Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft
File: ymRB2dgH4NeM51IToQNADuFKfNw.mft (raw, json)
Hash identifier: fTMclMc2DIqrn+fkARFX8VA6gdvcsGBXiRXyZITrZH0=
Subject key identifier: 45:28:40:D5:EA:45:DE:F7:E4:96:44:8C:56:89:64:68:CC:D0:44:C4
Authority key identifier: CA:64:41:D9:D8:07:E0:D7:8C:E7:52:13:A1:03:40:0E:E1:4A:7C:DC
Certificate issuer: /CN=ca6441d9d807e0d78ce75213a103400ee14a7cdc
Certificate serial: 019A5119653719DE6AAD9E237EBC958BD7C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft
Manifest number: 0281
Signing time: Tue 04 Nov 2025 23:00:09 +0000
Manifest this update: Tue 04 Nov 2025 23:00:09 +0000
Manifest next update: Wed 05 Nov 2025 23:00:09 +0000
Files and hashes: 1: DIvBgZwS0Tso3aVf8EICkFleMLM.roa (hash: uFxBmENfxdwwVihL06QRGFulr8RLsRLP+PeZmW4yvHM=)
2: QTI2jWOE2hcS0P8FvwS3gPaVuSY.roa (hash: ym/RyiFastWTZGcEp8UN9E30CRk6eCzYsSVGPj7ydGQ=)
3: aO_whLt90j7emxpJJj2cDf7ZJOg.roa (hash: p39kDWxY5GmkiU51YIoY0fQ+QLGvMq74UJt/qetIBDg=)
4: ciHagOHLSoKpc1FusaVxL3_Ptq8.roa (hash: qVZyRrrycJITJq8e+Oqg9n1s/m1DGfbQ92cmAOV1Z5A=)
5: hebYL6M-z610FLivX7dM3OowSRU.roa (hash: IcjCerJ7GmqoXjZHtfS/CxBpCm6nwEU8LVGTcI76v2s=)
6: mPzH1GA4mIzy3_pZzvXV4kQe-Yc.roa (hash: yzXoljoSrOILZSxkJrlaugQIVos/dTr3tT0FKrN5vnM=)
7: qxGJPGhPdavkt3fDlmKOC0R6Ufk.roa (hash: V4CR5QSqFwKQtj1zVlfNBmPaneN3PqkC+1ZuaxUJeBM=)
8: xIyXjBVQ6PY7db0-kU0MPNqfG_k.roa (hash: hoQlQ49AMRXyr8IYH6xHVURJ84d0LGLOqucCIHUfGFM=)
9: ymRB2dgH4NeM51IToQNADuFKfNw.crl (hash: xAkhz2DHi+xc6ku5HOeEm+ivkXzz9PyskLdDi2ojCUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:19:65:37:19:de:6a:ad:9e:23:7e:bc:95:8b:d7:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca6441d9d807e0d78ce75213a103400ee14a7cdc
Validity
Not Before: Nov 4 23:00:09 2025 GMT
Not After : Nov 5 23:00:09 2025 GMT
Subject: CN=452840d5ea45def7e496448c56896468ccd044c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:35:ef:a1:e6:bd:8f:6b:59:82:77:08:61:fd:
38:55:9c:e3:5d:1b:0d:89:d3:46:eb:77:ba:ae:74:
a9:a1:59:4d:6b:d1:c9:94:18:49:52:fa:fb:ea:31:
59:c7:84:3b:19:fb:af:55:8c:87:5a:e8:2a:d9:11:
b0:2e:1b:30:3f:1c:36:d9:78:e1:2d:8f:26:02:68:
41:26:76:de:fa:79:6d:6d:28:8d:c7:ee:0e:0a:3b:
10:0f:ab:6e:26:77:25:fd:96:b2:47:c9:64:ed:67:
88:f6:ed:af:c4:a5:5c:8d:ca:6f:91:47:37:d0:46:
6c:25:ae:06:7c:92:f2:3e:d3:27:ac:ed:7a:94:10:
62:fa:68:8c:e2:f8:dd:4d:bf:50:f8:0b:61:71:0b:
9f:b9:11:0a:dd:ab:51:5b:51:25:f8:92:47:83:d6:
07:3a:47:68:e6:c8:af:80:c4:da:c0:0d:ff:16:41:
5e:e0:4b:69:c8:50:aa:1d:79:f7:8c:e1:2a:07:b4:
63:35:bd:36:23:a6:17:77:c6:6e:c0:09:a0:63:ef:
8a:98:2f:2b:18:d5:99:b6:45:04:12:7b:a6:72:95:
0b:1f:f3:78:13:6c:a4:df:14:10:73:97:ac:44:74:
45:93:f0:cd:83:d6:b3:c4:2c:3e:92:0a:d7:fe:27:
cb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:28:40:D5:EA:45:DE:F7:E4:96:44:8C:56:89:64:68:CC:D0:44:C4
X509v3 Authority Key Identifier:
keyid:CA:64:41:D9:D8:07:E0:D7:8C:E7:52:13:A1:03:40:0E:E1:4A:7C:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:f0:c0:e0:e7:2d:16:93:ea:72:1b:bc:27:15:9c:f7:72:7f:
97:7d:78:44:8e:0b:7f:48:ec:61:2e:28:4c:9d:ac:6e:90:40:
7d:5f:8a:a7:7f:cc:03:73:6b:7c:08:6b:35:fa:6d:74:dd:01:
a9:3b:d1:c5:30:3d:d6:a5:8e:68:92:ea:86:a3:cb:37:f2:2b:
42:5c:31:51:61:c1:96:a6:aa:1f:ed:0d:f8:d9:67:cc:62:53:
44:95:0f:0f:00:04:5f:eb:58:01:5c:26:6f:2b:49:41:52:0c:
87:03:41:19:25:16:46:ec:90:ca:9d:65:e7:04:c9:5f:e8:0c:
87:fa:06:c1:6c:4b:10:a4:95:d5:34:8d:cb:02:4b:04:28:a5:
0a:e2:d0:b9:6b:5d:85:eb:94:41:39:7a:78:60:34:0e:22:bd:
d9:42:97:14:48:d0:34:01:37:b7:1b:9e:57:7f:25:04:87:01:
52:f3:88:8b:c9:e3:12:dd:14:5c:c3:12:af:8b:70:a1:fd:17:
64:1e:ed:a3:69:34:eb:20:69:75:6f:73:6b:3c:40:88:1a:fd:
57:6b:32:1a:d1:51:1c:67:53:92:3b:fc:ae:a0:27:23:f4:5d:
92:e4:90:91:5d:bf:47:a9:57:87:50:43:c8:f1:b4:8c:8b:50:
88:c8:0d:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:20:42 2025 by rpki-client