Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
File: yda1mpPjJAg_vKQjfkfp9evzcas.mft (raw, json)
Hash identifier: bYDrxVjTXJo9Uqw5mnJ60kdBj0qkdRdHDwV0DwExlYQ=
Subject key identifier: 35:0A:0C:B2:C6:BD:50:96:A6:D0:E0:71:6E:81:0D:98:75:45:31:B2
Authority key identifier: C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
Certificate issuer: /CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Certificate serial: 019A06DBAF6502A3A984BE296B94A7DF683B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
Manifest number: 170E
Signing time: Tue 21 Oct 2025 13:00:51 +0000
Manifest this update: Tue 21 Oct 2025 13:00:51 +0000
Manifest next update: Wed 22 Oct 2025 13:00:51 +0000
Files and hashes: 1: N1MG3ptUi6lRkgCQgC4sjQwbS5E.roa (hash: JXk8TsLqv4eNpEsTxzdAoUG6ec7BUvgM4Lyhjc+WI9U=)
2: pMIZZEHYcO0IlQ8lJ-JaDY1xnJs.roa (hash: KI7tUZnJYI1JaBjFs0d5L727l5SVVoE+xByQFUZQZZI=)
3: uiLIHzK4-mf16_OjnZc2yUpW0us.roa (hash: RlQY7OlYxlif+RwnDDphDKPVhonzC8U4YVG2wYszXJM=)
4: wmxHtvcKqJtTUqnf5sR3cyCPMeg.roa (hash: /EPsVJFiMZ3O3IoH+IOAZdQSfyIhjr2V/FlxWvt6e5c=)
5: xF5VKoGOYu4SuTkWFtzR0bzZqmI.roa (hash: rdwu1BaRed5RxmIo/GH4jXiyNp3cFaIjeNX4kVrFm70=)
6: yda1mpPjJAg_vKQjfkfp9evzcas.crl (hash: 3gXSB6z+hn5uqIxBioxs68DDaJTwHYQBGXD/7nwSQmc=)
7: zPFc5xzrxxMWf2K11uBlgIiWqTo.roa (hash: 3x/T35aDdfP5Wrtlu3UJYc2NEgecLDM5KH+dyoNyYx0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 13:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:06:db:af:65:02:a3:a9:84:be:29:6b:94:a7:df:68:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Validity
Not Before: Oct 21 13:00:51 2025 GMT
Not After : Oct 22 13:00:51 2025 GMT
Subject: CN=350a0cb2c6bd5096a6d0e0716e810d98754531b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:de:56:b8:bc:f1:52:29:83:7a:b6:35:d8:70:
58:0e:0e:d3:cd:c7:ca:61:c8:ea:dd:83:b7:92:d0:
f3:c9:b4:35:07:68:61:08:a5:fc:cb:f5:ff:90:ac:
ab:89:51:ed:f8:da:2d:cc:76:37:1e:da:36:d2:db:
a4:4a:89:5d:a0:5a:dc:1a:d0:6d:24:50:d7:31:a8:
28:dc:43:90:b8:6c:33:fe:9f:11:0a:d8:bb:bd:22:
98:27:d7:9b:76:4d:99:63:b7:4f:3f:cc:94:7c:bd:
e8:01:a1:59:6a:e9:14:06:63:31:79:8b:e6:bc:64:
fe:3a:31:54:d8:16:2f:9d:f2:a4:8d:d9:02:46:76:
1a:05:f9:64:99:a4:02:10:b7:5d:89:ac:d2:71:ef:
4f:db:25:d9:2e:e8:1c:ba:e2:6b:ba:60:b6:78:0a:
1d:3b:99:bd:76:f7:22:a4:09:7a:c7:bd:0c:d8:5f:
76:b1:42:85:5c:cf:af:fb:50:59:7e:a2:00:90:a3:
73:2e:fb:ae:06:ef:d5:31:bb:71:e4:fc:37:47:c8:
83:e5:fa:59:47:84:94:42:4e:0f:a3:00:e1:41:02:
2c:17:5f:de:ee:ab:38:cd:ad:49:ca:35:f5:e5:f1:
3e:f4:8b:c3:08:30:27:db:b6:3c:f5:30:e5:ce:d2:
12:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:0A:0C:B2:C6:BD:50:96:A6:D0:E0:71:6E:81:0D:98:75:45:31:B2
X509v3 Authority Key Identifier:
keyid:C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:10:6e:e2:e4:af:d4:23:1f:21:25:42:62:bf:ef:f9:19:6e:
92:f2:3f:41:2a:24:6b:bd:2b:be:ea:4a:b5:5f:b4:2e:7d:18:
a6:cd:58:e3:bd:c6:64:74:fe:c4:eb:01:75:7a:bb:19:0d:72:
12:8e:10:62:b8:fd:a1:5c:9e:b8:21:29:78:da:80:b8:c0:25:
3e:6d:8c:bf:cb:86:6e:53:19:bd:a2:94:35:b4:2b:42:1b:29:
f0:dc:3b:5e:bc:e1:19:48:f3:a4:7b:55:e5:25:81:aa:59:76:
1b:3a:e3:c9:73:9f:c2:69:63:18:f1:ce:63:f8:27:69:bc:30:
39:98:82:a6:fb:68:ca:17:db:c0:12:ea:ba:bf:fe:44:fd:7b:
ba:69:8e:26:a9:40:49:4f:b8:6e:10:51:e5:19:8d:f8:9a:9d:
2c:7b:be:ed:cf:d6:65:94:f2:88:45:7f:a8:93:67:11:01:bc:
44:c8:c0:bf:d8:b2:70:ba:05:4e:06:49:40:58:45:e4:7a:c8:
63:5e:6b:a8:07:57:92:06:5c:d8:57:3c:f5:c8:22:d5:3e:e2:
cf:68:aa:b3:5c:2c:67:98:48:cc:48:d9:ee:b0:63:0f:7f:88:
ff:1b:5b:eb:ef:72:87:ae:51:2b:63:07:59:07:6a:86:75:1c:
2d:86:2a:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 22:50:41 2025 by rpki-client