Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft
File: YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft (raw, json)
Hash identifier: tDyv7C17FO4eeYFD5hWV+DuHP9OVEzgroDnndNB3vFo=
Subject key identifier: D9:ED:15:F6:F6:CF:CA:16:F3:F6:C8:A3:91:65:3E:57:C5:39:B9:52
Authority key identifier: 61:49:CB:BA:3E:66:29:BE:AE:BF:B6:96:68:67:8A:DA:51:74:48:98
Certificate issuer: /CN=6149cbba3e6629beaebfb69668678ada51744898
Certificate serial: 019A0B5D971A5E28BE5922D6A8C401691E35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft
Manifest number: 1412
Signing time: Wed 22 Oct 2025 10:01:13 +0000
Manifest this update: Wed 22 Oct 2025 10:01:13 +0000
Manifest next update: Thu 23 Oct 2025 10:01:13 +0000
Files and hashes: 1: 0IG70QW2hCrm52M5Cqyqdv7Bcb0.roa (hash: usdtXTbOrc0vwd46ZO8C/l/xue6j9QcbuHgY1Bupvvo=)
2: YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl (hash: 818oU/9ir0AhDKAgJ3J943EjAEQnTu7cAIAIXjm4HV4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 08:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0b:5d:97:1a:5e:28:be:59:22:d6:a8:c4:01:69:1e:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6149cbba3e6629beaebfb69668678ada51744898
Validity
Not Before: Oct 22 10:01:13 2025 GMT
Not After : Oct 23 10:01:13 2025 GMT
Subject: CN=d9ed15f6f6cfca16f3f6c8a391653e57c539b952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:af:e3:cb:04:9c:19:85:1c:91:f3:43:c4:91:
ea:29:89:0e:4d:52:aa:10:88:aa:b4:3c:38:33:0b:
19:41:49:67:b1:e4:52:e8:0b:b7:89:ae:22:87:de:
45:bf:b2:04:52:28:70:18:6a:34:e1:eb:77:c9:a8:
2f:90:f8:c7:2a:43:dc:9b:7d:b1:e0:bf:3a:2d:44:
37:da:85:ea:92:e4:48:84:7f:b7:00:85:9a:2d:d2:
6e:28:29:71:35:ac:fe:22:e0:d9:ee:a0:b4:a7:8f:
9c:7c:13:8f:33:da:0e:5f:1f:4c:69:82:bd:3e:6e:
a7:70:e9:08:f4:f5:75:27:df:de:13:7b:03:66:b6:
b9:49:b5:54:0f:09:5f:a1:51:d3:ae:08:42:99:59:
66:76:97:36:54:2b:0c:c8:f2:11:28:8d:07:fe:22:
7d:f2:0e:35:d4:d2:0d:58:29:9f:ce:f6:3a:1b:14:
25:fb:ac:fe:bf:50:11:e0:c9:a1:e9:38:e4:db:be:
42:5c:79:3c:a4:0b:9b:2a:f9:15:32:4f:26:ed:49:
28:84:63:08:f9:0f:73:30:f1:59:b3:23:2c:1e:13:
92:75:e5:7f:90:36:0c:4a:dc:18:f0:14:17:50:eb:
20:72:19:94:df:18:4a:e6:c9:e1:ed:e7:51:af:b9:
60:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:ED:15:F6:F6:CF:CA:16:F3:F6:C8:A3:91:65:3E:57:C5:39:B9:52
X509v3 Authority Key Identifier:
keyid:61:49:CB:BA:3E:66:29:BE:AE:BF:B6:96:68:67:8A:DA:51:74:48:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:47:0c:44:f5:9c:3e:91:99:4e:05:1f:1a:b4:40:7f:59:4c:
ba:13:04:49:1d:6f:9a:e6:0c:f3:f7:d5:42:33:ad:9f:9b:ca:
a7:4a:83:d6:c4:a4:36:a9:a7:fb:30:d3:47:27:af:ae:16:3b:
e2:30:ae:17:2b:82:2f:0c:41:56:24:8c:93:80:06:bd:ac:60:
87:c3:b5:b5:5f:3c:79:da:3a:f9:0f:15:41:44:a8:6e:c0:10:
4d:16:f4:1a:8c:2e:72:35:5f:b8:00:b9:7b:fc:2b:c8:32:ec:
ad:96:6a:68:2f:cc:72:05:d3:62:5d:93:59:ac:c3:6c:7d:f8:
0f:da:3b:04:78:ab:47:52:a2:57:23:9f:f8:20:49:62:17:6e:
b8:cb:28:16:c7:0f:3c:13:b5:41:66:c1:b8:02:92:12:fd:0e:
ee:cb:51:f5:aa:5c:b0:d8:29:e0:d5:0e:2c:c0:16:c2:fe:96:
5b:9c:d0:c3:3e:89:dc:c8:a9:a2:07:98:33:c1:d8:c3:58:ee:
23:e8:1c:cd:58:2c:db:70:0a:95:fa:41:26:48:70:dd:4f:a4:
c6:f4:64:28:44:85:0d:84:04:e5:e2:8d:38:a2:09:d4:14:88:
e8:2c:9c:78:15:63:7f:c3:74:da:78:e2:7d:82:03:88:33:13:
6f:5f:f5:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 12:32:09 2025 by rpki-client