Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft
File: YMjVd0f3KXAO8vVhT2397I0Rny0.mft (raw, json)
Hash identifier: oQ7wwHwpwMYHw4tMXHMzu8I9rpfz1a+cfGekWEtsk5w=
Subject key identifier: 44:D4:EB:2F:B8:46:19:25:7E:06:6C:C3:E9:9C:B6:55:32:B6:83:87
Authority key identifier: 60:C8:D5:77:47:F7:29:70:0E:F2:F5:61:4F:6D:FD:EC:8D:11:9F:2D
Certificate issuer: /CN=60c8d57747f729700ef2f5614f6dfdec8d119f2d
Certificate serial: 019A4EF46DA629C39709D24619D4F94F654D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMjVd0f3KXAO8vVhT2397I0Rny0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft
Manifest number: 0FE8
Signing time: Tue 04 Nov 2025 13:00:32 +0000
Manifest this update: Tue 04 Nov 2025 13:00:32 +0000
Manifest next update: Wed 05 Nov 2025 13:00:32 +0000
Files and hashes: 1: YMjVd0f3KXAO8vVhT2397I0Rny0.crl (hash: rysIvgfygIvUzoQ31qbk0PCHnyKc3ndcl4DIX5THPfI=)
2: qx-NGj8MV_Cd9zpPet-1VEa08Ro.roa (hash: cxZbSa6oQLmYFFxeIAfjlhTWw1+qGjLvscb3SdGJg1o=)
3: r2K_C06ic0Dj0a3NFZhhI6ooNvs.roa (hash: bne8Sm5wB0CMu858I+GoE6ZpkxWpdhA80NITFW1Cun8=)
4: yeRaarOsqQL6T8MId8Dw-zjDpyI.roa (hash: PcKi02vr0pDiDVlpa/LbtFTT0UyPuUQNtlWvZyQzOuw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YMjVd0f3KXAO8vVhT2397I0Rny0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:6d:a6:29:c3:97:09:d2:46:19:d4:f9:4f:65:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c8d57747f729700ef2f5614f6dfdec8d119f2d
Validity
Not Before: Nov 4 13:00:32 2025 GMT
Not After : Nov 5 13:00:32 2025 GMT
Subject: CN=44d4eb2fb84619257e066cc3e99cb65532b68387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:87:58:ba:a2:55:29:9e:10:d0:f0:f6:36:7e:
18:2a:d8:c5:0f:7c:e4:ee:4f:c5:95:72:9f:6f:bc:
e1:55:65:71:2c:67:df:0e:4c:42:c7:41:ef:38:82:
2e:b7:7e:e5:36:b7:3d:ff:e9:4d:b5:41:b9:49:2b:
bf:a3:b9:58:5f:c3:2f:de:00:80:c0:d9:8b:0e:f1:
fd:02:86:87:43:e3:66:85:a3:34:42:71:62:d8:ca:
e5:ee:94:c1:eb:fd:04:aa:8d:fb:38:32:48:80:2e:
16:60:9d:2e:6e:5a:23:69:1a:cf:e3:10:a3:bd:48:
ae:db:25:44:bf:ed:b0:f2:72:d6:6e:0e:a1:d6:48:
e4:67:42:98:7a:1c:5e:79:b4:0d:47:9f:81:d5:7a:
7a:9c:0f:b0:c4:94:07:35:2b:44:fc:7a:fb:fe:5b:
60:eb:a0:f9:52:c6:5c:af:ac:15:d4:fa:bd:48:4c:
35:ca:96:be:e4:e7:dd:bd:3a:95:95:1b:69:68:b6:
09:c1:45:48:64:5b:23:97:09:3b:f8:ef:f1:cc:18:
d0:b4:31:79:57:ce:82:ee:c7:6e:fd:9b:a3:80:3c:
af:a7:24:1c:19:17:7c:d1:1a:5d:d2:fe:cd:50:92:
e6:c4:b5:ee:ee:ee:a1:69:eb:77:cf:c5:70:5f:90:
15:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:D4:EB:2F:B8:46:19:25:7E:06:6C:C3:E9:9C:B6:55:32:B6:83:87
X509v3 Authority Key Identifier:
keyid:60:C8:D5:77:47:F7:29:70:0E:F2:F5:61:4F:6D:FD:EC:8D:11:9F:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMjVd0f3KXAO8vVhT2397I0Rny0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:93:1f:e5:7d:ac:3f:85:e7:3a:98:59:45:cd:c3:f3:23:a6:
6c:86:4d:aa:dc:b7:b4:9a:bf:ba:cf:aa:04:49:9f:a5:09:21:
58:8c:ff:30:b6:62:ef:87:fc:f4:8f:a8:96:d0:41:90:7d:a9:
eb:8f:8f:e4:00:ab:d7:bb:ea:dc:47:2b:50:5e:c0:77:ab:01:
73:1f:70:34:77:b4:15:b4:a8:75:74:a6:d0:87:77:3c:7e:df:
5f:34:59:75:3d:49:a9:63:a8:66:09:3d:5f:8f:05:f1:7e:c4:
76:a6:eb:9f:c9:fc:ad:38:7e:f4:45:14:49:18:1f:56:dc:dd:
34:46:37:15:dc:a1:58:3e:ad:ce:bc:47:c4:0c:bc:31:7d:65:
0e:8b:c5:5e:ba:79:24:03:04:5d:1c:2f:34:ef:18:7a:52:b2:
ce:85:43:fa:63:9e:43:60:8b:72:ae:32:7b:bc:00:83:90:fb:
ad:2d:b8:6d:d3:c2:7e:80:99:17:9d:b2:56:85:44:c4:ed:46:
2f:c9:b3:76:8c:ce:69:b4:02:d0:8c:33:3c:d9:02:f8:6e:79:
23:0f:0a:5b:8e:29:1b:88:c5:a9:25:b7:af:9c:e4:c5:3b:49:
7e:0c:14:57:64:9f:b1:4f:ea:4c:c4:c8:2b:18:3a:29:98:0e:
9f:4a:52:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:59:20 2025 by rpki-client