Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft
File: YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft (raw, json)
Hash identifier: smZN2o1LmGgDMiissxIWselCcck0k+SriGOGmcCnLng=
Subject key identifier: B4:D9:93:48:28:12:CB:4F:B3:9D:3D:60:A5:AF:27:C7:AF:17:24:2A
Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
Certificate issuer: /CN=621310302018a387c692146a35efd33a6ed6b1ef
Certificate serial: 019A383555EAB16EFE9C9DE77FA74942CF45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft
Manifest number: 170B
Signing time: Fri 31 Oct 2025 03:00:10 +0000
Manifest this update: Fri 31 Oct 2025 03:00:10 +0000
Manifest next update: Sat 01 Nov 2025 03:00:10 +0000
Files and hashes: 1: NRlbji1zgmp6wd1PjpDk0T2ZUGk.roa (hash: TKAQNNpSaY4TAI1TdJLCf/Ljbi9ccCQ85au2gXamNHA=)
2: YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl (hash: kx3RnfAr8UGXVF5mixcjEjXb6FRuA+6yetrnIK79Jks=)
3: a-LdFc8kFHmTn2Z0Vu6JHLUtEY4.roa (hash: zTR8ty0nmJzU13XE2BvXWY2tGZYklQKm1YYaB327LpQ=)
4: el7j1J3bDKT27ieG83FPrQYbZJc.roa (hash: T0KRecSjSVtSKj2we6RG/6efDR4xy2f/rpalGX+ig90=)
5: od_NfkWMgnzZGkwU7wJ-RgWOeM4.roa (hash: OZscsQ8cir5jkIZyLY0FUkHozKmgjWJmCvTcbzJzQOg=)
6: tinXUk407KICO2MXsH1p4TReydw.roa (hash: linbqgFB5KTsziPayiqOokYdnyWHwGO4kAHLVkJgE3k=)
7: wxZtKKgCuX_XkT9wjC8PBIL2aLI.roa (hash: tIV+HptpEfjZ8DjgmHhOJU8c4e/cERhkwqc7ixWl0UI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Nov 2025 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:38:35:55:ea:b1:6e:fe:9c:9d:e7:7f:a7:49:42:cf:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef
Validity
Not Before: Oct 31 03:00:10 2025 GMT
Not After : Nov 1 03:00:10 2025 GMT
Subject: CN=b4d993482812cb4fb39d3d60a5af27c7af17242a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:57:9b:f8:44:7f:2e:7d:48:82:84:48:f8:f6:
98:ce:b0:37:bd:df:c5:f2:d5:5f:02:7e:0d:95:8a:
22:c2:3e:c5:82:0a:54:bf:72:4d:a5:87:01:28:9c:
80:e0:c4:85:81:63:8b:9f:8b:77:54:e3:6b:3c:b0:
ac:37:05:29:71:28:4e:44:0b:fa:50:13:84:f1:34:
96:7a:84:4c:23:14:16:c3:ca:80:37:45:b1:11:64:
ea:06:fe:e2:71:e1:1b:67:75:c5:df:aa:36:64:21:
dc:16:06:19:df:8b:a7:48:a1:dc:cb:b6:3a:22:17:
14:84:6a:3c:9f:1f:10:f5:c8:10:d4:aa:62:66:04:
3d:58:45:71:51:72:89:70:b8:7d:b8:45:42:cb:ca:
ae:c4:6c:75:d6:3b:d4:3e:44:02:51:16:eb:08:d4:
7f:c3:42:3b:83:64:7c:0f:e9:fc:65:27:1c:11:ed:
4d:58:4a:87:65:11:a0:f6:24:ad:aa:79:a0:33:5e:
27:e5:83:71:76:be:43:56:a9:70:f5:2f:4f:c7:38:
34:ef:0c:9b:ab:7c:19:81:75:76:9e:09:3d:ff:d9:
17:83:a3:2b:d9:8e:b4:f5:44:5f:87:ab:66:98:ed:
c8:37:f4:df:49:80:69:7a:63:1c:c0:c7:26:9e:bb:
1b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D9:93:48:28:12:CB:4F:B3:9D:3D:60:A5:AF:27:C7:AF:17:24:2A
X509v3 Authority Key Identifier:
keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:fc:07:9c:9d:18:54:a5:ce:79:d4:b0:1e:d5:25:4e:4d:9a:
85:7a:e6:7b:67:16:53:02:43:0e:2b:3a:94:5c:db:b5:11:94:
15:26:8e:d4:73:80:c0:9a:f1:fa:02:78:ed:45:03:3a:c2:bf:
49:fd:a4:4f:4a:84:79:d6:0d:66:7d:30:a2:66:ee:59:62:d4:
0f:9e:5a:e2:61:3e:82:89:41:54:9a:2b:68:b8:ac:13:08:43:
c7:e6:03:95:ac:6e:78:43:42:8a:d3:82:9b:87:be:56:a9:c1:
58:5b:72:7a:79:3d:85:1f:1b:12:17:d9:17:c8:36:86:d6:6e:
16:4b:c7:dd:16:75:d3:1e:f0:25:a9:5a:63:76:86:94:ac:2b:
cd:ab:d9:3d:98:00:6a:53:36:f3:cb:36:f4:ce:2e:ad:13:44:
f4:e2:67:84:0b:56:91:19:7a:3b:23:ff:81:46:35:85:62:1a:
f4:a9:eb:00:ef:3e:19:a6:d0:6f:76:65:47:91:df:8b:4d:5e:
93:a5:4a:23:a0:5e:5e:ef:9d:80:57:ef:68:3c:19:2f:86:ef:
c3:1a:e4:6d:f8:23:70:36:3f:af:e1:11:4d:72:75:ff:29:f4:
2d:34:8b:0f:28:89:ad:cc:7f:82:a4:3d:97:25:ce:80:8b:50:
2b:0b:70:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 31 11:41:54 2025 by rpki-client