Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
File: ymFHjk1lm-zoIDxei6jo-C8EcNc.mft (raw, json)
Hash identifier: AfRcSHSFoIcXONjxd2iytfSkoPdVeB9lJU6Em5TB+x8=
Subject key identifier: 0B:7B:B7:5C:FB:7A:19:E0:F4:BE:CF:60:0F:45:5D:2E:9E:D5:49:E9
Authority key identifier: CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
Certificate issuer: /CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Certificate serial: 019A5307AE042887E73E55E78246E6E53A3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
Manifest number: 012F
Signing time: Wed 05 Nov 2025 08:00:03 +0000
Manifest this update: Wed 05 Nov 2025 08:00:03 +0000
Manifest next update: Thu 06 Nov 2025 08:00:03 +0000
Files and hashes: 1: ExSTOwE1cgjVjy4QOn4fnsEg6yk.roa (hash: BWruwZ2sPPFJNl0LTAZ/6PggnfvgGee+556evIuwLT4=)
2: ymFHjk1lm-zoIDxei6jo-C8EcNc.crl (hash: jSo2Xm9r3yWC5vvbrZn//wCYTLoMj88vkMTF7n6hEWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:07:ae:04:28:87:e7:3e:55:e7:82:46:e6:e5:3a:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Validity
Not Before: Nov 5 08:00:03 2025 GMT
Not After : Nov 6 08:00:03 2025 GMT
Subject: CN=0b7bb75cfb7a19e0f4becf600f455d2e9ed549e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e1:08:14:69:04:8f:98:ef:6e:f8:7e:7b:f8:
bf:57:69:6d:a2:5c:1f:e1:37:19:c9:07:89:0a:80:
8a:9e:79:bc:5b:48:ba:ca:46:ee:17:a6:6f:09:93:
1d:dd:ae:43:e7:45:f5:0d:ce:82:02:8a:d3:e9:85:
f9:43:4c:26:10:c3:0d:29:8a:bd:5c:e1:f1:b8:4e:
e1:7c:6d:61:fa:18:3c:6c:0b:ba:5d:2c:90:84:4a:
9f:23:fa:c6:cb:12:ff:4d:4f:a8:a3:d1:0e:c0:bc:
d6:9e:8d:ce:5b:0f:ab:9e:d2:a6:e2:43:cb:54:5c:
00:ee:e8:fd:d7:3b:22:ad:6b:bf:6b:b7:32:de:ed:
89:ca:29:60:06:39:9e:b3:3b:dd:83:4e:2e:83:0e:
8a:4e:ab:5d:76:ee:d4:35:5b:3b:75:56:2f:84:d1:
1a:a6:0b:a6:8b:83:9e:9a:42:a6:fc:ad:b0:a7:f1:
22:bd:76:c0:c0:5e:1f:89:9f:54:0a:15:8e:93:c2:
bd:1d:b2:ea:39:49:30:fc:96:66:4f:62:de:2d:fc:
22:39:54:53:b0:21:ff:82:e6:bf:7e:9b:b9:12:d0:
69:62:b1:0d:76:a0:3a:74:fe:a1:ba:1d:67:3d:9b:
b3:2d:3d:32:87:d7:87:08:5c:fc:cb:40:f9:a8:39:
be:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:7B:B7:5C:FB:7A:19:E0:F4:BE:CF:60:0F:45:5D:2E:9E:D5:49:E9
X509v3 Authority Key Identifier:
keyid:CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:96:7f:6f:a9:d5:26:45:10:9b:bd:36:cb:2e:43:36:2d:e8:
39:93:fc:ac:14:82:fb:16:30:d9:9d:50:94:f5:cb:88:91:6e:
9a:3c:14:7b:3f:41:fc:11:cd:9b:1a:31:e2:97:a2:6f:5c:fc:
94:b3:53:37:4d:b8:45:82:ae:73:7e:2d:87:2f:7d:d1:61:f0:
ff:c0:a0:20:f9:39:e6:3b:bc:c3:cd:56:3b:83:c2:8d:a4:57:
22:91:85:27:52:69:59:35:3c:ec:65:af:dd:4b:dd:a3:74:da:
d4:45:81:42:12:9d:4f:f2:cf:21:d8:46:1b:17:62:d7:81:de:
f2:f8:e5:29:02:ff:72:89:33:2a:12:60:4c:ba:ad:d7:0e:87:
39:95:d6:fd:69:6b:56:ce:60:5b:cc:54:e8:70:e6:99:f7:8e:
b1:f1:99:d6:90:72:31:50:04:7b:19:3b:ef:e4:1f:61:73:01:
bd:96:e4:76:0a:bf:60:8e:43:f7:d3:64:c0:42:47:79:bd:80:
1a:89:32:23:50:f8:21:4f:f3:59:e6:47:81:1c:18:e4:c9:64:
49:50:75:bb:a1:c0:eb:ab:09:84:e0:a4:ee:1b:5a:23:69:0e:
cc:d5:da:d7:a6:83:1f:34:ff:10:df:5e:fa:3e:d4:b4:81:4c:
d7:39:ae:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:38:28 2025 by rpki-client