Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
File: JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft (raw, json)
Hash identifier: /K0TIFML2FnUbpbyUtKc5ZSvaM0rm3FUovpr210V0q8=
Subject key identifier: 16:B4:7E:C8:D1:CD:55:79:75:53:AA:E2:1C:04:61:C7:2B:2F:5B:A3
Authority key identifier: 25:89:06:55:4D:8C:8B:42:8E:DE:8C:B3:50:26:86:0D:3D:77:71:DF
Certificate issuer: /CN=258906554d8c8b428ede8cb35026860d3d7771df
Certificate serial: 019A4F61DFA9FB8E5CEB7A1B5A4B3A018C83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
Manifest number: 0DED
Signing time: Tue 04 Nov 2025 15:00:05 +0000
Manifest this update: Tue 04 Nov 2025 15:00:05 +0000
Manifest next update: Wed 05 Nov 2025 15:00:05 +0000
Files and hashes: 1: JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl (hash: Fl3nD/kmD5UmUYMmy6eBYw0HOYqk4/KKdvq5UYZN7YU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:61:df:a9:fb:8e:5c:eb:7a:1b:5a:4b:3a:01:8c:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258906554d8c8b428ede8cb35026860d3d7771df
Validity
Not Before: Nov 4 15:00:05 2025 GMT
Not After : Nov 5 15:00:05 2025 GMT
Subject: CN=16b47ec8d1cd55797553aae21c0461c72b2f5ba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:97:7c:b8:3f:72:d2:44:6a:85:9e:e8:5e:92:
57:02:5d:d1:19:4a:c1:b6:f0:0b:e9:4a:cb:9b:df:
60:f8:1b:27:e9:6d:6e:4c:27:ef:23:07:4a:1b:c0:
47:3c:7b:78:18:e5:9a:26:8d:85:29:69:ff:4e:a7:
19:8a:e0:f4:64:25:1b:5e:46:f6:37:76:3b:78:88:
09:ae:e4:16:d0:ba:85:12:3c:8f:8a:23:e1:fe:0c:
57:97:9e:27:43:d6:97:67:d5:91:5e:95:60:f1:3a:
37:5b:c0:5f:e8:a1:c2:43:d9:c9:fd:9c:ce:04:d0:
e7:8f:20:40:bf:17:ed:27:b7:ce:99:7c:1c:65:8b:
7c:cf:71:f6:cf:c3:a7:73:b3:12:c3:d4:81:c0:0d:
05:25:bc:db:a3:e2:26:a0:42:b7:33:15:fd:87:8a:
96:aa:eb:43:4c:7e:bc:47:5e:20:a0:54:4b:65:4e:
59:f0:cc:31:52:19:cb:16:9c:71:c4:10:da:a9:e4:
ab:43:da:00:dc:5b:db:33:6d:c0:cc:ec:dc:59:2e:
8d:3a:9a:31:ef:83:bf:22:70:31:e4:84:e7:02:34:
ed:04:4f:42:1e:65:48:a3:33:d7:d6:c8:58:0a:48:
0b:a2:f2:a6:3a:b4:ea:18:4a:5f:3a:c6:08:42:20:
df:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:B4:7E:C8:D1:CD:55:79:75:53:AA:E2:1C:04:61:C7:2B:2F:5B:A3
X509v3 Authority Key Identifier:
keyid:25:89:06:55:4D:8C:8B:42:8E:DE:8C:B3:50:26:86:0D:3D:77:71:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:3d:7c:81:ff:d5:2b:19:b7:c8:cc:86:e2:a7:a9:1f:5d:da:
e6:8b:8e:7d:92:a7:d3:78:c0:7a:26:70:a3:be:f7:c1:7e:0e:
64:27:36:65:63:3b:c8:70:02:2f:a7:ce:62:75:85:eb:03:46:
23:70:00:1f:74:ab:85:0f:e9:f7:98:00:1a:d7:bb:81:9f:49:
b7:d6:0c:9f:62:23:06:1d:14:53:ce:22:a1:a8:5b:63:5d:76:
d8:c0:dc:06:c5:32:57:ff:d1:01:ea:71:36:bc:54:8a:92:4c:
aa:0a:10:0e:aa:24:32:8f:78:20:cf:dd:72:2a:d6:98:08:b4:
0d:16:74:35:c9:89:82:e6:9a:cc:34:d3:44:6f:15:67:98:34:
b5:52:61:ea:ab:2b:95:ed:cd:0b:ae:f7:39:91:d7:77:f0:15:
42:30:68:5b:a9:86:70:b2:10:35:d8:bc:f4:31:25:1e:61:6f:
fa:e8:14:d5:2b:30:bf:41:42:b4:b1:cf:11:ff:54:c3:71:c5:
0a:3d:c7:69:45:85:0e:23:83:03:5d:de:3d:8d:f7:b3:25:06:
4e:a1:27:a1:e8:b7:df:9a:02:8f:ec:72:ed:94:fe:f0:f4:4f:
99:b4:1c:96:d5:82:7e:e2:0b:69:c4:7b:11:83:35:d7:ae:11:
9c:4f:12:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:52:15 2025 by rpki-client