Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
File: ylmb3Bz8eujML7oV_NgMoRc3hGc.mft (raw, json)
Hash identifier: oJVSRauOTNXPU/9F5Blr8AiQnCM4O/suWXN4oWyi69E=
Subject key identifier: B7:94:F3:99:80:7A:FA:FA:B5:61:9B:06:0A:2E:35:6D:03:CC:AF:77
Authority key identifier: CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
Certificate issuer: /CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Certificate serial: 019A52633DC25AC4DAA62C65B23FDF70DD7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
Manifest number: 0326
Signing time: Wed 05 Nov 2025 05:00:26 +0000
Manifest this update: Wed 05 Nov 2025 05:00:26 +0000
Manifest next update: Thu 06 Nov 2025 05:00:26 +0000
Files and hashes: 1: ylmb3Bz8eujML7oV_NgMoRc3hGc.crl (hash: zkRd9s7x2IfN8DkViKd3rVdmJTla2eDdVSfnI/nHa+Y=)
2: zIZvUw6LEttnk9GqCkFL8S-ncbM.roa (hash: g5dRThI/Wu6nM24igsF8Y2hQEgVjjdxUN3aRLJWGc3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:63:3d:c2:5a:c4:da:a6:2c:65:b2:3f:df:70:dd:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Validity
Not Before: Nov 5 05:00:26 2025 GMT
Not After : Nov 6 05:00:26 2025 GMT
Subject: CN=b794f399807afafab5619b060a2e356d03ccaf77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:54:e1:73:0b:63:ec:7c:19:3e:47:aa:df:c5:
67:82:de:fa:04:ba:4f:32:4e:c4:58:9a:9f:32:dc:
71:fc:12:fb:2f:8c:22:c8:d7:21:bf:82:7b:2e:24:
16:98:c5:0c:47:c9:de:8a:38:ed:6b:33:4a:01:74:
45:b9:98:97:6b:69:6e:44:2b:53:54:f4:1e:8e:35:
d6:09:92:bb:13:b3:3f:10:d6:4c:ed:c2:cc:28:fa:
55:bb:cc:a8:e6:fd:6d:0c:9f:cc:94:66:cc:8d:35:
d7:d1:27:ec:82:6c:9c:05:81:e0:f6:ba:60:4f:31:
55:cf:a7:de:c2:f4:9e:e4:59:a9:b5:89:ab:b4:c4:
98:a9:a0:ec:5f:b6:f6:a0:63:e5:5e:30:f8:dc:2f:
65:5c:cd:fe:81:74:ae:ca:f3:06:a1:f2:60:bd:82:
65:44:a4:ed:d0:ed:3a:e9:81:6d:db:4d:5e:52:07:
b1:94:f9:b3:a1:c6:49:cd:39:52:18:aa:9f:27:b7:
15:c0:e3:d5:f5:16:bd:7a:7a:e2:10:42:71:91:e3:
c3:5a:87:dd:f9:aa:81:55:65:af:0b:40:70:44:d2:
5b:8a:9a:b2:4a:ba:1c:f3:b4:88:69:7d:19:91:e7:
4f:84:a7:72:4c:76:87:d7:1c:c1:82:e2:69:f4:a6:
48:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:94:F3:99:80:7A:FA:FA:B5:61:9B:06:0A:2E:35:6D:03:CC:AF:77
X509v3 Authority Key Identifier:
keyid:CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:d4:44:02:01:a3:ec:db:1a:b2:9f:cf:eb:0b:42:a1:69:69:
8a:26:44:7f:3f:7f:b7:7e:17:d0:86:6b:ab:83:92:bb:ac:05:
e0:b6:cb:86:13:45:81:8d:31:e2:d3:1c:ae:dd:1b:9b:95:59:
38:de:86:09:0e:5e:d4:70:f6:a5:70:47:40:b3:51:ab:b2:3b:
71:65:eb:81:c1:f4:19:bc:0e:53:3d:8d:69:b1:0c:f5:58:77:
aa:01:44:f0:4c:f1:1a:f2:18:ab:ee:77:89:df:10:dd:c4:cd:
40:95:28:0a:4b:fa:b0:00:49:67:a3:4e:40:17:38:a3:6e:62:
d2:0a:42:84:1d:28:b2:9f:54:bd:db:57:a7:37:aa:dc:02:23:
58:fc:f6:60:24:71:b1:f2:8f:50:e4:4c:18:87:94:08:3e:1f:
01:23:00:69:77:9e:e7:62:75:e8:34:62:97:7d:41:83:50:16:
33:51:b2:e8:f1:e8:85:c3:65:f6:0f:c9:99:27:be:12:8b:7b:
31:73:1c:12:a8:c5:24:c5:83:9f:8f:71:91:f2:14:d1:32:4b:
68:f5:3d:e5:0a:08:1e:d7:87:b0:2a:4b:a3:da:47:13:2c:19:
af:15:6e:ad:67:a8:b9:61:7a:7f:e0:ba:09:3d:65:b7:83:a2:
30:28:27:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 06:54:35 2025 by rpki-client