Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
File: YKVAzkUEVjReyOCY709TY010vx8.mft (raw, json)
Hash identifier: cmDyJExNbXZpy5RZjxiQxSbV9n70b0jh6BL6MuCkJUs=
Subject key identifier: FD:3E:7E:F7:5D:9C:2A:2C:6C:04:45:B7:05:B1:9D:79:57:2F:C7:82
Authority key identifier: 60:A5:40:CE:45:04:56:34:5E:C8:E0:98:EF:4F:53:63:4D:74:BF:1F
Certificate issuer: /CN=60a540ce450456345ec8e098ef4f53634d74bf1f
Certificate serial: 019932A43133144AA77C57416A1A4AC22249
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
Manifest number: 04DA
Signing time: Wed 10 Sep 2025 08:00:45 +0000
Manifest this update: Wed 10 Sep 2025 08:00:45 +0000
Manifest next update: Thu 11 Sep 2025 08:00:45 +0000
Files and hashes: 1: Bq43MW6bqq2vM6N_DNsfJJero4c.roa (hash: VW9B+4fqw3vwWS3Hrgaa9ekIoZlwSTvJqX1tdku3w4Q=)
2: FFuyCzey-ipHJjO6uFxO4LXEWh8.roa (hash: BnXInNtTIRPQzVjQvIt2UJghwBPIV2UTW4dKQw8S/yc=)
3: GNYCBA73RNfPwbA7eeRR2Ynb_MU.roa (hash: StZ632pNqDa4wkp/dODQDXg1mtBzKfLiR3mQsyHI7KM=)
4: MxYpdz7QLHrqszrw0ICVs_l_uwI.roa (hash: uY4nKFGGyfh/6l3FSdHL/FklopbqDKoZs2zw3yHpkBY=)
5: YKVAzkUEVjReyOCY709TY010vx8.crl (hash: PDBV2HUjDDfoqjrulDuypCTxPThftnaE/bLuZ50KVfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:a4:31:33:14:4a:a7:7c:57:41:6a:1a:4a:c2:22:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60a540ce450456345ec8e098ef4f53634d74bf1f
Validity
Not Before: Sep 10 08:00:45 2025 GMT
Not After : Sep 11 08:00:45 2025 GMT
Subject: CN=fd3e7ef75d9c2a2c6c0445b705b19d79572fc782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:85:fe:68:5e:66:7a:7b:44:18:ff:8b:f8:cc:
e6:ee:fc:21:24:c9:12:52:88:fa:a6:6e:1a:08:81:
0a:49:98:eb:2d:7e:a0:be:ae:49:c3:1d:94:ea:56:
90:1c:38:08:da:0f:7f:4f:48:04:73:68:4c:21:31:
5b:d3:f3:72:c0:94:d2:ef:fb:70:4f:35:f3:6d:69:
dd:96:da:c8:c7:bb:87:76:e4:3f:ea:3a:44:28:f5:
ca:d0:ff:86:d7:1f:a3:b7:ee:ce:63:57:7a:02:66:
dd:b7:9e:05:21:a6:88:e3:e2:43:53:55:d0:d1:82:
a0:99:ec:c7:fd:15:87:b6:7b:a9:e5:ff:ad:90:cd:
1a:bc:83:39:2c:c4:9c:91:fc:81:bf:31:2d:32:46:
c0:82:52:73:fb:0a:97:90:ca:94:fc:de:41:20:0d:
bd:d7:7d:ee:0c:95:03:ed:7f:84:64:d9:56:46:14:
6a:4e:9d:9d:e4:6d:0e:f0:ab:11:8a:3e:a2:f6:80:
56:66:c4:73:33:26:57:87:f3:02:10:f0:e2:a6:79:
ca:eb:d0:f6:b8:91:f2:60:bc:cf:f8:f3:15:6b:21:
d7:40:0e:a5:08:d8:ab:a8:53:35:8b:da:db:5e:ed:
69:1b:a4:8c:93:b5:7a:04:b8:0b:44:9b:64:5c:f4:
84:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:3E:7E:F7:5D:9C:2A:2C:6C:04:45:B7:05:B1:9D:79:57:2F:C7:82
X509v3 Authority Key Identifier:
keyid:60:A5:40:CE:45:04:56:34:5E:C8:E0:98:EF:4F:53:63:4D:74:BF:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:0c:d9:9e:97:a8:ee:67:e6:af:a2:34:cc:4c:1b:15:0a:ac:
d7:18:5d:9c:f3:16:93:d6:8a:e1:26:40:66:78:01:d2:b8:a5:
42:40:13:b0:2e:40:f7:6f:a6:0b:20:44:87:ce:4a:55:bd:ca:
7d:90:d8:9f:0a:b1:13:38:3c:4a:47:8c:17:e6:94:80:7e:35:
59:a3:e7:aa:fa:43:d6:54:98:d5:12:57:f1:19:20:72:46:a5:
e4:f1:07:2f:cf:be:7c:ff:ed:86:61:21:18:ba:6c:7a:ca:9d:
cd:e6:3f:cf:03:68:52:7f:6c:e9:94:1b:9a:ba:20:f0:63:af:
c7:50:57:4a:2f:82:bb:63:89:96:df:43:fa:37:a6:d0:9c:7c:
0d:92:c4:89:5d:b2:6c:11:16:61:dc:f7:ee:b6:58:4e:5e:13:
1f:32:da:ed:d4:0a:a0:6c:7d:03:a8:49:fe:04:24:46:7d:2d:
bc:cb:c7:8c:1f:2a:fb:9e:93:fd:e0:5e:b4:e0:17:57:ec:32:
eb:fe:f4:9c:97:c3:02:4b:77:df:7c:21:3b:cd:9f:c7:aa:f7:
cf:e7:f5:ba:35:0e:7b:b5:62:98:d8:4c:7d:8c:f7:d7:13:04:
0c:d9:f3:35:d8:d2:36:03:59:d2:7b:01:41:c6:0d:d3:8f:26:
2e:ed:b2:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 10:34:15 2025 by rpki-client