Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
File: yjuG5lRw-ZTfptb-6OJk22LiSvk.mft (raw, json)
Hash identifier: 76QwMglyEM921fxgu5KAM2Dql+sXC7r5AORW4SgaFQo=
Subject key identifier: 8C:F8:09:67:47:00:F3:66:F0:2D:00:D8:08:07:09:92:6E:A7:7A:8D
Authority key identifier: CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
Certificate issuer: /CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Certificate serial: 019A247896EDA4EF44C6214049129EDD164C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
Manifest number: 16FF
Signing time: Mon 27 Oct 2025 07:01:14 +0000
Manifest this update: Mon 27 Oct 2025 07:01:14 +0000
Manifest next update: Tue 28 Oct 2025 07:01:14 +0000
Files and hashes: 1: Db8DTjUYkYFq1VL2utnrt9ZhoOQ.roa (hash: d9GgydKG9uk/HAxIswAdFFBoSDorEX71FTaOERwLhzg=)
2: RfiogXB75ZZcw60YgsMcLXMGreQ.roa (hash: CxagJfgQ+HRjqYYAQUHG4nzSSm5GU9hHUNpe0/HqHLA=)
3: Vsvw7zSK2cjlfLBPzsEjNibepw0.roa (hash: fMTdJF0J/U/sST/3YzLYOWjYa8T84ONedHLdQ86kfmA=)
4: WTl9wt0Rp1_SP8V72BWndXzvVXk.roa (hash: BI9xuqlMchALIUZfnOAm1MAIdvbV4MZUCOFrf3rfZgA=)
5: yjuG5lRw-ZTfptb-6OJk22LiSvk.crl (hash: WRncJgWDxpihEiM7WYQX1YdpZvAxRwAMCqjbDOmFw6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 07:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:78:96:ed:a4:ef:44:c6:21:40:49:12:9e:dd:16:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Validity
Not Before: Oct 27 07:01:14 2025 GMT
Not After : Oct 28 07:01:14 2025 GMT
Subject: CN=8cf809674700f366f02d00d8080709926ea77a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:23:16:0a:c5:ce:36:da:01:41:c8:a2:7b:a0:
3f:87:12:8a:97:60:94:49:66:b3:73:c8:c2:01:46:
c8:59:ea:09:26:ba:8c:cc:68:01:d6:4c:b6:6d:2e:
a1:16:7a:c2:a8:a9:e9:8e:7f:12:ef:04:71:c6:b1:
e7:d4:37:44:54:a0:3d:99:a4:18:67:38:2c:c9:6a:
5d:17:9b:e0:cb:fc:35:2a:b1:13:85:49:3c:4e:2a:
5c:34:7a:03:cf:f7:60:c2:83:f7:4d:60:69:3e:b1:
07:ea:32:c1:04:ac:ad:57:fb:af:59:87:5b:ba:3c:
61:76:f4:a0:96:c4:f8:4d:a8:a5:4e:bd:5c:f1:50:
61:e7:a8:a6:1c:03:43:da:59:27:01:98:44:0a:ab:
ef:5a:22:a6:23:22:8a:ed:f0:6e:d2:a6:c1:9e:8c:
5b:f8:a6:75:04:21:88:08:f5:61:44:94:40:17:da:
ed:e7:91:2b:67:a2:41:38:36:55:41:3a:ea:f0:26:
a6:6e:0b:d2:3d:1b:4d:e7:c9:6b:f4:b2:a1:e3:6c:
99:4b:50:11:28:63:f3:73:16:6f:f2:c7:14:7a:f6:
ed:4e:57:c1:60:32:ff:de:a7:a0:1b:ec:e6:d0:fd:
ef:72:69:ce:ac:f6:a3:4a:c1:01:cf:8c:eb:16:9b:
45:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:F8:09:67:47:00:F3:66:F0:2D:00:D8:08:07:09:92:6E:A7:7A:8D
X509v3 Authority Key Identifier:
keyid:CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:08:be:6d:61:df:e6:66:c3:0b:ed:e8:e2:af:9a:44:bd:c4:
5d:72:ce:24:ca:88:1b:c7:41:5b:6b:e2:49:6e:56:08:95:e5:
56:cc:ed:b7:f2:9d:93:31:dd:65:c9:14:88:0f:8a:9b:ba:30:
32:82:4e:87:f9:0c:d4:b3:4b:e2:81:b0:c3:83:1c:86:2d:0b:
09:78:91:db:f5:6c:fe:41:bd:e6:df:d1:f3:b2:c7:18:0e:31:
6e:f8:e5:61:37:d1:64:3b:d9:97:30:47:e0:74:ca:29:4f:1f:
c5:74:f6:f3:34:b4:cb:e4:1b:63:35:50:99:1d:89:45:00:0f:
58:e6:e1:84:f8:40:12:33:18:36:48:4e:45:84:f1:a9:5a:dc:
75:d2:56:d2:1a:16:8b:69:1c:09:66:9e:08:98:a1:dc:83:ae:
18:51:04:c8:44:e8:93:3c:93:d2:b1:7c:4f:a8:83:a8:e5:41:
a5:43:19:5e:59:8c:0b:79:84:60:15:c6:d3:81:90:e4:7d:12:
3f:56:fa:fb:06:3a:76:bd:2c:3a:99:af:c3:fe:42:1a:fd:33:
be:6a:90:d3:9b:bc:2a:42:50:f8:9f:1f:e6:e3:00:a6:1f:c3:
91:11:4d:f4:74:97:ef:2a:55:02:45:25:97:26:c4:73:7c:0b:
fe:2e:b8:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 10:57:11 2025 by rpki-client