Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft
File: YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft (raw, json)
Hash identifier: +F4lk17PkhTcg+V40cCoQkYr9cAXD+965E7wwVlSv68=
Subject key identifier: 6D:46:98:DB:7D:41:4B:54:87:8C:4A:17:12:A7:D0:49:0E:83:96:AC
Authority key identifier: 61:47:99:C6:7C:08:54:7D:80:BB:35:D0:2D:AE:50:5D:5A:65:DC:5B
Certificate issuer: /CN=614799c67c08547d80bb35d02dae505d5a65dc5b
Certificate serial: 019A1E081EACA8FCFE85181E0489DB1391CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft
Manifest number: 0902
Signing time: Sun 26 Oct 2025 01:00:39 +0000
Manifest this update: Sun 26 Oct 2025 01:00:39 +0000
Manifest next update: Mon 27 Oct 2025 01:00:39 +0000
Files and hashes: 1: R4scpsswEHtZHUE-nwU3HaURKXg.roa (hash: og9/o35XSt8h5Pisf2/20OBVwfKzhDJ2QToFc39vgzg=)
2: YUeZxnwIVH2AuzXQLa5QXVpl3Fs.crl (hash: KUGSGGHyhD6Im+Gag66IkInZM3OVvabUYk5qyG7REv0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 01:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1e:08:1e:ac:a8:fc:fe:85:18:1e:04:89:db:13:91:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=614799c67c08547d80bb35d02dae505d5a65dc5b
Validity
Not Before: Oct 26 01:00:39 2025 GMT
Not After : Oct 27 01:00:39 2025 GMT
Subject: CN=6d4698db7d414b54878c4a1712a7d0490e8396ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:7a:78:1b:b5:b5:b1:a8:01:e9:60:07:ae:83:
3b:82:c4:3f:d6:5a:79:3d:95:7e:86:2f:01:77:60:
f0:cc:47:55:88:df:52:43:0c:1b:2c:eb:6d:f2:eb:
75:82:4a:4c:7d:b8:7e:40:21:ae:28:d2:72:1b:42:
d6:3d:27:21:a0:a1:eb:82:0a:0e:55:8e:09:fe:16:
ae:12:1f:b2:79:69:0f:81:00:24:f4:e3:ae:f7:b7:
38:fd:2b:20:c2:de:f3:cc:0a:c2:ed:ae:51:6d:9a:
6e:67:b2:df:49:65:9d:84:e0:a0:d5:6e:86:0f:60:
5f:92:9a:cc:16:33:33:be:78:47:00:6b:3e:57:f5:
21:da:a4:b7:b0:4b:cf:cc:c8:0b:95:c7:33:19:76:
e7:90:82:7b:c9:09:45:a6:eb:b5:c7:b9:4b:f5:e7:
24:7a:3c:65:4c:aa:58:ad:3d:86:85:f5:d6:61:15:
47:a5:db:3d:6e:95:3f:ae:a1:9d:8a:b5:49:56:cc:
aa:e9:06:a5:91:cb:00:12:0a:58:08:b8:f4:b2:3d:
5a:ea:4d:94:44:08:93:4e:90:e5:26:0b:78:c6:48:
7e:fc:ac:12:00:cb:58:99:a3:46:d8:7b:f8:6b:f7:
c0:9d:e2:38:8d:57:7a:39:01:4a:10:4e:1e:ac:3a:
8a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:46:98:DB:7D:41:4B:54:87:8C:4A:17:12:A7:D0:49:0E:83:96:AC
X509v3 Authority Key Identifier:
keyid:61:47:99:C6:7C:08:54:7D:80:BB:35:D0:2D:AE:50:5D:5A:65:DC:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:f3:d7:60:c5:87:5c:a4:ec:41:76:be:45:31:2f:36:ec:33:
d7:7d:a8:c5:59:1b:b6:f3:5c:85:a3:85:c7:74:73:5e:79:a8:
7e:cf:e8:a9:4f:3d:3b:1f:57:6d:68:50:e6:17:31:4c:61:3b:
23:a8:51:d2:c3:7a:ed:41:db:c1:ce:80:d9:53:01:d3:c8:a1:
55:c2:94:bb:bd:0b:4b:e2:ce:c3:7d:70:5a:d2:e5:0c:93:61:
c3:47:c8:03:fd:77:5d:5b:03:82:e4:0d:43:4d:fe:d3:c3:3c:
e3:b4:fb:66:ff:2d:84:af:a9:7f:c2:bd:f6:af:60:9f:53:0d:
66:d1:04:c0:1f:6a:16:30:a7:e6:95:7f:34:d6:c5:a1:14:6b:
e4:cc:74:c8:bc:25:f8:46:6b:ed:93:fd:19:22:fb:6f:a5:d5:
c0:f9:45:28:be:4c:37:1a:88:59:f3:77:66:37:d5:af:8f:92:
9f:9b:09:42:c6:54:b1:99:62:d1:27:3e:39:c3:5c:b5:0a:58:
8f:fc:3a:42:7e:f0:a9:55:06:54:e7:82:fb:10:dc:10:c2:aa:
e5:3d:4f:d9:ab:5c:08:30:a6:fa:ff:8b:8b:0a:13:f0:09:70:
2a:24:33:fb:95:3f:8f:d8:af:e5:9e:e5:bd:67:2d:bd:6f:18:
8d:6d:3b:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 08:08:32 2025 by rpki-client