Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: 28+NJ01BRJd8JvBe+pDtkPJHB3q08GzP08T7NYTz7a8=
Subject key identifier: 7B:AC:A8:3F:65:5A:3A:73:28:07:16:07:76:55:C5:3C:0D:0D:DF:4C
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 019A0C01991ABF643C713A9FCE95DE65DE84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 1252
Signing time: Wed 22 Oct 2025 13:00:22 +0000
Manifest this update: Wed 22 Oct 2025 13:00:22 +0000
Manifest next update: Thu 23 Oct 2025 13:00:22 +0000
Files and hashes: 1: HAjyOzGCAwLUy5RivV8kbOy5Vu4.roa (hash: PsK5K2sZtAdplKvTizBojj+ePHRa8hE1Sr8s/0IgHpY=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: MwSZB5rvFtpjTG4MEivz0J/7TUD3+bRHunFERrTJzBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 13:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0c:01:99:1a:bf:64:3c:71:3a:9f:ce:95:de:65:de:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Oct 22 13:00:22 2025 GMT
Not After : Oct 23 13:00:22 2025 GMT
Subject: CN=7baca83f655a3a73280716077655c53c0d0ddf4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:18:8a:a1:10:66:4a:a0:30:a9:0b:c2:74:48:
7e:d5:00:15:3c:16:d0:58:3d:ef:63:45:16:bb:4e:
f6:48:82:7d:bf:85:23:71:17:aa:99:c3:7f:89:67:
fd:b9:3f:28:26:22:c2:59:2b:18:f8:0b:53:fb:d9:
e0:f5:ff:dc:29:46:73:75:ee:c7:44:73:f5:8e:50:
2d:63:1d:db:39:dd:be:b9:d3:c8:f9:3c:9b:e0:a7:
68:23:d9:ae:24:ea:a3:0e:8f:92:66:a2:41:07:47:
06:d8:5e:ca:6a:36:41:cf:ad:5c:65:3c:14:c9:aa:
f8:c2:c9:e3:b5:05:55:16:4b:08:ea:60:d5:b7:2c:
b3:62:f7:06:f5:cb:a1:c9:dd:92:ad:a2:fe:78:f5:
02:50:bc:e5:32:8c:89:30:4d:55:45:da:55:fa:ef:
58:9f:55:bf:3d:ff:47:5b:7a:6c:fd:aa:58:13:a4:
7e:34:7a:e5:e8:24:d2:51:0b:d6:44:0a:86:7b:73:
40:8a:d4:71:9f:39:e8:9d:a3:7c:7e:85:34:80:e1:
1b:77:57:52:f6:30:cb:11:9f:c2:43:c4:4a:85:fe:
38:ec:86:fd:d1:13:ca:43:d4:94:51:d0:10:27:bb:
39:6d:08:60:0e:34:d3:89:56:b4:6a:5a:ea:34:98:
bc:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:AC:A8:3F:65:5A:3A:73:28:07:16:07:76:55:C5:3C:0D:0D:DF:4C
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:2d:b0:68:6f:eb:2e:b0:78:aa:bc:8c:11:c5:66:50:de:f7:
f5:f2:fb:cc:6c:a5:60:e4:3b:7d:0d:7c:25:4c:97:c0:bd:b0:
29:de:13:fa:d0:38:76:23:d2:c9:9c:83:99:cb:88:55:f9:cc:
cb:2a:11:5c:59:b8:3a:2d:b7:dd:67:9c:21:02:07:6f:0c:f4:
4f:8a:aa:d3:90:59:fd:51:ab:c7:bf:cc:f5:e1:5e:92:8d:1c:
2c:66:7f:ba:c2:a6:40:26:cb:43:d8:af:27:ce:f4:62:01:f1:
0f:ee:64:50:12:ab:30:ec:8c:31:a8:d0:5b:b6:9a:a1:ee:13:
b4:ad:8b:34:e7:8c:23:c7:2e:99:42:ea:9b:67:88:c2:8d:aa:
fa:18:a3:c4:b2:df:5c:d8:95:25:1e:88:d9:aa:ad:65:a7:56:
bb:28:8d:be:1a:d2:f0:26:a5:0f:27:cb:10:a3:55:07:ba:0a:
32:be:29:a5:d0:06:54:b2:af:a9:a9:b0:95:33:69:54:6c:31:
ad:08:d8:41:9f:0c:b2:da:d3:13:19:f7:67:f6:8e:f4:59:3a:
1d:a3:b3:c5:08:1a:a8:0c:aa:ed:d4:9d:b1:27:53:55:cb:2b:
7c:2e:13:b0:30:5b:cb:03:8b:d1:4f:a6:bf:9a:53:40:0a:78:
cd:db:aa:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 18:46:20 2025 by rpki-client