Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
File: YhoTCpDLA344A_6gv0ZaoIL-NJg.mft (raw, json)
Hash identifier: 0klmUB5lme6dCrybTmUXKeNVMgvAV4Lgg4GTjv4sN0U=
Subject key identifier: C8:61:91:4F:0E:8F:46:86:3A:73:F2:C3:C1:C4:20:00:40:09:D0:F0
Authority key identifier: 62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
Certificate issuer: /CN=621a130a90cb037e3803fea0bf465aa082fe3498
Certificate serial: 019A4FCFC017EE59A0C1D57BA1115DDB25E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
Manifest number: 0535
Signing time: Tue 04 Nov 2025 17:00:06 +0000
Manifest this update: Tue 04 Nov 2025 17:00:06 +0000
Manifest next update: Wed 05 Nov 2025 17:00:06 +0000
Files and hashes: 1: 8tq6vUxikXVafkdQNOumeQjFfpc.roa (hash: UpmsMokgr2OHdk8MVVsUZdaiVZYh5g21JKYfdCc4ZA8=)
2: YhoTCpDLA344A_6gv0ZaoIL-NJg.crl (hash: 2fycJW2j7yNhpyIuG7dU8Qghnf11GAy1olAIGLTGH8c=)
3: j89ASOslTb0sA8qPaNCnvdarbHI.roa (hash: pTH6+0WVaBMdNBqgh83yrPXmlHTEaPDbAotvSzt0CT4=)
4: vSrVfCiFhwuThaFge_HlQGTrHjk.roa (hash: Bc63krCzWLaf7LOD/k916HgQOiH2H7M6asbeefYBGos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:cf:c0:17:ee:59:a0:c1:d5:7b:a1:11:5d:db:25:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621a130a90cb037e3803fea0bf465aa082fe3498
Validity
Not Before: Nov 4 17:00:06 2025 GMT
Not After : Nov 5 17:00:06 2025 GMT
Subject: CN=c861914f0e8f46863a73f2c3c1c420004009d0f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ee:20:fe:69:0d:e7:88:13:0d:1d:fb:3c:48:
b2:93:1c:1f:ff:2c:bf:5b:0a:d2:07:8d:53:f2:12:
ea:e3:3f:9a:f9:aa:15:1a:d2:80:ad:5a:01:8a:b5:
77:d5:1a:85:1e:8a:0a:a5:61:64:bc:1c:2e:41:29:
b9:36:9b:17:1c:70:c8:a7:dd:4e:d4:b8:93:59:92:
81:89:df:a9:a3:52:92:6f:c0:96:ad:80:5c:59:53:
2e:63:28:78:87:21:59:14:de:ef:ee:59:50:9f:ff:
9c:9d:f3:93:a1:f9:8a:93:3d:b5:48:ea:7a:15:7a:
e0:1e:19:0b:a0:0b:46:9e:85:19:95:51:35:01:75:
5a:91:2f:05:a1:9e:09:f7:c0:99:92:ad:64:5b:b1:
99:72:1f:62:da:1e:80:99:95:cd:aa:8c:22:d1:40:
84:fe:d0:5a:9e:0d:b3:d5:7c:09:d9:1c:71:48:37:
00:ef:35:23:a1:ea:82:15:c2:09:30:35:3d:6d:fe:
de:c6:22:b5:94:49:fc:5d:92:b3:78:b4:34:42:b9:
62:b6:ce:e9:d8:7f:8f:bf:9d:84:36:f9:e6:c8:a6:
02:c1:b0:a8:4e:c2:c1:11:0d:29:e9:5f:e1:e3:6d:
f9:74:49:39:43:df:1c:34:75:72:48:4c:1a:4d:7c:
1e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:61:91:4F:0E:8F:46:86:3A:73:F2:C3:C1:C4:20:00:40:09:D0:F0
X509v3 Authority Key Identifier:
keyid:62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:68:58:65:23:fb:5b:8e:8f:27:56:3e:97:f3:2a:cb:33:dc:
4c:0f:f5:7e:cb:b1:9b:b4:1c:d1:a6:26:d7:79:4c:a1:47:86:
3d:b3:cd:bd:1c:e0:5b:dc:ca:e0:37:ec:46:27:51:d9:92:23:
6d:34:68:6d:9e:65:68:28:f3:b6:29:b6:2f:30:81:99:d0:8b:
ad:46:1b:7a:7b:5e:5a:81:40:d7:86:ba:ec:34:91:03:fd:95:
f5:ab:03:11:33:90:c8:e4:85:ed:5b:98:b8:09:ef:83:4f:71:
e3:4b:99:75:da:36:f1:d5:7b:90:8d:d7:aa:3b:82:01:4b:b3:
09:ae:6c:c3:25:4d:15:a5:38:28:ad:dd:e0:4b:3d:1f:07:6f:
57:c1:9b:50:66:51:88:3f:0c:20:01:7a:b1:b3:97:da:f2:56:
77:5a:d3:60:56:f1:7e:07:f8:b8:82:90:ab:46:c4:0c:03:93:
5d:dc:c5:17:d2:10:4c:21:a1:75:c5:11:1a:67:b9:af:b2:31:
3b:73:87:d0:32:20:11:93:d8:45:36:ef:9e:0b:db:70:d4:ee:
f5:46:7b:1c:be:6a:0a:c7:f3:38:20:57:fe:a2:8e:61:7a:48:
a4:a5:24:1b:30:46:28:83:70:5a:d4:ac:cb:18:f9:ba:ee:ec:
d9:3a:db:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 21:01:57 2025 by rpki-client