Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
File: YO9KF7jv9Fugs51HSWVX44j__lI.mft (raw, json)
Hash identifier: K45OirjP6/uRB52clUVAM89HrxmpIDm2q/930KnK6PE=
Subject key identifier: BB:B8:00:C0:6A:BB:78:65:F8:CF:3F:EE:89:B3:E0:81:91:52:85:65
Authority key identifier: 60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
Certificate issuer: /CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Certificate serial: 019A1B06C7CFD5BB13AC8E2925F8586DACCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
Manifest number: 01D7
Signing time: Sat 25 Oct 2025 11:00:20 +0000
Manifest this update: Sat 25 Oct 2025 11:00:20 +0000
Manifest next update: Sun 26 Oct 2025 11:00:20 +0000
Files and hashes: 1: WJ8mDGp2R9SerzYw88vehn3HSik.roa (hash: h5SXKLsi4QXI6eIjbslnIuS0eoxKGY5pZRrkhG82mKM=)
2: YO9KF7jv9Fugs51HSWVX44j__lI.crl (hash: zcE65US1wE44n1OHsdR+AUOOY8hffuG9vQ9FYjpoNd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 08:33:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1b:06:c7:cf:d5:bb:13:ac:8e:29:25:f8:58:6d:ac:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Validity
Not Before: Oct 25 11:00:20 2025 GMT
Not After : Oct 26 11:00:20 2025 GMT
Subject: CN=bbb800c06abb7865f8cf3fee89b3e08191528565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b1:61:af:1b:6e:71:42:98:8b:13:80:39:46:
69:0f:2d:bc:44:aa:ef:bb:f2:7e:a9:6a:86:ec:55:
05:cf:8e:98:51:aa:b4:03:9c:63:57:01:8d:0c:eb:
43:89:ce:a8:d0:c6:be:dd:01:53:33:a2:e1:7b:67:
77:56:43:57:cc:84:87:ae:5e:cd:be:bb:e0:1d:81:
cc:83:b8:54:4e:bc:5f:f2:82:f7:33:e8:10:a1:d6:
47:93:06:26:75:b2:b3:31:08:fe:1a:84:80:89:8b:
e5:a8:c2:8d:c9:71:66:88:04:ce:ac:9c:d6:23:f8:
51:c6:64:6b:22:32:a8:1c:cb:71:02:7e:a0:fe:6e:
df:63:b7:56:c5:21:c1:04:c6:e1:a2:fd:68:e3:e2:
57:86:12:d0:03:dd:e0:a9:4f:a8:75:32:2c:16:7e:
ae:ee:02:97:1f:fd:25:da:f1:1b:e0:ca:b3:49:91:
6a:c0:87:7a:ea:c1:39:82:d2:fd:68:76:0c:73:d9:
48:8e:3e:ca:6e:f0:9e:10:ed:6e:3d:6a:d8:e5:c9:
90:b8:c6:3a:4c:04:6f:28:da:22:c9:23:ba:80:76:
8a:9d:37:ec:5b:bf:88:37:50:2e:64:1d:1f:06:8c:
4f:10:e3:25:7e:c2:df:13:38:72:8a:c7:3f:d0:88:
7f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:B8:00:C0:6A:BB:78:65:F8:CF:3F:EE:89:B3:E0:81:91:52:85:65
X509v3 Authority Key Identifier:
keyid:60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:b8:1e:bb:52:15:7a:ea:71:75:9d:09:f7:2b:12:d0:ec:70:
5b:bf:ba:67:6d:c5:7c:d7:7a:c9:22:80:1b:ac:29:13:10:75:
29:d8:fb:77:91:60:e0:d4:ac:4d:91:57:be:f4:84:6b:e3:9a:
1b:b1:0b:df:a9:40:36:5a:1e:ce:a0:7b:53:75:02:45:e1:49:
00:73:67:fe:55:16:c1:0f:c2:24:19:00:6b:ed:67:8f:2a:14:
33:07:47:92:6f:7e:76:d3:ac:4f:03:be:9f:68:49:9d:8e:d8:
07:7b:fb:c2:39:18:e4:31:7f:5d:0e:ea:f2:ef:dc:40:26:78:
6b:49:b3:b9:66:57:12:0c:80:fe:1b:55:86:24:57:6e:e2:f4:
8b:cb:71:27:91:3e:84:22:42:04:d4:df:ba:a5:4d:f2:09:45:
0e:23:15:a0:59:e5:7b:f3:9d:33:2c:01:4d:3f:f0:22:eb:6c:
fa:ca:1f:ce:9d:6c:5d:21:ce:af:5e:64:77:e0:e3:f4:bc:5e:
8c:e0:68:9f:9e:21:ba:15:b0:66:4a:68:88:5f:cd:f4:b8:7f:
d9:da:85:9c:a5:e0:0d:ac:53:83:7a:87:25:5c:40:a1:34:11:
5f:bf:bd:9f:1e:5d:5a:22:61:bb:52:28:81:d5:54:80:36:c5:
d4:8d:29:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 13:38:59 2025 by rpki-client