Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
File: YgsENUY3RvXyN9k2h77C6s8iRVE.mft (raw, json)
Hash identifier: UgDEdaWaIAF1I/8oY+DU0YQTJH0CRGa5EQUloDCmDLs=
Subject key identifier: A5:9C:67:D4:AD:D0:5E:69:AC:F0:1E:32:E7:F3:A1:07:2A:B8:FD:1A
Authority key identifier: 62:0B:04:35:46:37:46:F5:F2:37:D9:36:87:BE:C2:EA:CF:22:45:51
Certificate issuer: /CN=620b0435463746f5f237d93687bec2eacf224551
Certificate serial: 019A4DE1AA43469D2CAF9D4C15480734E996
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
Manifest number: 08EE
Signing time: Tue 04 Nov 2025 08:00:26 +0000
Manifest this update: Tue 04 Nov 2025 08:00:26 +0000
Manifest next update: Wed 05 Nov 2025 08:00:26 +0000
Files and hashes: 1: 1-dSr_bwrsUwvfc9qQEvsXILMv3w.roa (hash: SF5ovM+mleomLfSZp/NHDAE5s82AVbxDbWTJFXrQrE0=)
2: YgsENUY3RvXyN9k2h77C6s8iRVE.crl (hash: Imv6gbaezZIQaBMIPQxpGx90fVIOQQtdSmWXUxbzhJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:aa:43:46:9d:2c:af:9d:4c:15:48:07:34:e9:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=620b0435463746f5f237d93687bec2eacf224551
Validity
Not Before: Nov 4 08:00:26 2025 GMT
Not After : Nov 5 08:00:26 2025 GMT
Subject: CN=a59c67d4add05e69acf01e32e7f3a1072ab8fd1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:bb:0f:a3:6d:2d:97:cc:1d:83:78:13:50:e4:
fd:1b:25:12:58:28:e1:55:0d:f6:7b:0b:3e:74:38:
44:b6:6b:d2:f4:9c:1e:44:ef:4f:58:67:88:d1:2b:
51:6b:49:79:b5:f2:1e:05:d2:a9:7d:53:fe:5b:b2:
48:48:15:6c:b0:c4:0f:ad:12:0a:b7:4a:cd:61:ff:
c3:86:c4:f6:69:ae:2e:4f:b3:1e:b9:00:92:34:d2:
10:32:92:8c:17:53:df:0c:d5:41:a2:f8:06:76:c5:
9f:7d:f5:63:c0:c1:b5:f9:0e:a0:0b:fd:95:49:1e:
8a:f5:a3:89:75:74:32:8d:fa:ea:7c:8d:0c:04:55:
66:66:38:46:2f:0c:27:d9:59:16:36:cf:3b:6a:2a:
11:7a:0d:9a:ef:33:70:33:bb:6a:d4:f7:3a:16:75:
ae:c4:d3:60:87:de:fa:a8:da:bc:6f:d4:f7:3e:e9:
32:8f:af:2c:d0:18:e9:5f:f3:8e:da:af:b7:12:22:
29:36:87:a8:17:df:39:75:c8:b5:7b:a4:00:28:60:
9a:16:d5:24:c6:dd:7b:7e:e1:96:a2:50:33:de:83:
4b:cd:42:ac:46:d6:d7:23:b7:ba:31:65:f0:b5:d6:
eb:d6:da:a6:96:b3:65:e3:34:62:fa:6e:e0:50:98:
94:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:9C:67:D4:AD:D0:5E:69:AC:F0:1E:32:E7:F3:A1:07:2A:B8:FD:1A
X509v3 Authority Key Identifier:
keyid:62:0B:04:35:46:37:46:F5:F2:37:D9:36:87:BE:C2:EA:CF:22:45:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:7c:38:cb:15:0d:a9:0d:23:5e:b8:56:66:dc:05:78:af:9c:
45:9f:d1:da:cc:9b:61:fa:33:36:d5:11:08:c5:e9:22:4d:37:
ac:13:57:c8:30:b6:e2:72:99:a6:cc:02:da:03:5d:7c:2d:37:
e8:52:93:02:66:6e:ec:07:bd:2c:a2:fb:e8:17:2b:f9:c2:76:
28:4c:10:bd:87:db:d5:2d:2c:0c:92:7d:30:5b:9d:1b:73:f8:
96:ad:91:ca:f3:12:ac:e4:2d:7f:90:7e:68:81:86:cc:28:09:
ef:e8:70:d6:2d:2c:18:b9:a0:6a:61:a0:1f:fd:f1:32:af:77:
be:92:93:ff:7a:b2:ea:af:bd:35:a9:da:f5:54:dd:d3:d4:a2:
c9:2b:8c:f7:59:df:04:2d:9f:12:a5:74:d5:cf:c4:b0:0c:b5:
16:13:09:50:60:72:3f:6c:41:d9:64:d0:fd:c0:05:56:a4:6b:
5e:de:60:32:7c:fc:74:cc:98:47:02:38:47:52:bf:08:55:71:
83:ba:a0:1d:16:1d:bb:2b:5a:78:87:b2:3f:04:1a:d8:d7:17:
f7:3d:fb:fc:04:32:2a:54:46:53:52:ce:62:86:c7:07:d2:0b:
88:7f:88:24:01:11:ca:31:eb:51:ad:64:40:7f:8f:de:23:10:
fd:f0:c0:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:01:45 2025 by rpki-client