Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
File: YaXSF3WehhaW_HftmqY7lO2zvn0.mft (raw, json)
Hash identifier: GJ/CBCV1HRH8dsmS9DFWMJPLZcGfBarDdMcpqZDsmsA=
Subject key identifier: 0E:53:8A:B6:C8:D1:90:BC:86:BB:63:9F:B1:FC:39:A0:B2:24:6B:80
Authority key identifier: 61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
Certificate issuer: /CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Certificate serial: 019A71B857966E49734F9820861039E69F04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
Manifest number: 16AF
Signing time: Tue 11 Nov 2025 07:01:37 +0000
Manifest this update: Tue 11 Nov 2025 07:01:37 +0000
Manifest next update: Wed 12 Nov 2025 07:01:37 +0000
Files and hashes: 1: 5fuh3MDvvFTdM9YPWplIlmW8ZkA.roa (hash: Wdi/0+eUolZTOBljIE3hewam0WUu332lXIc8cs32Fgk=)
2: 925S4SchOi83vL3V68Y_AUuJSD8.roa (hash: 6EULq2ShinRvQFwY+uALe+ivLl2vWfr/F3fyELn3cug=)
3: PGmGsgYp4SpOgDQPzfkm2Kp84ms.roa (hash: QvQzg0nCw1e7QpH5gXcvQpoprtCI6UOH6zwCxDuFkv0=)
4: YaXSF3WehhaW_HftmqY7lO2zvn0.crl (hash: LDfj6KAYIXPU57IhxaBLRMpeniXX5Xto9ziGOlr/g8E=)
5: z3s2kSvc4H2ywLCnLljgXCeMKHc.roa (hash: pgMrP+tE9sQxVvQRywnzdq3UOn28MH01XXGUWXVHask=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:57:96:6e:49:73:4f:98:20:86:10:39:e6:9f:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Validity
Not Before: Nov 11 07:01:37 2025 GMT
Not After : Nov 12 07:01:37 2025 GMT
Subject: CN=0e538ab6c8d190bc86bb639fb1fc39a0b2246b80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b1:3d:5c:2a:fe:24:f0:45:57:41:9d:05:16:
e3:f8:8f:67:44:d0:fe:44:7b:1b:3d:1c:cb:d5:78:
86:9a:01:80:78:1e:bd:57:11:21:c9:4d:65:01:37:
6c:15:3f:4d:51:de:cf:ce:27:4f:e2:a1:cf:44:2a:
30:12:2e:92:6e:ea:88:fe:8a:36:5f:d3:55:3f:8d:
f5:9a:90:f7:88:63:82:79:d2:89:76:73:fe:c3:cb:
e5:c5:ab:96:63:db:51:cf:14:07:96:07:8e:66:30:
1a:5b:55:43:b6:db:9c:1f:e1:b9:17:89:0f:02:a2:
ba:46:ab:b4:78:1b:90:39:a9:fd:31:c7:5c:15:ec:
fb:60:1b:78:15:34:79:f3:65:b0:cf:9f:ce:8c:0e:
65:7c:7c:97:38:4c:0c:ae:3a:54:19:f5:f7:dc:ff:
58:6b:aa:c3:d1:63:01:8e:c9:49:a8:ea:f7:db:3b:
ae:6e:ee:1a:bf:67:d7:eb:c6:74:89:23:9b:1d:d2:
a6:8f:3e:c4:dd:df:92:ae:ba:ed:22:5c:0a:54:e3:
0b:1b:3d:49:53:ce:69:13:28:ca:6e:3b:c2:dd:96:
1a:fb:07:91:0b:11:1d:cc:fa:fd:cf:34:c3:dc:48:
a0:fd:21:c3:c1:9b:05:68:97:00:eb:d8:20:69:80:
82:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:53:8A:B6:C8:D1:90:BC:86:BB:63:9F:B1:FC:39:A0:B2:24:6B:80
X509v3 Authority Key Identifier:
keyid:61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:5b:95:ae:1f:eb:4c:e9:21:c2:78:f8:e8:63:6f:ae:1e:75:
72:d0:7b:8c:4d:8b:49:73:f1:1e:da:dc:06:d1:c4:c3:bd:54:
c4:c9:59:77:1d:92:e9:1f:ab:cd:95:6a:4a:05:93:0a:2e:78:
18:e0:cb:69:6a:bf:8a:21:18:83:1b:fb:a8:07:0c:3d:b5:ac:
d2:0c:a3:9a:f9:80:f3:20:ea:a4:95:1c:c1:90:24:cd:18:90:
09:75:5e:b6:3d:d7:af:ba:cd:75:a1:ba:8a:be:31:e9:e5:fe:
4c:f0:17:dd:2a:82:8e:99:7d:5b:69:71:e3:87:c7:9a:8b:04:
09:e8:3a:d1:02:34:02:dc:a0:15:9b:97:86:6c:7c:0e:f5:c3:
66:bc:77:e9:ff:d7:fe:47:76:c1:20:9e:86:2e:6c:80:c7:e1:
92:fa:c5:02:57:8c:0d:7e:83:76:20:ce:3c:e0:50:e7:33:0b:
ca:75:93:d1:52:48:7a:eb:77:7b:0b:13:94:93:1b:f2:bd:49:
7f:04:0d:28:81:6e:0a:e4:3a:96:4c:bb:24:e8:4c:76:13:e8:
76:ec:67:6d:96:8e:74:5b:34:62:6e:00:63:32:e1:c8:c5:90:
4d:67:b1:ac:8b:70:62:26:20:9e:29:84:0a:5c:b0:1a:fc:2c:
55:70:d9:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:47:08 2025 by rpki-client