Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
File: ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft (raw, json)
Hash identifier: 8MTYTrdEf45HUqSoerM9KcQ7g4dKRpmsQC9OlDWw7xQ=
Subject key identifier: 7D:01:62:EB:CC:28:86:2B:26:B8:AF:2B:8D:00:21:F3:DE:64:82:C2
Authority key identifier: CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
Certificate issuer: /CN=ca5154158905d1d44c4588dfd25802f324a93d61
Certificate serial: 019922C35CCAE353A9D7AEC0F9128B4C44C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
Manifest number: 04C8
Signing time: Sun 07 Sep 2025 06:00:52 +0000
Manifest this update: Sun 07 Sep 2025 06:00:52 +0000
Manifest next update: Mon 08 Sep 2025 06:00:52 +0000
Files and hashes: 1: AVYBUHDR8cllHf1Clp-tHJ3mnJM.roa (hash: AnG8BWUfPxV5o1EC1SevW/uoDYd+aQAPwe1f/26+nZM=)
2: ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl (hash: c7pNCafxjdaE0YOEN7pfYGEHoEbaCGXg4n5xSyvx2dE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:5c:ca:e3:53:a9:d7:ae:c0:f9:12:8b:4c:44:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5154158905d1d44c4588dfd25802f324a93d61
Validity
Not Before: Sep 7 06:00:52 2025 GMT
Not After : Sep 8 06:00:52 2025 GMT
Subject: CN=7d0162ebcc28862b26b8af2b8d0021f3de6482c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:41:fd:9d:6d:90:2d:d1:80:75:e9:67:3f:c8:
3d:a3:ab:34:a9:2d:24:32:d9:c2:b1:a9:56:dd:cf:
aa:00:0a:1e:11:8f:c6:0b:43:2d:02:80:ca:3f:48:
11:78:24:e4:bd:fd:dc:bc:c0:3b:76:14:27:12:8a:
96:4e:94:e7:3c:e2:6d:a9:09:99:a6:df:db:c0:10:
11:87:95:c8:60:bc:9c:01:09:58:8c:d0:4d:1f:16:
7e:b8:05:b5:a5:38:f4:5c:b1:40:b7:07:9b:bc:68:
7d:2e:6c:f1:97:03:a7:ed:15:37:5b:3f:55:9d:ce:
77:6b:b0:00:59:ad:6d:3f:02:a1:08:a3:2f:d4:f3:
f7:55:ea:b1:c2:1e:b0:bc:ed:d0:ba:0f:c6:f5:dc:
e7:1e:b6:92:f3:eb:c4:8c:45:7b:50:76:3f:6b:4a:
fa:1d:13:b5:07:91:fb:9c:22:e1:d6:bc:07:0c:b6:
b9:5b:7f:9a:d3:7d:12:b0:d7:80:cb:19:dd:29:51:
8d:3c:1c:6e:7e:03:3f:66:d3:6f:15:f5:1f:69:80:
9c:a3:61:0f:0c:e1:71:dd:c7:48:06:19:07:39:69:
04:ef:ab:66:9f:62:32:35:48:08:f6:e5:32:3a:47:
27:8b:b3:c2:d1:52:79:39:97:41:92:ad:2b:d1:a1:
bf:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:01:62:EB:CC:28:86:2B:26:B8:AF:2B:8D:00:21:F3:DE:64:82:C2
X509v3 Authority Key Identifier:
keyid:CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:a3:b8:63:ad:f7:b0:e6:82:f5:09:ea:f2:fa:f6:c9:a6:91:
34:eb:dc:ef:3c:a3:db:d4:13:62:da:37:9b:44:8b:bb:7c:1e:
ee:c7:37:17:25:83:d4:91:23:26:e2:c4:7c:03:df:f6:f8:ae:
3e:ba:70:bb:7d:46:3c:b5:24:a9:9e:12:49:ad:ba:35:3e:5c:
58:cc:72:92:e6:c6:38:df:c8:32:e0:34:72:f2:8b:dd:79:34:
2f:2f:d3:f9:b6:1e:a5:70:f2:2b:f7:40:fb:4c:1f:a1:12:68:
fa:eb:66:2f:ae:58:dc:c1:44:6f:cb:0f:14:a9:66:5d:ee:1e:
9b:79:86:69:71:92:bb:f6:13:ef:f6:b7:b4:1d:8e:80:ee:ff:
a3:dc:b1:86:78:e0:23:64:6f:ec:b6:a7:30:f2:82:26:ad:08:
3e:c3:a9:1b:96:98:ae:99:b5:fe:fd:df:26:6b:f8:62:33:cd:
5b:f0:0c:ee:e1:26:24:6e:bd:7d:a9:ae:99:e4:4f:18:0e:97:
74:4c:7c:bd:ef:fc:58:cc:4c:f9:d6:5e:70:08:ee:af:e1:95:
f9:ae:49:9e:43:95:13:e9:80:60:40:5e:6f:c0:8e:dd:87:29:
94:3b:c2:f2:f8:7a:5e:d1:b5:e3:66:be:f7:b9:c4:f1:83:91:
f6:29:43:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:24:54 2025 by rpki-client