Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
File: YFvAEwOQWABiCsJsFGixQfgHRRQ.mft (raw, json)
Hash identifier: XWJV2XnKGQdxHh+jt9QEDn2leIhHyudU1eHBBrvihuM=
Subject key identifier: 48:72:51:71:00:56:E4:73:FD:FE:EE:42:61:DF:B2:9D:A7:40:DD:07
Authority key identifier: 60:5B:C0:13:03:90:58:00:62:0A:C2:6C:14:68:B1:41:F8:07:45:14
Certificate issuer: /CN=605bc01303905800620ac26c1468b141f8074514
Certificate serial: 019922557156D416B71DC1068DE8A959C0B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
Manifest number: 0D47
Signing time: Sun 07 Sep 2025 04:00:48 +0000
Manifest this update: Sun 07 Sep 2025 04:00:48 +0000
Manifest next update: Mon 08 Sep 2025 04:00:48 +0000
Files and hashes: 1: 9c99e7OOCoSsqv05bamuZvrBRAg.roa (hash: gcQqAYS/2mIfyTda9lezITlbdeVA2P8mDvlHBkdo3p0=)
2: YFvAEwOQWABiCsJsFGixQfgHRRQ.crl (hash: CsDRXh5XOrA3/Ok9RIVkngU7D7+KC5urOXhJH4i3MAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:71:56:d4:16:b7:1d:c1:06:8d:e8:a9:59:c0:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=605bc01303905800620ac26c1468b141f8074514
Validity
Not Before: Sep 7 04:00:48 2025 GMT
Not After : Sep 8 04:00:48 2025 GMT
Subject: CN=487251710056e473fdfeee4261dfb29da740dd07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:00:e3:94:e9:25:81:16:44:48:99:fe:18:b1:
26:fc:f2:10:86:84:a4:ce:af:04:d5:9a:e4:45:3a:
c6:32:50:f2:32:44:98:88:5a:62:60:56:e7:9b:7b:
96:14:9c:62:65:c7:96:db:b1:ee:8d:72:74:75:af:
aa:a8:5b:16:8d:b4:f7:5b:22:31:bf:82:c1:ad:f2:
26:3a:68:5d:df:6e:07:53:fb:78:09:9c:21:ea:a8:
7f:4f:be:40:a3:e0:5d:67:f2:05:37:a1:45:67:b4:
57:de:42:90:d0:66:cf:ec:65:1a:cc:b0:0f:95:3a:
53:11:02:c4:55:29:bc:d2:38:6b:2e:dd:21:a9:07:
42:d7:cd:24:ba:9f:c9:b9:f6:a4:16:00:6a:30:52:
b3:cb:7c:01:31:90:c4:68:a7:c1:84:08:77:44:af:
65:60:30:c4:f9:87:92:6f:44:01:94:26:a5:4b:1b:
a7:ee:74:37:f2:d6:18:18:65:3e:64:c6:c6:97:52:
90:d6:24:f5:a6:6f:41:d7:9d:cd:57:27:2b:13:06:
c5:20:99:45:e9:24:7d:0a:24:25:a2:61:00:05:e1:
77:93:2f:b8:f8:fb:1f:61:bd:ff:b5:ee:f6:8c:01:
cd:4d:e9:ef:c5:16:6e:e7:c6:2b:e0:ba:75:fc:8e:
a8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:72:51:71:00:56:E4:73:FD:FE:EE:42:61:DF:B2:9D:A7:40:DD:07
X509v3 Authority Key Identifier:
keyid:60:5B:C0:13:03:90:58:00:62:0A:C2:6C:14:68:B1:41:F8:07:45:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:dd:bb:df:86:63:38:82:9e:64:0f:aa:2c:d1:03:58:01:c1:
76:f2:64:e4:b8:de:8e:b0:a5:58:34:e5:7b:d7:24:e2:a2:eb:
51:6f:f4:fa:f1:e2:47:9d:a3:54:5c:15:13:66:22:01:36:cb:
2e:9f:6d:84:89:3b:2d:1d:57:14:58:94:a1:56:17:46:28:89:
e5:6f:ee:ee:91:61:f5:35:88:2f:98:19:ed:79:36:17:b6:f9:
82:f9:b6:b0:e7:69:b2:8f:c3:ff:ab:aa:fd:63:b2:c3:7f:a6:
f0:17:2a:12:5e:2a:b9:c3:7d:92:d4:a2:64:33:cb:68:cb:2e:
58:6a:62:5c:5a:93:91:b7:b7:75:57:c2:78:21:b5:d0:bd:d4:
8e:9c:43:30:54:a0:ee:1d:ef:67:27:8b:b3:75:2d:e2:4f:b5:
14:65:31:c9:47:34:5e:b7:c0:5f:d5:25:75:c2:24:2e:b8:cb:
af:35:84:fc:ac:52:02:9c:da:62:16:ed:8f:a3:b4:84:8f:4c:
a9:f1:5e:27:e7:66:3f:2b:e5:e3:0e:15:78:1e:06:4d:d9:6c:
6f:9b:0e:f0:d9:83:53:69:cb:8e:03:1f:6e:1e:01:84:02:4f:
82:b5:cb:ee:da:25:21:a4:4c:9d:a8:c9:54:68:f5:f9:a2:42:
78:ee:a9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:15:13 2025 by rpki-client