Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
File: YDM81vG1nAtoLh2jiSN-2j6dqRg.mft (raw, json)
Hash identifier: yY73v/yMUVE6A0339S24qSSHgdNd7dAQD5ziXf4lws8=
Subject key identifier: 73:B3:75:A2:F0:F7:5B:C6:24:8D:DD:8F:BE:38:78:AB:23:EB:E1:9D
Authority key identifier: 60:33:3C:D6:F1:B5:9C:0B:68:2E:1D:A3:89:23:7E:DA:3E:9D:A9:18
Certificate issuer: /CN=60333cd6f1b59c0b682e1da389237eda3e9da918
Certificate serial: 019A4EF56423AAAD56DFFE03666E275229E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
Manifest number: 0DEF
Signing time: Tue 04 Nov 2025 13:01:36 +0000
Manifest this update: Tue 04 Nov 2025 13:01:36 +0000
Manifest next update: Wed 05 Nov 2025 13:01:36 +0000
Files and hashes: 1: YDM81vG1nAtoLh2jiSN-2j6dqRg.crl (hash: KDUJXtxlRnL1mSPZEDjjfNEjjCaZk8JHMrik8XRjQcc=)
2: YvGTICIQPtclpMrYwq9cvhdFKOI.roa (hash: VRRExLjeFp73/0IARjKER20GFoe2YDaIzWUGvE6p51I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:64:23:aa:ad:56:df:fe:03:66:6e:27:52:29:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60333cd6f1b59c0b682e1da389237eda3e9da918
Validity
Not Before: Nov 4 13:01:36 2025 GMT
Not After : Nov 5 13:01:36 2025 GMT
Subject: CN=73b375a2f0f75bc6248ddd8fbe3878ab23ebe19d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f3:b0:83:f5:8a:47:5d:00:12:ef:d1:0a:51:
68:99:76:cd:31:cb:79:c6:8c:30:0f:be:0f:4e:67:
47:e4:09:7f:d4:a6:01:e3:53:19:36:e2:b2:43:2f:
24:bd:90:ba:11:f3:08:92:f5:65:6c:b2:13:5d:17:
27:a5:71:cd:76:a7:85:d7:14:18:a9:24:72:0b:94:
ef:2e:34:8d:70:64:ed:d4:15:fb:c1:1e:ac:de:40:
a9:e9:9f:92:ff:f4:26:9c:33:6c:ea:59:7e:6d:4b:
f0:fd:e8:0e:ce:67:de:82:ee:5d:9b:b5:88:d6:5a:
bf:f1:55:44:f7:4b:5f:f5:68:41:aa:a5:06:f3:2b:
42:07:ca:58:bf:25:45:40:63:0a:26:e2:cd:85:8a:
59:52:08:66:82:21:4e:0b:1b:43:86:16:85:a2:cd:
69:ca:b5:b6:c8:29:0d:4b:32:32:b4:d8:8e:87:f2:
88:d8:eb:9e:9f:1d:02:43:eb:64:2f:b6:0f:29:e4:
84:ff:81:47:6a:bd:cf:c4:1d:3a:7a:27:da:3b:cf:
ae:f3:66:4a:56:a9:1a:be:92:3f:d3:9a:d4:d4:84:
16:0e:aa:5b:7c:43:ee:29:b1:1b:1b:c3:51:d8:6b:
40:70:37:2d:68:63:ef:f4:f1:7d:2b:37:75:c2:18:
5c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B3:75:A2:F0:F7:5B:C6:24:8D:DD:8F:BE:38:78:AB:23:EB:E1:9D
X509v3 Authority Key Identifier:
keyid:60:33:3C:D6:F1:B5:9C:0B:68:2E:1D:A3:89:23:7E:DA:3E:9D:A9:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:60:f6:27:51:23:ed:21:2f:93:00:99:bd:da:7c:e2:7c:76:
85:fe:a5:b5:86:28:ff:4e:96:ad:87:76:b1:46:4c:4f:ad:0e:
57:11:1f:a0:06:21:80:96:0c:75:1a:ed:8f:53:fa:ad:95:51:
9f:70:9e:68:3f:e6:c4:59:f6:8f:37:d6:ab:cb:9a:a6:56:0d:
ae:51:9e:ad:5c:f3:66:db:f0:a7:5c:f9:ff:c5:d2:36:cf:39:
43:bf:ec:43:4e:bf:2a:5a:fd:fb:f3:81:b3:9c:07:95:5e:37:
1f:89:67:c3:33:01:7b:33:f2:c0:6d:06:3c:c0:87:3b:da:81:
14:7e:26:c4:44:b4:81:4b:33:50:9a:fb:6f:e3:56:1f:5b:d5:
4c:bc:71:25:16:0a:97:d9:81:b7:bc:53:4d:be:a4:78:af:f0:
3a:50:c4:b8:78:4a:d2:7f:ed:48:b1:ca:4d:e5:e5:d5:6f:85:
a4:12:cc:e5:9c:86:50:7c:86:c7:c4:5a:c5:2e:e8:1d:cc:13:
b9:7b:91:bd:c7:81:c8:1c:ce:88:92:a5:3c:5e:1d:3a:49:bc:
01:b4:6a:7e:fc:c4:0b:6f:7a:09:fb:43:be:32:fb:19:a5:75:
3b:0b:cc:8e:90:3f:ee:77:48:2c:13:59:7d:2e:b4:22:e4:b0:
f9:b6:ef:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:28:13 2025 by rpki-client