Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
File: y6AXGgLV5KdftAY1VFrgBkyMzK0.mft (raw, json)
Hash identifier: Nts+ecJY864avJFiDvRSnnU0JV8XBjQ2LmlNTg/tlRI=
Subject key identifier: 95:73:DF:7B:B2:5F:45:3D:87:45:AC:52:92:1F:24:1C:20:60:2D:47
Authority key identifier: CB:A0:17:1A:02:D5:E4:A7:5F:B4:06:35:54:5A:E0:06:4C:8C:CC:AD
Certificate issuer: /CN=cba0171a02d5e4a75fb40635545ae0064c8cccad
Certificate serial: 019A15A9B30E0745C0E26581272545B69D7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
Manifest number: 13FC
Signing time: Fri 24 Oct 2025 10:00:34 +0000
Manifest this update: Fri 24 Oct 2025 10:00:34 +0000
Manifest next update: Sat 25 Oct 2025 10:00:34 +0000
Files and hashes: 1: mj2SP2YUf8OOW3PWyfsSenlnbcQ.roa (hash: 7rYL22HIBA9YP5PrLL9E5bTyxJEJdAa2DC73cuHwaP4=)
2: y6AXGgLV5KdftAY1VFrgBkyMzK0.crl (hash: E3h+C8f9g68SnbhZ+VIKPLhwvUDZOvkvL31VtrEPCNw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 08:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:15:a9:b3:0e:07:45:c0:e2:65:81:27:25:45:b6:9d:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cba0171a02d5e4a75fb40635545ae0064c8cccad
Validity
Not Before: Oct 24 10:00:34 2025 GMT
Not After : Oct 25 10:00:34 2025 GMT
Subject: CN=9573df7bb25f453d8745ac52921f241c20602d47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:86:a3:99:0d:98:bd:76:98:ba:99:eb:b9:8e:
7e:b6:f3:24:77:30:5d:3b:dc:23:89:53:82:cd:9c:
92:a2:5f:1b:fd:f1:cd:6b:85:74:db:51:af:df:ac:
61:7e:46:10:f9:28:d5:66:ae:e1:f6:09:36:ac:7e:
5c:65:39:94:70:0a:c0:35:dd:e4:65:19:53:38:85:
59:64:88:e1:aa:70:97:33:95:1b:3e:3e:6e:17:fb:
6e:fa:ca:36:86:d6:20:1d:10:d3:a4:9d:3f:b5:fc:
d4:68:d9:f8:a0:ce:6e:2d:67:30:90:c8:05:ac:c7:
47:63:8f:13:6c:f3:dc:03:94:7f:f2:c5:3a:30:a5:
9c:c6:38:c9:91:30:3f:91:14:8f:68:22:19:5f:4a:
42:bb:4c:50:77:fd:93:ad:17:12:d5:f2:4e:1c:df:
23:cc:b2:a4:cc:5c:e4:4c:84:62:7f:a5:76:d2:c3:
61:a6:e5:9f:2e:92:95:70:97:d0:14:8e:00:03:f0:
c1:28:48:44:b8:00:1e:7e:4c:19:72:e2:ef:77:8b:
fd:42:ef:23:67:4c:c6:35:64:9f:ad:12:60:47:39:
d8:b1:8d:6e:ee:22:61:e6:4a:0f:4d:32:ed:27:cc:
8f:c5:a9:4a:3a:04:ba:03:01:89:7a:9b:e7:4f:06:
d1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:73:DF:7B:B2:5F:45:3D:87:45:AC:52:92:1F:24:1C:20:60:2D:47
X509v3 Authority Key Identifier:
keyid:CB:A0:17:1A:02:D5:E4:A7:5F:B4:06:35:54:5A:E0:06:4C:8C:CC:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:2d:8f:77:c2:18:93:8e:55:bf:16:ed:94:79:68:6b:d1:42:
a7:19:59:2f:21:af:ea:83:a9:4e:a8:4f:58:1a:43:12:95:eb:
69:06:a9:14:0f:98:5f:f0:1b:bc:24:06:ef:f9:7e:c0:2c:73:
3f:b1:c2:48:d2:a9:bf:48:f8:62:bb:f2:23:eb:0b:d0:34:8e:
54:47:1e:2d:13:c2:88:b8:bd:52:8c:75:33:bf:ee:41:0a:13:
fd:49:00:a4:06:dc:9e:9d:aa:7d:8d:ca:04:ae:26:93:0d:5f:
90:e2:9c:49:18:94:29:76:f1:a4:0e:5b:be:cb:f5:84:6f:bf:
47:38:0c:47:f0:7f:30:66:e0:33:9a:bb:f7:bb:3c:db:7a:35:
5c:ec:92:4f:52:19:b1:6b:4f:2d:21:79:f3:1c:b2:3f:0b:44:
78:f5:29:7f:75:74:1f:a6:2f:73:2f:17:da:b5:a8:e1:6c:2b:
8c:32:3d:4d:e3:e9:2e:0f:a7:ed:62:6d:f4:42:90:28:dc:d9:
61:06:c1:af:f0:55:8f:92:98:99:f4:bd:ca:72:78:9d:29:4e:
19:c0:7d:1b:78:8d:15:b9:14:52:0e:61:0b:b8:bc:5d:8b:59:
5f:fe:bd:74:a6:fb:e5:55:a8:9f:a8:e3:59:05:80:d9:f4:ae:
79:6a:cc:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 11:48:33 2025 by rpki-client