af:e9:0a:f8:64:07:26:96:fa:da:d9:1d:
c0:dd:53:97:4b:0c:5f:b7:5a:64:40:2b:8d:34:0a:6b:b4:59:
e6:df:f8:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:56:09 2025 by rpki-client