Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
File: YC8n-tkkUqJUswoGDtODsTx1jtY.mft (raw, json)
Hash identifier: POs1PJVzoLxuJ9lflYLFTn3puqa7UnUqa8SN8DIAP7c=
Subject key identifier: E2:CE:38:15:8F:9C:51:2F:5D:31:49:4B:BD:AF:D9:EE:51:B7:BE:D6
Authority key identifier: 60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6
Certificate issuer: /CN=602f27fad92452a254b30a060ed383b13c758ed6
Certificate serial: 019A13F20BC132A30D72D1E43B4EADF3E6B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
Manifest number: 0953
Signing time: Fri 24 Oct 2025 02:00:20 +0000
Manifest this update: Fri 24 Oct 2025 02:00:20 +0000
Manifest next update: Sat 25 Oct 2025 02:00:20 +0000
Files and hashes: 1: TRV1zvMwN77u4mbYXqSf5mMtgyk.roa (hash: AGCpSC7dzCZj1/xhxXIQK1OjIYEOjpJ4XzT4WLt1kl0=)
2: YC8n-tkkUqJUswoGDtODsTx1jtY.crl (hash: fMTW3OygZ5bzGwByTM5fV+iay4CC/YAHXeBhu1qLG60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:13:f2:0b:c1:32:a3:0d:72:d1:e4:3b:4e:ad:f3:e6:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602f27fad92452a254b30a060ed383b13c758ed6
Validity
Not Before: Oct 24 02:00:20 2025 GMT
Not After : Oct 25 02:00:20 2025 GMT
Subject: CN=e2ce38158f9c512f5d31494bbdafd9ee51b7bed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e3:73:33:f4:9f:9f:48:3e:b4:90:a6:85:29:
94:d4:ff:46:7e:b5:82:7f:0a:c5:1e:2e:92:72:db:
1b:a8:2e:a5:44:cc:2c:6d:f4:ac:66:37:c2:ae:9e:
b6:a2:4d:1c:28:40:b6:9f:ab:55:ee:07:25:55:3e:
63:44:6c:2a:05:e3:4d:d1:13:13:8a:7e:ea:b8:ff:
8d:cc:44:4a:9f:bb:16:d8:a7:63:4b:1f:81:5d:b0:
94:a5:19:2e:b8:bc:57:8d:30:72:14:5a:76:07:c3:
aa:79:91:dc:ad:95:64:ce:0f:10:b4:0c:af:9e:68:
65:aa:62:5a:f3:9c:7b:50:53:86:20:0d:a0:85:9e:
d5:07:b0:58:e1:45:18:b9:ba:ad:c1:49:f7:1c:b9:
18:06:58:21:10:74:58:9a:e1:40:b1:d7:2c:66:ca:
98:60:e0:d7:d2:5c:8e:75:b1:91:2e:78:ed:15:67:
46:72:61:ca:2c:28:08:22:96:cc:ed:6c:83:ae:82:
71:9c:d6:0b:84:99:0a:79:0e:9c:b4:0a:7a:45:ef:
ea:4e:ce:65:df:9e:18:8c:90:d4:89:17:c6:30:90:
fd:52:63:d3:94:c1:61:1d:d7:ea:73:8d:cd:a5:db:
ba:79:b6:eb:66:e5:ce:f4:09:65:dd:85:02:8b:ef:
15:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:CE:38:15:8F:9C:51:2F:5D:31:49:4B:BD:AF:D9:EE:51:B7:BE:D6
X509v3 Authority Key Identifier:
keyid:60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:47:93:70:af:77:ea:5f:15:49:db:dc:4b:d3:12:00:4a:35:
b8:29:67:16:4a:9d:9d:a8:19:3a:76:dc:3a:4e:5a:55:fb:2b:
fa:e9:45:aa:bc:e2:d0:32:0f:ba:a1:b5:05:36:b4:b8:05:6c:
55:5e:0b:67:84:73:f6:d6:68:6a:8b:45:b3:c8:4d:c2:67:1f:
db:92:1e:ec:82:a1:67:3e:f7:97:19:6d:99:ff:e3:e7:51:a4:
35:e1:f1:9a:b6:17:3a:55:96:a3:c3:60:ef:4e:ca:76:6e:4d:
b6:bb:cc:8d:7c:52:f5:3d:0a:f7:1a:03:0a:61:34:5b:83:b5:
b1:50:ea:20:30:68:f9:30:0b:67:94:5b:ea:02:8e:25:d5:4d:
a4:96:f1:1a:dc:68:85:d7:8a:27:56:f4:e4:32:4a:bd:b0:02:
35:6a:be:6f:5c:78:e0:f4:8f:87:1e:95:69:2e:09:3b:9c:e3:
30:b1:89:fa:95:97:a3:eb:d1:26:87:98:ae:79:a6:a0:dd:f9:
a9:66:9e:01:3d:be:c9:c8:b5:ab:0e:48:f9:40:b6:89:f4:0d:
59:c8:38:5a:50:c4:60:45:d2:38:70:50:fc:e5:d8:30:ba:bc:
d4:fa:9c:f6:bf:37:89:01:34:58:88:63:dd:23:af:1a:d2:65:
fd:55:3d:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 11:38:52 2025 by rpki-client