Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
File: YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft (raw, json)
Hash identifier: 3oMH6aocy1k8Y0Y7qtxoVB+QIeXqrkLvyTQ6PF5ufg8=
Subject key identifier: AE:E5:06:24:97:5F:A1:FC:3E:83:D1:A3:B7:BC:15:6C:9C:F6:05:BE
Authority key identifier: 61:04:11:21:CC:C6:E6:5D:93:39:61:FD:57:2D:59:E2:61:F2:1A:31
Certificate issuer: /CN=61041121ccc6e65d933961fd572d59e261f21a31
Certificate serial: 019A22F7B3705B940B19C49E26A11E2D87B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
Manifest number: 16F7
Signing time: Mon 27 Oct 2025 00:00:49 +0000
Manifest this update: Mon 27 Oct 2025 00:00:49 +0000
Manifest next update: Tue 28 Oct 2025 00:00:49 +0000
Files and hashes: 1: EwMUoWYW4dc0tRkkx15ciptmQak.roa (hash: IxyoruIJ2PWmvP6nW1K1qsmgYgo96Vwp6Gm5YCkQlWE=)
2: YQQRIczG5l2TOWH9Vy1Z4mHyGjE.crl (hash: 4mAi0fbDohfaNhR9BU2A3GV/drSUTyQH/xlVg9aXhHI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
rsync://rpki.ripe.net/repository/DEFAULT/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:f7:b3:70:5b:94:0b:19:c4:9e:26:a1:1e:2d:87:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61041121ccc6e65d933961fd572d59e261f21a31
Validity
Not Before: Oct 27 00:00:49 2025 GMT
Not After : Oct 28 00:00:49 2025 GMT
Subject: CN=aee50624975fa1fc3e83d1a3b7bc156c9cf605be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:86:02:94:4c:ce:09:38:7f:6c:c2:4c:0b:8e:
94:7b:05:fc:44:0a:0e:6f:8d:29:cb:5e:b2:64:6d:
ca:7d:52:66:97:ea:8d:43:35:5b:49:d2:e1:83:8e:
7c:40:89:21:90:2d:d0:8a:8f:cb:65:de:fe:7b:76:
7f:98:76:dd:49:2d:12:07:bb:9c:12:e6:6d:d6:80:
61:dd:cd:9f:f9:ff:2a:96:ff:14:a8:7f:10:a7:d6:
93:98:60:2b:b4:c3:85:14:19:67:ab:63:14:8c:24:
da:1f:52:36:51:6d:7f:c7:52:a5:b5:b9:25:d4:67:
dd:d8:c2:59:c9:6d:25:20:e7:1a:f7:31:72:fe:64:
70:c7:35:f4:2c:b4:1a:ff:13:94:7c:65:6f:71:4f:
11:dd:62:7c:aa:88:3d:9c:3f:21:71:95:ca:02:a0:
64:cc:bf:95:53:45:60:ae:19:bf:85:f3:b4:4a:18:
4f:30:ad:cd:a7:3b:3b:07:84:d7:82:d1:5b:27:1b:
23:c8:9c:d1:ba:48:eb:72:01:c6:ae:f4:8e:85:9c:
f4:83:00:a1:64:59:b6:5c:59:f9:b7:ff:30:a7:37:
b8:19:ac:bc:e2:e9:36:4a:c6:04:93:d7:e8:9a:c8:
81:36:a6:e5:e3:4f:17:8b:33:14:f8:77:e5:b8:b1:
80:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:E5:06:24:97:5F:A1:FC:3E:83:D1:A3:B7:BC:15:6C:9C:F6:05:BE
X509v3 Authority Key Identifier:
keyid:61:04:11:21:CC:C6:E6:5D:93:39:61:FD:57:2D:59:E2:61:F2:1A:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:41:8d:ad:23:9f:ed:be:db:49:b6:31:41:2b:1b:d8:d3:b8:
25:12:64:64:9e:bb:0e:8c:3c:83:1c:a7:0b:80:57:ff:3c:b3:
94:70:5a:d7:62:2f:c3:69:bc:3d:89:4e:a7:97:aa:50:18:87:
5f:1a:97:52:c9:07:57:f9:8e:3f:86:d8:4c:4e:0c:7a:b0:70:
e7:a5:89:b9:ff:e6:31:7a:e6:11:bc:15:11:a7:77:c4:b7:6d:
1d:f3:ce:d3:90:25:38:9f:e7:dd:af:21:7d:b0:1e:b9:57:4f:
ea:58:e4:fc:6d:bc:6e:9e:a3:e9:8a:f7:ad:0e:78:af:f4:6b:
c3:e1:fd:7a:ce:b5:90:e1:69:81:3c:af:cd:ec:5c:d5:cc:b8:
19:ae:a0:f5:5c:cb:7a:93:ca:f8:e5:f3:e1:13:a2:14:e9:39:
50:fa:a8:be:51:be:73:51:74:21:98:c6:ca:b3:41:7b:b7:da:
7b:65:38:33:1e:8a:19:c1:31:cb:fe:2a:4c:bc:2f:3d:e1:0f:
8d:dd:62:86:05:0b:6e:38:fa:cf:81:94:89:e4:33:52:32:37:
67:02:a0:4e:25:38:c9:fe:ab:97:4c:4b:b9:68:6b:ab:7e:18:
80:f4:71:71:f6:96:3b:e9:ac:81:cc:3e:ff:fd:2f:d4:7c:b1:
30:b4:6c:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 05:50:20 2025 by rpki-client