Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
File: ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft (raw, json)
Hash identifier: u2ukR2ud4PNtFRtE3dpl7Q0ALvfIHpVZD5T+RNfIfcU=
Subject key identifier: 8F:67:A3:C1:95:B6:90:29:BC:2C:9F:F9:93:18:2C:3A:E5:AA:45:58
Authority key identifier: CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
Certificate issuer: /CN=ca5154158905d1d44c4588dfd25802f324a93d61
Certificate serial: 019A70DC0498517A2E0B32B3E477FCB12929
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
Manifest number: 0575
Signing time: Tue 11 Nov 2025 03:00:58 +0000
Manifest this update: Tue 11 Nov 2025 03:00:58 +0000
Manifest next update: Wed 12 Nov 2025 03:00:58 +0000
Files and hashes: 1: AVYBUHDR8cllHf1Clp-tHJ3mnJM.roa (hash: AnG8BWUfPxV5o1EC1SevW/uoDYd+aQAPwe1f/26+nZM=)
2: ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl (hash: hFmj/FyE61JQ2sgmP11H1dSeARjDe//K5Ft9nQg32nQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:04:98:51:7a:2e:0b:32:b3:e4:77:fc:b1:29:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5154158905d1d44c4588dfd25802f324a93d61
Validity
Not Before: Nov 11 03:00:58 2025 GMT
Not After : Nov 12 03:00:58 2025 GMT
Subject: CN=8f67a3c195b69029bc2c9ff993182c3ae5aa4558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c7:b7:b2:11:7d:9b:00:4f:4d:39:be:6f:be:
f3:ba:1c:8f:d3:99:61:f2:45:a9:82:31:b2:13:cf:
0c:b5:ef:99:35:fa:3a:1a:3a:2f:6d:76:70:88:0f:
94:06:d6:9b:ba:e6:7a:1e:0b:cc:65:18:50:62:cc:
93:51:12:02:bc:cf:c9:9f:61:3b:c6:ff:b5:a8:e4:
3e:73:50:1b:f8:93:17:88:f8:3f:2a:85:7a:ce:84:
e1:b5:32:0b:53:5f:3a:b4:4f:82:7b:cd:2b:5b:4b:
34:6b:ae:3a:98:3b:f0:d0:9c:3c:b9:18:b1:21:10:
45:5a:a0:90:80:ec:97:51:8f:79:ae:b9:e7:cf:16:
2a:8a:7d:ae:15:22:2e:fa:9e:ac:fe:ed:c2:55:6b:
63:ea:6c:fe:81:2c:65:9e:cb:65:ac:ff:ff:72:ab:
8d:72:67:14:62:af:98:02:ed:ed:58:a5:73:3d:f7:
f2:9d:f0:fc:cb:06:cd:d1:91:a4:76:95:b3:15:ac:
6a:a9:63:d1:52:dc:4d:28:40:28:57:d9:de:a8:a8:
38:b4:3f:57:9f:35:4e:1c:20:5c:42:79:f8:ca:be:
ec:40:d7:99:90:76:83:4c:56:5f:80:cd:ff:3d:30:
66:9f:92:62:0d:34:11:2e:e8:a0:f1:58:2c:19:4e:
6f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:67:A3:C1:95:B6:90:29:BC:2C:9F:F9:93:18:2C:3A:E5:AA:45:58
X509v3 Authority Key Identifier:
keyid:CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:0a:3f:cb:9d:12:aa:24:b5:ab:c4:42:99:2b:b1:e7:6d:a0:
19:f5:c2:b4:6c:cb:1d:44:ee:e6:24:90:ae:67:b1:5b:cd:3b:
b3:c0:c5:95:30:34:56:7a:8d:ab:d0:0b:e8:8c:32:18:a6:82:
a2:b2:4b:1c:9b:35:cb:af:04:fd:eb:d5:f8:f2:07:c3:56:af:
51:c6:ce:2d:50:eb:74:c5:64:92:c0:e0:68:d4:1d:fa:8e:50:
1f:c4:8e:a3:84:d1:75:e4:be:06:be:2e:5e:24:cf:b1:b0:72:
0c:de:80:5f:71:18:2b:1e:0a:1f:ae:2e:e7:00:73:d7:3c:a5:
40:ea:b0:32:69:c4:d3:15:87:61:cc:f1:55:43:46:cf:a8:ae:
df:78:b3:de:f3:a7:c9:7e:aa:28:19:c7:a4:c1:7b:eb:c2:cf:
3f:4a:f3:18:05:01:cf:d8:6c:ed:28:3f:a2:a2:15:7c:67:39:
3a:bf:c9:f3:66:c1:07:d8:c9:de:d5:96:d7:b7:5f:a5:93:13:
d0:42:53:8a:0e:31:56:8f:8e:da:cf:48:7d:1b:35:e5:68:02:
9f:26:78:fd:8c:77:ff:cc:23:63:ec:69:d8:81:5c:25:fe:0a:
a4:93:e4:d9:8b:6f:31:22:db:3d:c6:bf:85:f2:7b:a8:14:63:
d7:52:da:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:15:27 2025 by rpki-client