Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
File: YAG5U8a-H5GDHWilwBFcIODNf5o.mft (raw, json)
Hash identifier: G4CMa6CX+KoixG5lRgWsf7mXDVIpqrS4QuMb0G8T+iM=
Subject key identifier: 58:2A:31:F4:49:49:DD:34:CF:1A:D7:E4:B8:92:1D:02:9A:90:50:90
Authority key identifier: 60:01:B9:53:C6:BE:1F:91:83:1D:68:A5:C0:11:5C:20:E0:CD:7F:9A
Certificate issuer: /CN=6001b953c6be1f91831d68a5c0115c20e0cd7f9a
Certificate serial: 019A4E4FBF55F374BA15FBB19698EEF0D5A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
Manifest number: 06F0
Signing time: Tue 04 Nov 2025 10:00:40 +0000
Manifest this update: Tue 04 Nov 2025 10:00:40 +0000
Manifest next update: Wed 05 Nov 2025 10:00:40 +0000
Files and hashes: 1: QQlxlfhA9BwLpxAQMkShfHqNuQ8.roa (hash: J1jtN5BQZROl/8dEYO5qeCL3b90fBYd6l0TNzemkVxs=)
2: YAG5U8a-H5GDHWilwBFcIODNf5o.crl (hash: ItQRv5VShECVp5NIHmdMwyyhRkl/Dnn16WN0+cTqcgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:bf:55:f3:74:ba:15:fb:b1:96:98:ee:f0:d5:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6001b953c6be1f91831d68a5c0115c20e0cd7f9a
Validity
Not Before: Nov 4 10:00:40 2025 GMT
Not After : Nov 5 10:00:40 2025 GMT
Subject: CN=582a31f44949dd34cf1ad7e4b8921d029a905090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:19:1e:62:5b:27:f1:c6:a6:fd:a2:88:1e:02:
19:ef:80:58:1e:ad:7d:3a:42:e0:80:89:ba:15:ce:
c7:8f:ad:1d:61:9d:34:31:b2:07:d7:76:84:05:56:
82:22:7b:1a:4c:d1:18:5d:22:e4:0f:f1:d1:6c:1f:
b3:2d:47:4d:96:e4:e2:0b:22:8b:bb:ab:be:88:34:
9b:86:50:f7:16:6b:5f:ca:34:be:8a:c6:42:98:fd:
50:76:15:de:48:2f:72:e8:af:40:71:8b:e0:c7:6d:
b8:84:84:51:2d:e3:33:a7:91:60:c3:ff:ef:ff:7a:
87:dc:4e:d5:eb:4a:4a:76:d6:ee:22:0d:b0:9c:2f:
a0:15:58:99:50:7f:9f:8a:25:55:96:a8:e8:a7:d5:
22:39:b5:4c:42:8d:80:24:37:15:96:9a:d6:f0:2f:
17:8b:08:dc:f7:30:23:bf:a5:4e:9a:6d:0a:6d:d4:
aa:17:54:fe:b7:65:a2:60:fd:69:9e:49:38:6f:be:
75:5d:70:92:35:5b:e0:15:fa:da:56:64:43:94:cd:
9d:ba:22:4d:39:2b:8c:fc:d2:a5:b6:90:2f:00:67:
42:b4:ee:38:6d:f2:02:19:6f:7e:5c:5f:a8:93:9d:
84:e1:fe:bf:64:7b:4b:64:28:c6:6b:1f:0a:d3:15:
61:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:2A:31:F4:49:49:DD:34:CF:1A:D7:E4:B8:92:1D:02:9A:90:50:90
X509v3 Authority Key Identifier:
keyid:60:01:B9:53:C6:BE:1F:91:83:1D:68:A5:C0:11:5C:20:E0:CD:7F:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:b7:7d:54:b5:9e:08:be:88:bc:30:f1:d3:c4:d7:28:16:d5:
76:2c:0f:a4:3d:dd:55:ae:1f:fa:27:2a:7b:32:27:0c:06:23:
94:bd:db:7a:14:56:5e:e5:15:b9:56:2f:f5:00:b3:bd:d1:3b:
3a:71:6c:71:31:c8:a9:32:fd:5a:0c:42:ea:a6:09:c1:a5:03:
50:dd:6f:63:27:e1:66:03:0a:d1:d5:1d:75:30:bb:be:61:8b:
4f:1d:b9:a2:ae:e4:19:f0:01:a0:a5:e0:91:fc:f8:46:cb:e8:
58:88:fe:a9:c3:6a:67:0e:e0:e7:07:4d:1b:65:48:67:2a:eb:
1a:61:80:e2:3e:a6:0e:be:9c:76:16:0a:fa:65:39:36:ea:1e:
58:3e:07:bf:3a:85:d0:af:52:f2:9b:3b:f2:26:f8:20:54:9e:
29:af:0e:2b:37:5b:7f:4c:cf:fa:f7:d0:23:00:1a:32:72:d1:
6e:ba:9f:93:5a:85:b1:fb:89:d9:5d:96:97:c4:af:13:2c:31:
6b:43:fb:fb:88:ab:0b:df:7b:4c:4b:34:0a:4f:83:a5:05:a5:
49:8b:9a:90:b8:3e:8b:31:ef:e9:07:39:45:6b:64:4d:c5:de:
e9:95:8a:66:29:76:9e:8a:32:06:74:f0:8e:86:a1:c1:a7:60:
1b:95:74:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:14:13 2025 by rpki-client