Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft
File: JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft (raw, json)
Hash identifier: QIAwUcafJgm1Xaq8v3F+xVKEwmVIBxr+r8Nphp3gFzA=
Subject key identifier: B0:E2:98:B9:B8:51:CD:A6:88:1D:8A:F1:E5:C7:CC:BA:41:E1:F8:3A
Authority key identifier: 27:1B:98:A6:0A:92:68:20:A4:8C:B4:3A:4A:F3:08:C8:8F:F2:72:1A
Certificate issuer: /CN=271b98a60a926820a48cb43a4af308c88ff2721a
Certificate serial: 019A503DE7C81D31464B5DDCB99E0C970519
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JxuYpgqSaCCkjLQ6SvMIyI_ycho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft
Manifest number: 0FD2
Signing time: Tue 04 Nov 2025 19:00:25 +0000
Manifest this update: Tue 04 Nov 2025 19:00:25 +0000
Manifest next update: Wed 05 Nov 2025 19:00:25 +0000
Files and hashes: 1: JxuYpgqSaCCkjLQ6SvMIyI_ycho.crl (hash: 0ygXn3LwUz2wY6dwxw46ndeg4qJgs0aKP6gmOqsoR0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft
rsync://rpki.ripe.net/repository/DEFAULT/JxuYpgqSaCCkjLQ6SvMIyI_ycho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3d:e7:c8:1d:31:46:4b:5d:dc:b9:9e:0c:97:05:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=271b98a60a926820a48cb43a4af308c88ff2721a
Validity
Not Before: Nov 4 19:00:25 2025 GMT
Not After : Nov 5 19:00:25 2025 GMT
Subject: CN=b0e298b9b851cda6881d8af1e5c7ccba41e1f83a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e9:7c:31:18:74:39:71:4a:71:39:c7:8a:04:
b6:71:b0:70:f4:80:94:3e:8b:85:5e:62:b3:90:b8:
30:46:56:5e:d2:35:97:4e:12:f0:2d:99:2b:2b:2d:
ca:87:5e:e5:1f:25:a9:b8:90:1f:26:2f:81:03:9b:
61:9d:85:00:4d:25:5b:8c:e7:38:08:f5:95:77:cb:
b6:b9:0a:c3:70:19:34:33:42:dc:b3:aa:fb:fa:d8:
d4:77:51:9f:8a:d8:91:51:05:f9:3d:3c:9d:e5:a9:
a3:70:93:66:e7:10:18:37:e8:33:23:e5:ec:60:26:
27:21:2a:eb:e9:34:a2:35:ef:f9:39:c7:57:3f:b4:
6c:e3:a4:7d:98:02:66:1f:79:57:15:22:a7:b5:9f:
96:a7:0b:10:73:12:da:95:a5:80:d1:ce:5f:2e:6e:
33:a4:da:85:e0:4d:df:c9:15:43:16:a0:18:dc:f9:
18:e4:90:80:74:a3:10:20:9e:11:b9:57:47:ac:be:
c2:29:d0:97:88:57:45:4a:9c:24:32:8f:9c:ad:43:
ac:22:c5:79:32:5b:2c:45:3d:61:45:c4:8e:08:1b:
43:d2:6e:5e:f8:f8:22:6d:98:9a:72:e8:d3:ba:2f:
67:14:58:86:6b:bf:0d:de:67:bf:9b:4e:2a:56:f2:
23:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:E2:98:B9:B8:51:CD:A6:88:1D:8A:F1:E5:C7:CC:BA:41:E1:F8:3A
X509v3 Authority Key Identifier:
keyid:27:1B:98:A6:0A:92:68:20:A4:8C:B4:3A:4A:F3:08:C8:8F:F2:72:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JxuYpgqSaCCkjLQ6SvMIyI_ycho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:91:bb:53:15:51:7f:f6:dc:00:7b:a3:b4:2c:52:25:47:ee:
78:8c:a4:97:bb:e4:f3:d8:c4:a2:e3:74:d2:2c:90:3c:34:64:
05:e5:f0:74:70:4b:44:7b:f9:6e:3f:47:1d:44:02:28:34:2c:
61:d0:d2:9b:21:f5:1d:ec:64:07:a1:5f:90:b8:04:fc:90:1b:
ea:8b:dd:be:02:94:e7:34:b5:31:75:70:35:69:49:27:c6:fb:
d3:3c:0d:4b:27:7f:bb:4e:ca:8f:ad:9c:6f:44:24:f9:04:c7:
94:c4:d7:1f:3d:81:15:74:9c:9a:d0:35:2f:1a:9e:39:3b:38:
83:e0:a8:c1:3b:bf:53:51:5a:c4:f4:81:d8:54:58:8e:13:86:
fc:e2:cf:68:f5:e2:31:99:e4:c0:01:01:c5:b1:e7:91:ed:a4:
94:40:6c:1f:d4:16:0d:c8:e7:d9:e7:a9:e1:b0:84:b1:14:3a:
35:13:ba:4c:aa:18:ef:00:ae:a0:db:43:72:2f:74:b8:d0:b4:
51:ea:8f:c8:0b:82:9a:1d:de:5e:df:4e:0e:d1:34:cc:0a:da:
f4:d6:3e:2b:70:c8:6b:f4:da:fe:6a:87:5b:8b:80:36:5a:c1:
03:4b:a6:4d:c5:32:d8:62:66:e5:29:e6:eb:5b:5d:37:21:64:
c1:22:5c:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 01:57:03 2025 by rpki-client