Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft
File: YAJlJf1EpPx1siRPgNAiY09fdjU.mft (raw, json)
Hash identifier: K/ODKeTWi0RQYdD2KkPE0Z6dSXT6j/UjBOZCO5m29eg=
Subject key identifier: A0:9C:9F:B6:84:62:A6:ED:6B:A1:B5:DD:A4:E7:AA:A8:CF:E3:41:C9
Authority key identifier: 60:02:65:25:FD:44:A4:FC:75:B2:24:4F:80:D0:22:63:4F:5F:76:35
Certificate issuer: /CN=60026525fd44a4fc75b2244f80d022634f5f7635
Certificate serial: 019A55D288EBBD394838231B85872B6BEC6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAJlJf1EpPx1siRPgNAiY09fdjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft
Manifest number: 0108
Signing time: Wed 05 Nov 2025 21:00:52 +0000
Manifest this update: Wed 05 Nov 2025 21:00:52 +0000
Manifest next update: Thu 06 Nov 2025 21:00:52 +0000
Files and hashes: 1: YAJlJf1EpPx1siRPgNAiY09fdjU.crl (hash: NuHE3kWeUQsSnxyp2M4DOtlNafsoC3v0OLTgRg9Z9uQ=)
2: g9nWnsJ4s0Q4AdnedyFGxQkezGU.roa (hash: BaThYpCk19U9MWT3c8G8+GXTTA8NVbJPkga6Sb96+1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAJlJf1EpPx1siRPgNAiY09fdjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:55:d2:88:eb:bd:39:48:38:23:1b:85:87:2b:6b:ec:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60026525fd44a4fc75b2244f80d022634f5f7635
Validity
Not Before: Nov 5 21:00:52 2025 GMT
Not After : Nov 6 21:00:52 2025 GMT
Subject: CN=a09c9fb68462a6ed6ba1b5dda4e7aaa8cfe341c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:20:97:22:10:18:55:31:df:de:39:cb:24:c6:
ce:ad:21:ca:a8:79:71:f8:80:0d:01:d4:92:a5:0c:
74:c4:4c:cf:7c:8b:9a:d0:7b:56:9f:e6:cd:f5:85:
02:5a:f0:f5:3a:f8:32:c7:45:f5:cc:12:91:6a:c0:
06:05:70:ba:ba:e4:5e:d3:33:7c:b5:d8:08:8c:ee:
6c:6c:f9:ca:25:9a:86:de:e3:26:dd:f0:1c:d7:ee:
ca:05:21:a6:19:33:3a:fe:9d:06:a7:aa:ee:73:2c:
08:fa:68:e8:4e:33:c5:13:1b:32:9c:f1:5f:6c:7b:
d7:49:6c:4b:9a:f9:2e:f7:9a:66:c2:d0:19:1e:d2:
c0:67:75:d4:cc:50:bb:da:90:ba:d5:e4:50:cf:50:
5d:a8:b7:4f:0c:3a:82:b5:43:b4:e4:4a:95:70:40:
a7:cc:61:4e:62:f2:54:b2:76:67:93:90:db:c3:9a:
c0:97:43:77:41:d3:cd:f6:7a:74:2a:b3:0e:c2:1f:
2f:c7:81:09:49:be:1f:f7:16:c5:f0:79:9a:bd:f6:
74:fe:87:83:51:72:f2:75:1a:72:4f:93:4e:b1:3e:
00:f5:d6:11:cc:68:b9:0f:14:20:0a:eb:55:0b:e5:
64:62:bc:c4:e2:16:ba:29:0e:f4:1a:74:63:e0:98:
d5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:9C:9F:B6:84:62:A6:ED:6B:A1:B5:DD:A4:E7:AA:A8:CF:E3:41:C9
X509v3 Authority Key Identifier:
keyid:60:02:65:25:FD:44:A4:FC:75:B2:24:4F:80:D0:22:63:4F:5F:76:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAJlJf1EpPx1siRPgNAiY09fdjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:ca:b1:08:72:66:b2:f2:08:3a:d3:6f:39:42:ed:5a:69:0e:
df:bc:a1:c2:62:28:bd:7a:70:06:0c:c7:90:fc:23:88:3a:7d:
b1:99:3b:b9:58:19:e0:cf:b4:6e:87:36:0c:ab:54:38:fa:da:
48:d8:5b:9b:83:ff:49:75:14:d1:3c:f4:83:d1:8a:c2:a6:e0:
e2:02:3e:2b:03:3d:a2:79:5e:44:87:8b:a6:26:5f:68:f3:57:
1b:ba:0f:08:50:5a:2c:b8:9e:df:72:cc:ab:85:b8:a2:d8:f0:
96:e4:d1:da:94:8f:a2:7d:e3:3c:65:6a:01:34:e8:0e:98:6e:
01:2a:8f:e6:a2:0e:07:c3:e4:13:d5:d9:cf:21:2e:34:96:bb:
25:df:e8:d3:40:07:f5:d4:f5:5b:0b:92:46:4f:b8:04:09:76:
5b:45:5e:0c:6a:3c:60:99:68:cf:92:96:75:25:a3:d8:e3:b0:
09:b4:31:b0:f8:93:08:cc:89:d5:ec:16:a8:b0:eb:25:a0:1d:
0b:02:a7:34:5b:f4:fc:dc:fb:82:e3:42:83:80:01:ee:8d:4b:
31:34:8b:f9:b5:48:8d:4b:69:c8:74:a4:26:22:55:f1:8b:c6:
94:4e:a9:7c:43:87:66:7a:2b:b1:cc:46:82:25:18:c6:76:f5:
0d:60:f8:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 06:05:58 2025 by rpki-client