Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
File: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft (raw, json)
Hash identifier: yTKjaNTscgAXrAvbDbzHwQ1nj+8xjcmvgBzVJwtOLYc=
Subject key identifier: FE:F3:12:35:20:75:98:55:F0:59:AC:F8:72:E2:40:71:4F:D5:53:99
Authority key identifier: CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
Certificate issuer: /CN=ca434d399d93a19d8a8108456c5575096c2ae588
Certificate serial: 019A518773221B376606AC2874366A70F514
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
Manifest number: 072F
Signing time: Wed 05 Nov 2025 01:00:22 +0000
Manifest this update: Wed 05 Nov 2025 01:00:22 +0000
Manifest next update: Thu 06 Nov 2025 01:00:22 +0000
Files and hashes: 1: 6KeHOxxWviP0lluNL5sOXVdQY7c.roa (hash: kUeVBsIsjzs7OuA1c4/VFEC1ddAvMO/ONIYaR+/BuFA=)
2: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl (hash: dnr8Cs07oyRZEWw0tTWQh3fWxzwGtqYJdSPDTdJviqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:73:22:1b:37:66:06:ac:28:74:36:6a:70:f5:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca434d399d93a19d8a8108456c5575096c2ae588
Validity
Not Before: Nov 5 01:00:22 2025 GMT
Not After : Nov 6 01:00:22 2025 GMT
Subject: CN=fef3123520759855f059acf872e240714fd55399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:47:7b:81:c7:76:ea:09:fe:8a:6f:fd:d3:80:
98:ff:61:38:44:0a:99:8e:d9:56:ba:aa:d1:33:cd:
f9:2d:97:98:3d:0b:9a:96:90:02:c3:a8:2c:78:f9:
51:78:4a:d1:b1:e3:3c:04:6c:97:b6:52:86:e3:c0:
17:6e:75:1c:49:a9:95:ae:0c:f5:0c:69:97:db:b8:
db:a7:96:b0:e3:29:c7:9a:2d:69:55:a3:a7:b0:2c:
7d:c6:56:8d:e7:fa:5e:09:a9:26:84:14:37:d8:78:
08:69:2e:91:4c:c7:3d:24:0a:a0:3e:60:7f:f2:1e:
93:9e:0b:b3:78:cd:cc:5c:a3:fa:0c:4a:3e:ed:16:
f4:4b:34:1d:50:9c:9d:22:f5:aa:10:84:8a:d3:29:
2f:20:82:bb:8d:90:54:6b:58:41:d9:d6:53:0a:97:
73:6f:cd:1c:4d:fd:b5:45:cf:ad:d8:93:47:dd:9c:
d4:8e:dc:89:c4:59:17:60:d0:d4:62:3d:fc:c3:6f:
91:25:10:0a:ab:96:9d:bf:2e:9e:26:3e:fc:24:b6:
9f:0e:96:64:46:1f:8b:c5:49:9f:5a:bd:30:68:ee:
de:07:0d:cc:26:10:c0:cc:4d:b5:23:53:c9:c3:0a:
bc:41:6e:2f:56:69:ee:a3:e2:8f:92:dd:99:68:ca:
06:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F3:12:35:20:75:98:55:F0:59:AC:F8:72:E2:40:71:4F:D5:53:99
X509v3 Authority Key Identifier:
keyid:CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:1a:fa:b2:ca:a7:cd:9f:90:19:3c:af:6f:d5:6b:fe:65:bf:
0a:64:26:f9:db:2d:0f:d0:05:66:e9:7e:22:4a:05:3a:28:cd:
ee:97:f8:12:4c:13:1f:6f:f8:b7:b3:9c:64:aa:44:8b:29:70:
5e:3d:72:61:88:f2:4a:c7:c9:b8:5b:b3:bd:98:30:f6:8c:78:
42:e2:87:23:14:cf:45:d2:8d:a0:c0:19:5b:f9:f3:f6:d9:09:
7a:ca:1c:03:4c:e3:4d:52:27:b1:0b:ae:aa:62:ad:f8:f1:b6:
64:fe:c0:ad:62:73:9a:8d:da:25:c8:c3:6b:23:79:b4:09:2f:
7a:be:9a:6b:e5:fd:bb:2f:d8:b3:9a:5c:db:da:82:44:89:bd:
70:97:ab:06:15:6d:a6:1e:64:2c:be:94:49:74:72:04:23:34:
01:8e:85:b1:33:02:c6:5f:4f:dd:72:c5:96:33:d2:f5:2c:d4:
72:d8:ba:c3:3e:f3:f9:2e:9c:15:98:29:ff:d8:a1:2c:72:15:
c6:95:01:70:5b:2c:98:0e:0f:02:a9:6a:dd:d4:6e:9e:59:2f:
c0:3c:64:77:93:dc:3c:da:d5:51:7f:d2:1e:9d:3b:3a:bc:b3:
3f:32:55:29:bc:45:c4:1a:f5:4c:de:2c:0c:22:51:ea:3e:66:
0d:98:19:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:52:36 2025 by rpki-client