Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
File: YaXSF3WehhaW_HftmqY7lO2zvn0.mft (raw, json)
Hash identifier: HwNp9tGdGmLV0phlj8Ggc2pAj8MTLAHQImrnW6AjvNg=
Subject key identifier: 3B:69:EB:B6:47:64:0C:CE:E0:48:99:89:98:EE:B4:EE:44:8B:2A:16
Authority key identifier: 61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
Certificate issuer: /CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Certificate serial: 019A50E343BA29AF247566CD8D64EE8B345E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
Manifest number: 169E
Signing time: Tue 04 Nov 2025 22:01:02 +0000
Manifest this update: Tue 04 Nov 2025 22:01:02 +0000
Manifest next update: Wed 05 Nov 2025 22:01:02 +0000
Files and hashes: 1: 5fuh3MDvvFTdM9YPWplIlmW8ZkA.roa (hash: Wdi/0+eUolZTOBljIE3hewam0WUu332lXIc8cs32Fgk=)
2: 925S4SchOi83vL3V68Y_AUuJSD8.roa (hash: 6EULq2ShinRvQFwY+uALe+ivLl2vWfr/F3fyELn3cug=)
3: PGmGsgYp4SpOgDQPzfkm2Kp84ms.roa (hash: QvQzg0nCw1e7QpH5gXcvQpoprtCI6UOH6zwCxDuFkv0=)
4: YaXSF3WehhaW_HftmqY7lO2zvn0.crl (hash: hSF9fajxXSpd2OhPNaAuLNIf9ZlZ2wjAZwVLae+PeWI=)
5: z3s2kSvc4H2ywLCnLljgXCeMKHc.roa (hash: pgMrP+tE9sQxVvQRywnzdq3UOn28MH01XXGUWXVHask=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e3:43:ba:29:af:24:75:66:cd:8d:64:ee:8b:34:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Validity
Not Before: Nov 4 22:01:02 2025 GMT
Not After : Nov 5 22:01:02 2025 GMT
Subject: CN=3b69ebb647640ccee048998998eeb4ee448b2a16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:22:a1:d7:97:56:ef:b6:cf:6d:19:cb:86:de:
b4:3d:44:4b:2d:01:2d:9c:bc:81:78:ad:08:07:4b:
b2:4e:5f:04:7c:81:96:b2:9f:a0:c4:9f:0e:4c:21:
07:a1:5e:2b:55:49:04:b6:3c:d8:50:13:e7:0e:4d:
b8:4f:52:c8:b0:0f:84:06:e3:f3:67:72:c1:7d:ca:
86:be:9e:51:e8:3d:28:fa:43:9b:93:c1:c9:75:b2:
46:49:1d:95:92:40:d0:80:fc:35:43:34:2b:7c:99:
06:84:e6:e5:75:6f:b3:dc:9e:43:88:af:6e:ea:9a:
92:59:73:c0:06:e3:5e:36:c9:19:72:9e:78:d8:09:
d7:2b:29:80:ea:c6:ad:1c:9a:f7:d1:f4:c5:03:12:
d7:f9:86:e7:ec:50:f0:ca:11:9a:7a:62:11:53:85:
ff:fa:91:4e:75:6a:17:0d:8d:e5:f8:dc:97:24:85:
64:8e:a8:d2:e2:c7:f1:95:ce:89:2f:9d:5e:de:cf:
a4:54:fc:62:c2:a1:c4:0f:2f:81:85:fd:6d:2c:bc:
a1:a3:c1:4d:10:3d:ce:af:bd:42:18:c7:51:d2:3d:
78:30:7d:5c:0d:aa:d8:a1:9d:e2:7b:20:cd:50:9c:
9a:8c:b1:3d:63:8d:91:67:ac:e9:dc:1d:22:5b:65:
85:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:69:EB:B6:47:64:0C:CE:E0:48:99:89:98:EE:B4:EE:44:8B:2A:16
X509v3 Authority Key Identifier:
keyid:61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:16:f2:b7:cd:2e:a8:cc:7b:4f:12:b7:b0:66:89:56:67:35:
07:91:86:30:f3:4e:0a:c7:41:25:5d:bc:9c:60:ea:5b:b6:76:
33:86:c4:4c:2f:8d:4b:cb:30:57:3a:8a:cb:27:77:97:df:56:
cc:98:16:0f:2a:b6:e1:09:42:b6:f4:4c:0f:67:70:ab:51:e6:
83:d9:e2:ee:53:bc:93:c1:89:aa:30:1f:41:b9:12:fd:f2:b6:
0e:fd:42:9d:50:1d:f5:31:ab:2c:c4:37:47:83:66:86:91:30:
5e:1a:b9:59:7c:4d:49:b0:3a:9a:e4:73:55:d9:60:e4:f3:65:
bb:2e:50:c2:08:3d:3c:a8:ea:8d:66:e0:13:12:c2:95:a0:06:
31:05:bc:13:9f:9c:b8:7a:0d:52:2f:fd:2f:18:37:62:5e:2f:
8e:b7:12:cc:5a:5f:74:a1:17:af:c6:7c:66:ae:08:9c:c0:75:
20:9b:c4:49:d5:9d:71:cd:23:24:55:ed:87:a5:81:7a:0d:d9:
99:b0:4e:39:17:86:67:80:b6:81:1e:d7:08:24:28:fa:e9:f6:
6c:1c:ec:3d:0a:dc:18:6e:5b:8e:92:f3:4c:c0:4a:34:08:fe:
5a:b2:f8:2b:f4:58:45:e3:a7:d6:a9:76:a4:04:70:1b:cf:61:
b6:0f:4f:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:43:06 2025 by rpki-client