Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
File: ylmb3Bz8eujML7oV_NgMoRc3hGc.mft (raw, json)
Hash identifier: yIsNpOBjIVFkAi1b5OetPXNPbioWDm16N3E5gBxr0lc=
Subject key identifier: 4B:03:4E:B2:DC:63:FE:51:88:8B:35:9F:F5:64:B5:48:BD:C5:85:FC
Authority key identifier: CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
Certificate issuer: /CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Certificate serial: 019A240A058021A73ABFFE3AB388E9F9D994
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
Manifest number: 030E
Signing time: Mon 27 Oct 2025 05:00:27 +0000
Manifest this update: Mon 27 Oct 2025 05:00:27 +0000
Manifest next update: Tue 28 Oct 2025 05:00:27 +0000
Files and hashes: 1: ylmb3Bz8eujML7oV_NgMoRc3hGc.crl (hash: ZmIr2f+dmPZ2mQovl2oft+n3G99lvD8l/2axR/Zeex8=)
2: zIZvUw6LEttnk9GqCkFL8S-ncbM.roa (hash: g5dRThI/Wu6nM24igsF8Y2hQEgVjjdxUN3aRLJWGc3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:0a:05:80:21:a7:3a:bf:fe:3a:b3:88:e9:f9:d9:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Validity
Not Before: Oct 27 05:00:27 2025 GMT
Not After : Oct 28 05:00:27 2025 GMT
Subject: CN=4b034eb2dc63fe51888b359ff564b548bdc585fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:25:10:03:74:07:26:f0:b1:d1:49:93:ae:6f:
29:de:37:b3:34:73:4c:cc:38:04:a0:29:55:fd:5a:
ee:8f:52:b1:88:4c:61:37:14:b5:99:6f:c0:06:2c:
26:c5:1b:02:c2:80:b1:d4:2a:c5:05:95:4a:e4:22:
71:9f:00:84:9a:94:96:59:7f:78:b9:be:63:f4:86:
88:52:27:da:2e:75:d8:fc:4b:dc:73:00:c3:69:0d:
cf:59:58:97:b1:34:bc:b3:b2:60:78:2e:25:f9:94:
8e:5a:11:69:bb:4e:97:bd:7d:61:1a:91:f1:6b:dd:
04:96:4d:15:ff:9a:0d:8e:0c:9a:82:42:7e:2e:87:
b2:c9:3b:82:8c:b1:fa:d0:e0:24:67:ea:ac:93:59:
50:89:e4:10:0d:cd:31:bb:c7:a2:f9:52:ed:1a:e5:
be:5f:80:8f:01:da:83:b4:e8:ae:1f:e1:d5:02:11:
3e:22:9e:6d:b3:2f:d0:b9:d0:33:25:8e:b0:7b:32:
ba:5f:c4:26:da:b4:7c:e5:4b:18:5e:7a:17:dd:05:
6a:3a:a8:31:47:f1:0d:f8:16:96:2b:44:cf:5c:ee:
58:73:41:74:28:02:34:4c:71:a7:86:74:60:ca:b2:
44:00:5c:f1:c8:b7:eb:4a:3e:d4:8e:86:65:c2:1a:
6c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:03:4E:B2:DC:63:FE:51:88:8B:35:9F:F5:64:B5:48:BD:C5:85:FC
X509v3 Authority Key Identifier:
keyid:CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:f9:76:86:29:9c:ed:ca:56:82:09:cc:69:72:5d:42:bd:2f:
39:a0:d0:48:0f:7f:e0:11:c9:9d:aa:01:da:c4:5e:c8:f2:8f:
14:26:96:1b:4a:ed:e4:43:59:87:7e:18:bd:a5:86:21:07:9f:
27:44:a7:02:17:c5:8d:88:c1:59:77:ed:40:1b:19:99:f4:c9:
aa:ca:ea:9a:43:dc:99:07:9a:5b:e2:b8:6c:97:7a:43:dc:8e:
04:7e:ee:33:ea:2b:41:e6:71:dc:0f:ef:ce:2f:1b:e1:fe:06:
c4:20:f6:90:0d:44:3b:20:cc:9b:8a:bd:8b:cb:6f:ad:30:55:
d0:a0:b2:7d:18:f1:08:97:66:3f:55:59:65:4e:93:ac:e6:42:
d3:e6:38:13:f8:e2:6c:d9:0c:16:ac:b1:c8:fd:68:92:f1:dc:
d4:ab:60:93:55:d1:7e:82:b5:18:1f:45:d3:2f:82:4e:10:12:
1f:16:6e:4f:e2:5f:9b:20:b8:cb:8f:d6:5c:15:2f:dc:3b:e4:
04:7c:f3:83:7d:03:eb:46:33:d4:5e:98:86:e8:ff:59:3a:04:
81:cb:61:f4:aa:bc:50:d1:c4:80:e8:46:59:7f:3b:9f:6c:49:
21:f8:7c:9d:61:b1:8f:87:78:2f:25:17:69:3c:c5:b4:93:5e:
0c:48:db:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:24:20 2025 by rpki-client