Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
File: YG03z4fxLyqy3vMTgMOGuCbBnWU.mft (raw, json)
Hash identifier: esJueyIvMcOLOzOJblRYo6FnEvuwxnh70sJxYwtUq0A=
Subject key identifier: A8:9B:E0:6E:35:14:5B:AC:FD:21:D0:62:39:B2:94:9E:31:71:F6:0A
Authority key identifier: 60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65
Certificate issuer: /CN=606d37cf87f12f2ab2def31380c386b826c19d65
Certificate serial: 019A4D739F186BF48F177796D8B020617839
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
Manifest number: 1708
Signing time: Tue 04 Nov 2025 06:00:14 +0000
Manifest this update: Tue 04 Nov 2025 06:00:14 +0000
Manifest next update: Wed 05 Nov 2025 06:00:14 +0000
Files and hashes: 1: YG03z4fxLyqy3vMTgMOGuCbBnWU.crl (hash: FjVU8WMGjaP6ly+CZRikn/Uces21iUxmVktQsu46UhQ=)
2: nLsyVuehs4jeCS4JRJE2VO5aV5I.roa (hash: ypIKdtNC4Ic9Sqbxvpei64KUmu5yr6lYiqShQ2+fMBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:73:9f:18:6b:f4:8f:17:77:96:d8:b0:20:61:78:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606d37cf87f12f2ab2def31380c386b826c19d65
Validity
Not Before: Nov 4 06:00:14 2025 GMT
Not After : Nov 5 06:00:14 2025 GMT
Subject: CN=a89be06e35145bacfd21d06239b2949e3171f60a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:70:73:c7:e1:d7:b0:8e:b9:88:f3:97:50:6b:
3d:2b:68:4b:3c:41:e6:67:28:c3:e4:f2:e3:35:93:
53:6f:b2:24:fa:ce:91:52:3f:ea:0c:3c:ab:63:10:
02:d5:bc:94:67:b3:bd:01:bd:5c:7c:16:9a:be:e6:
91:dd:10:3d:b0:fd:7d:6b:6e:af:52:62:b2:b4:89:
37:18:1e:df:ff:28:a3:37:51:3c:ea:ed:0e:83:2b:
01:5c:cb:e4:6f:a9:d1:bf:89:94:97:f9:42:3f:67:
73:91:e9:99:2c:b4:e0:77:86:78:40:eb:ce:22:5c:
36:b0:cb:5e:ac:12:26:9e:58:92:76:30:d1:f6:76:
c1:65:72:51:cc:67:39:52:2b:0e:32:3f:6e:2f:60:
b4:4b:04:11:5a:bd:fa:52:b8:b3:16:52:0a:7c:be:
1c:0d:f5:68:ca:cd:48:d9:f6:85:45:60:96:12:33:
f5:79:bd:ae:09:da:6c:09:bf:f2:b2:ea:54:4d:06:
73:55:6b:fb:dd:92:c5:3f:21:e9:f0:e3:30:5e:89:
c2:69:28:4c:c8:34:f3:c2:8f:8a:33:da:5a:f0:65:
63:0a:4d:b1:85:81:9a:87:e9:0d:2e:9e:bf:f1:86:
c1:48:c9:32:1c:de:62:8e:1e:45:fc:ed:2c:21:c0:
71:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:9B:E0:6E:35:14:5B:AC:FD:21:D0:62:39:B2:94:9E:31:71:F6:0A
X509v3 Authority Key Identifier:
keyid:60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:7a:20:68:6b:9a:51:cb:cd:9e:5d:c0:05:59:13:3e:c9:a7:
ac:c7:3f:57:ec:59:0c:3d:a4:11:e2:44:ee:df:9a:a7:63:69:
6a:56:8e:fa:23:db:bb:d5:af:d2:5c:85:71:48:ef:aa:ac:15:
ca:26:9a:98:61:7d:2d:52:16:ef:41:0c:15:8f:5d:23:1c:58:
ad:7f:66:13:d5:f3:53:d1:c9:48:dd:5f:87:63:cb:59:2f:17:
0c:25:6b:6e:3b:56:8f:bd:51:de:ba:2c:5a:d6:b2:b7:ec:0a:
67:f5:43:63:d4:2b:3d:05:37:cf:90:2d:60:91:be:83:76:0d:
57:62:19:75:26:26:3f:95:5d:aa:04:f3:d9:ca:e3:45:1a:6a:
ca:a1:0d:b2:a3:5f:3e:d0:a7:cc:bc:9f:f6:8e:4b:7e:6f:eb:
39:b6:18:25:07:9f:6d:48:90:20:56:d0:8f:ca:3c:58:9d:e6:
02:1e:e0:a3:68:61:83:ad:ec:82:f3:4a:81:b8:ae:3a:a4:6c:
4f:d3:63:9f:82:ba:d7:00:8e:bd:e3:cd:de:b0:26:5a:51:2e:
a4:68:99:91:43:c0:55:58:62:82:5f:a7:05:be:3a:6a:1f:2c:
17:33:f6:4b:56:5e:6e:fe:16:54:8d:a9:73:d8:d5:52:5c:04:
e4:d1:88:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:38:08 2025 by rpki-client