Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: aDXQDd4BR0cRH/XieF2T/cxJ8KG7UOVsRDywOd9E4BQ=
Subject key identifier: 4F:F9:A0:75:50:9D:AD:F9:A1:D0:C4:CF:47:C5:10:A1:51:16:12:FA
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 019A4DAA90E8491641F744B693F8D4ECF46A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 1274
Signing time: Tue 04 Nov 2025 07:00:15 +0000
Manifest this update: Tue 04 Nov 2025 07:00:15 +0000
Manifest next update: Wed 05 Nov 2025 07:00:15 +0000
Files and hashes: 1: HAjyOzGCAwLUy5RivV8kbOy5Vu4.roa (hash: PsK5K2sZtAdplKvTizBojj+ePHRa8hE1Sr8s/0IgHpY=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: VMrJzaULQdUbMDdce3c7iEy0jw6Pxg3dyMOH4w98yWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:aa:90:e8:49:16:41:f7:44:b6:93:f8:d4:ec:f4:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Nov 4 07:00:15 2025 GMT
Not After : Nov 5 07:00:15 2025 GMT
Subject: CN=4ff9a075509dadf9a1d0c4cf47c510a1511612fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:80:37:97:00:ca:0c:90:56:d4:a7:00:75:92:
34:f5:ba:7d:9d:77:a2:5d:6c:70:0d:cb:9e:60:42:
5b:13:53:53:54:0a:32:17:bb:d2:2c:f4:81:26:56:
84:f2:50:57:d0:13:c3:5b:c9:5f:17:fd:77:81:15:
a0:71:51:55:bf:61:da:0c:c4:d9:10:40:7b:09:0b:
c7:79:a8:65:e3:80:f4:b4:1a:04:c3:7f:ad:f2:1e:
fb:93:c7:14:d4:8c:c0:a9:f1:04:9e:c5:7c:2e:9d:
68:8f:c5:e6:5b:65:4f:d5:ef:85:0d:43:99:f2:04:
ae:7d:b8:6c:2e:81:22:69:67:a7:9e:06:63:8d:1f:
9c:2a:9f:b2:17:8c:07:5b:13:d4:3b:a1:af:cd:79:
b7:71:cd:1d:1b:e3:8c:42:b8:9c:a2:05:20:a1:d8:
8c:ea:3d:fe:bf:1b:52:39:ad:4d:4b:21:be:41:1e:
30:ba:86:a6:e0:05:45:91:60:28:eb:2a:80:67:06:
95:6a:81:2b:73:1c:46:d9:6e:8f:1e:11:69:ac:dd:
c1:7d:f5:25:bb:5f:e1:47:3d:59:14:b5:75:f5:cb:
70:1a:1c:63:3f:ca:e9:45:76:e5:04:f1:6d:4e:07:
6f:9e:d3:87:5c:77:17:3a:c3:39:a7:64:46:31:f4:
5a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:F9:A0:75:50:9D:AD:F9:A1:D0:C4:CF:47:C5:10:A1:51:16:12:FA
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:5a:3c:85:00:bf:e5:3e:08:cc:24:dc:55:71:9d:f4:10:3a:
e9:bb:d3:45:6f:63:84:6d:86:90:3e:73:27:ed:75:fe:a1:b0:
9f:c7:d5:f8:d1:e9:d2:2f:f7:9e:db:19:3d:42:80:2f:da:64:
d4:ab:3d:3d:ce:40:bf:d3:d5:03:0e:bc:96:ef:4d:d3:42:3d:
0a:db:a2:b8:42:fc:8c:16:9f:7a:e0:c8:c0:d5:84:cc:bf:86:
e5:d8:84:ee:e9:d1:1d:f2:a2:2c:c6:36:b9:3b:50:55:cf:dd:
d0:d9:16:e4:cb:37:39:76:c7:8c:ae:d3:0e:ba:59:36:5d:bb:
f2:93:9b:41:72:ae:f3:ee:bf:dd:84:d2:12:4d:57:5f:12:0b:
15:c6:30:78:a9:ba:59:16:2b:3e:d6:52:d2:c2:17:fb:d1:c4:
a4:c0:bc:58:f2:1e:3d:a2:f2:c2:cb:8e:3d:d5:36:91:5c:4b:
ac:84:b8:d2:9e:09:1c:7a:21:2b:5a:eb:70:b3:04:f1:62:e4:
ba:a8:f7:4e:f3:de:a4:03:85:71:d8:33:34:0f:34:d9:c8:0e:
f8:65:02:ca:d4:e6:2e:40:a1:ec:96:45:26:2b:2c:fe:c1:04:
3d:ef:4b:6b:2c:6d:3d:80:d5:cf:24:e3:7e:e7:40:10:07:a1:
c7:eb:aa:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 11:19:00 2025 by rpki-client