Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
File: yxODRz6KqHJwaPx1LgYOPb9j4O8.mft (raw, json)
Hash identifier: 1sEv8vyoJIe9fYov+meu+o65o9FtXvqzJ24IhB55cVg=
Subject key identifier: FD:F4:B6:68:9E:2A:A7:DB:43:27:C9:5D:AB:06:7D:1A:F0:7E:1D:95
Authority key identifier: CB:13:83:47:3E:8A:A8:72:70:68:FC:75:2E:06:0E:3D:BF:63:E0:EF
Certificate issuer: /CN=cb1383473e8aa8727068fc752e060e3dbf63e0ef
Certificate serial: 019A4D0742A4A4BB124D5DE084AFAEFD7A05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
Manifest number: 08C8
Signing time: Tue 04 Nov 2025 04:01:52 +0000
Manifest this update: Tue 04 Nov 2025 04:01:52 +0000
Manifest next update: Wed 05 Nov 2025 04:01:52 +0000
Files and hashes: 1: rOX9zRwObaYZKZTR0WDKGvQYCI8.roa (hash: AVl8Cu7AhfVM1Wh1VdzrltPVEMOUXlEEy7ZTpT+wzAA=)
2: yxODRz6KqHJwaPx1LgYOPb9j4O8.crl (hash: WLnSLAiGwzr0pM3PnY81HqQu1aMdHHtsws+vROrfRpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:07:42:a4:a4:bb:12:4d:5d:e0:84:af:ae:fd:7a:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb1383473e8aa8727068fc752e060e3dbf63e0ef
Validity
Not Before: Nov 4 04:01:52 2025 GMT
Not After : Nov 5 04:01:52 2025 GMT
Subject: CN=fdf4b6689e2aa7db4327c95dab067d1af07e1d95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7e:cb:3c:51:15:5d:ce:28:9c:c7:bb:d1:99:
f2:35:80:f1:34:96:8a:05:0d:67:83:90:8a:83:1a:
d3:68:b3:ce:18:42:7e:8d:70:25:ce:51:92:f7:00:
56:ce:1e:e8:de:ed:88:96:e5:61:3a:fb:30:a4:8d:
ef:da:89:40:8c:4e:bf:34:d9:1b:52:bb:a4:c1:51:
8e:eb:ee:5e:2d:bb:79:47:11:4c:b5:3e:e5:fc:b4:
54:27:af:a1:df:31:cd:c2:b0:29:8d:ba:b1:60:62:
a7:f6:6c:df:b3:0c:7e:be:4b:1d:87:af:c5:48:d9:
0c:a5:a3:ea:9b:ad:c2:6f:4b:7f:b4:b2:29:c6:44:
2b:f3:46:12:55:1a:d1:cf:10:b0:cf:27:87:b3:a8:
1d:bf:d8:41:ee:75:69:37:66:13:42:f6:d6:e5:e8:
f7:3f:41:ef:f5:cf:31:4f:9a:b8:cc:2e:ef:da:7d:
8e:57:24:aa:ee:0d:c7:cb:4a:b4:7c:8b:f6:5b:21:
db:a6:69:dc:29:40:2c:2f:75:bd:60:60:10:62:74:
93:60:0b:93:0b:23:f1:05:90:26:73:70:67:f5:1c:
bb:29:a6:11:63:b9:ba:da:e3:09:4e:7a:35:79:0f:
74:a6:fe:21:25:14:ab:f3:1f:40:18:bb:81:ee:a5:
ca:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:F4:B6:68:9E:2A:A7:DB:43:27:C9:5D:AB:06:7D:1A:F0:7E:1D:95
X509v3 Authority Key Identifier:
keyid:CB:13:83:47:3E:8A:A8:72:70:68:FC:75:2E:06:0E:3D:BF:63:E0:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:a0:ec:6b:db:ef:82:eb:fb:00:02:fb:60:8a:cf:0e:5b:01:
7c:25:03:d7:fe:69:70:25:9e:53:6e:a1:95:24:87:36:e8:0f:
27:37:ca:8a:36:95:94:33:ad:1d:fe:2c:4b:38:1c:04:16:ad:
8f:94:57:b4:5d:4e:eb:43:5d:66:33:00:62:ea:c7:af:6a:b6:
80:62:e8:66:d9:03:7f:9b:b2:58:86:47:62:c9:6d:93:ca:d6:
ed:ac:d0:9b:77:d6:95:bc:74:0a:2e:66:22:c8:f5:35:36:19:
1c:aa:d2:64:6e:32:8a:76:83:5f:ed:ad:f3:9a:94:b0:4d:23:
86:71:64:42:7d:c0:a2:59:75:24:ac:7e:8a:04:6a:be:d3:3f:
4b:1f:9e:28:b0:e2:2e:25:cc:82:ac:57:b0:03:3d:01:13:d4:
45:96:36:3e:d6:b0:03:20:c2:b9:d7:96:84:e0:31:f8:27:b3:
9c:33:10:9f:f8:cf:cb:b8:fe:e1:f3:ce:4e:6c:7d:71:e7:62:
0f:27:56:86:d4:53:d2:3a:84:f6:ef:5d:f6:e2:cc:7d:1c:6b:
39:79:bb:c6:db:f3:1d:b5:61:83:fe:dd:86:c0:2b:e1:55:7f:
d9:04:98:30:dc:46:39:d1:cf:be:00:48:79:69:aa:00:87:c0:
27:56:51:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:56:33 2025 by rpki-client