Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
File: YKVAzkUEVjReyOCY709TY010vx8.mft (raw, json)
Hash identifier: lY7aSMCiawgutKN4XKz1983A0ryxBlEuNrWbfU1TA9E=
Subject key identifier: 45:13:78:39:17:FB:21:6E:22:28:67:BD:23:00:4B:C1:05:E2:8D:06
Authority key identifier: 60:A5:40:CE:45:04:56:34:5E:C8:E0:98:EF:4F:53:63:4D:74:BF:1F
Certificate issuer: /CN=60a540ce450456345ec8e098ef4f53634d74bf1f
Certificate serial: 019A7149FB5D3750FE1DD668C8BF5B866A61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
Manifest number: 057F
Signing time: Tue 11 Nov 2025 05:01:05 +0000
Manifest this update: Tue 11 Nov 2025 05:01:05 +0000
Manifest next update: Wed 12 Nov 2025 05:01:05 +0000
Files and hashes: 1: Bq43MW6bqq2vM6N_DNsfJJero4c.roa (hash: VW9B+4fqw3vwWS3Hrgaa9ekIoZlwSTvJqX1tdku3w4Q=)
2: FFuyCzey-ipHJjO6uFxO4LXEWh8.roa (hash: BnXInNtTIRPQzVjQvIt2UJghwBPIV2UTW4dKQw8S/yc=)
3: GNYCBA73RNfPwbA7eeRR2Ynb_MU.roa (hash: StZ632pNqDa4wkp/dODQDXg1mtBzKfLiR3mQsyHI7KM=)
4: MxYpdz7QLHrqszrw0ICVs_l_uwI.roa (hash: uY4nKFGGyfh/6l3FSdHL/FklopbqDKoZs2zw3yHpkBY=)
5: YKVAzkUEVjReyOCY709TY010vx8.crl (hash: Cgks/M6wiX4xka9sRGfqu35BRKW5sLezK3VZDn+fTI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:fb:5d:37:50:fe:1d:d6:68:c8:bf:5b:86:6a:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60a540ce450456345ec8e098ef4f53634d74bf1f
Validity
Not Before: Nov 11 05:01:05 2025 GMT
Not After : Nov 12 05:01:05 2025 GMT
Subject: CN=4513783917fb216e222867bd23004bc105e28d06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8b:99:00:25:0e:da:73:64:64:bf:5b:b3:8a:
b3:fa:ae:b1:65:20:d0:48:b9:fc:9f:56:55:5e:ff:
f3:6f:99:f7:31:51:56:15:be:69:1a:47:7d:a4:02:
c4:1e:c9:c3:dc:b2:7e:bc:62:97:3b:84:38:bc:03:
77:8d:cf:97:81:cb:4c:ed:fc:2d:ce:05:60:e6:dc:
b9:62:ca:aa:c2:87:02:ed:7d:bd:9d:89:7c:ee:35:
c5:78:43:74:45:ab:be:9d:f4:a9:45:52:db:f8:b3:
21:d1:e5:eb:49:34:ca:6a:b6:0e:86:4c:5f:2c:63:
c7:3e:57:f4:54:3c:b5:62:ac:ac:11:ec:58:86:d0:
c3:a8:26:96:c3:73:d7:b1:92:d6:4d:55:ba:bd:d6:
6a:4e:3e:93:f3:50:e4:d6:c3:68:75:ca:a3:5d:94:
0d:24:a1:a2:ea:16:db:04:0c:d5:b5:df:30:27:bc:
4a:9c:2e:de:fd:de:f6:53:40:6d:de:38:32:4a:ef:
93:3a:e8:35:db:fe:45:68:c1:a5:a3:a0:8d:02:c1:
1f:83:cf:d1:99:17:22:cc:01:52:99:47:1b:4b:1b:
73:19:d2:21:b6:d1:bc:eb:f9:52:de:fb:59:9f:58:
44:f0:6c:fe:0b:11:c7:aa:5f:0b:46:17:a2:17:93:
0d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:13:78:39:17:FB:21:6E:22:28:67:BD:23:00:4B:C1:05:E2:8D:06
X509v3 Authority Key Identifier:
keyid:60:A5:40:CE:45:04:56:34:5E:C8:E0:98:EF:4F:53:63:4D:74:BF:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:a4:af:0b:b7:43:5e:9e:a5:96:ec:b5:8b:8e:0c:eb:34:2e:
39:26:0b:bb:ef:4e:bc:3e:8e:b5:a8:ee:b1:94:01:0c:15:f6:
ad:0a:f3:41:ac:cf:40:23:a1:0e:d6:74:f8:97:12:90:f1:0f:
54:72:ff:62:83:b2:fc:85:bb:e1:3c:1f:4e:29:af:aa:dd:34:
a8:9f:d1:33:e4:95:bd:4d:ec:33:56:f5:58:03:39:e8:a2:15:
02:88:a9:86:94:d1:ab:9f:2c:74:75:39:39:1e:c3:ac:e4:95:
fc:1f:f7:2c:9d:c7:7e:63:88:03:d4:2c:58:6c:df:42:b7:c5:
29:a3:9c:5c:ff:84:b6:fd:1f:7c:1c:9a:b1:70:ea:b4:a5:08:
6c:a1:95:eb:01:8d:a8:9b:bf:5a:ae:d4:4d:7c:5c:83:b5:27:
73:08:52:37:60:4f:a7:58:58:d6:e7:04:41:e7:66:17:4a:a2:
79:5c:ae:00:ef:3f:b2:3e:bf:3d:b8:95:92:0d:ae:4f:73:49:
ef:0f:0a:d8:54:83:80:15:02:49:14:0d:9e:0b:95:ec:a2:bc:
b8:38:c7:70:47:4e:2f:4d:b0:36:d8:81:68:30:d5:bd:3f:33:
aa:05:d2:33:91:29:eb:ac:8a:9c:65:1c:e6:e1:f8:51:58:9d:
fe:64:ad:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:09:39 2025 by rpki-client