Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
File: CYdvfc8Myud0IWBGOzjhw181bRI.mft (raw, json)
Hash identifier: EtUlEE4QYQspEkpeNMbx2EAuccNZMMa5pMv1yVTBjyo=
Subject key identifier: 4C:80:E5:D4:1C:F1:EF:62:D9:AE:1A:E6:EB:12:18:E2:81:99:6F:E5
Authority key identifier: 09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
Certificate issuer: /CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Certificate serial: 019A7225EBDC965D549E83B7DF43BC8E5B4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
Manifest number: 0F92
Signing time: Tue 11 Nov 2025 09:01:19 +0000
Manifest this update: Tue 11 Nov 2025 09:01:19 +0000
Manifest next update: Wed 12 Nov 2025 09:01:19 +0000
Files and hashes: 1: CYdvfc8Myud0IWBGOzjhw181bRI.crl (hash: Tg2fBSuFcREpczDMeOGw6olV4DVR3YBFcwd4RJRNimM=)
2: v1PRoA5ebsh_hlHI-WdJ9oH7RYY.roa (hash: g731f8Kk7ZRmBzHdANv/XJyJm7Gc4rKXDwNwW3MJnpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:eb:dc:96:5d:54:9e:83:b7:df:43:bc:8e:5b:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Validity
Not Before: Nov 11 09:01:19 2025 GMT
Not After : Nov 12 09:01:19 2025 GMT
Subject: CN=4c80e5d41cf1ef62d9ae1ae6eb1218e281996fe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1d:4e:73:b7:1e:78:15:41:cb:ca:38:b5:5d:
e5:98:25:3e:09:f9:10:36:65:59:52:ca:7c:58:b4:
1e:e3:1d:7b:09:0e:fd:a2:b2:0d:f6:65:1c:99:80:
e7:2b:b4:57:16:f2:47:f1:9f:2e:af:7c:58:a7:e7:
11:6e:c0:05:89:0c:f0:55:5f:39:3f:ff:de:f5:5c:
49:99:f5:cc:49:2f:c0:1c:2a:31:4f:db:92:69:c6:
64:4b:f5:5a:10:98:85:9d:c4:1b:d1:cb:5f:cc:12:
a1:ca:dc:81:16:b3:71:9f:44:fd:7a:cf:37:06:f1:
b9:5d:ab:8d:63:11:78:0d:65:66:ec:77:8c:69:75:
2e:a3:95:9c:0b:62:91:37:6e:c5:0e:8b:80:c4:0c:
44:76:dd:24:95:7b:1f:35:70:6c:3e:88:33:07:1d:
30:eb:2d:c2:c7:63:b8:f8:58:80:c0:13:12:86:e7:
43:45:0c:fb:af:52:f7:ae:5e:ab:fe:f4:6a:82:e5:
db:b6:40:f7:49:fe:71:87:60:b7:60:5d:39:2d:26:
7d:63:90:a5:9f:ad:51:c3:24:cb:ae:fb:87:73:c9:
bd:90:96:16:18:10:e3:8f:e7:cf:5d:d4:cd:d5:8e:
59:c3:5c:e5:ba:e0:92:e1:79:94:db:7d:ce:95:b8:
53:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:80:E5:D4:1C:F1:EF:62:D9:AE:1A:E6:EB:12:18:E2:81:99:6F:E5
X509v3 Authority Key Identifier:
keyid:09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:04:7a:05:a6:1a:48:80:9b:04:99:48:d0:70:c2:11:ab:4c:
d0:b7:7b:81:52:3f:0f:73:c0:86:81:21:d4:28:21:d8:f1:75:
84:08:71:7b:ba:e9:20:77:fe:61:f0:bb:4d:f0:ee:16:ca:b0:
70:76:91:74:d7:dc:3e:bc:75:8e:06:8a:9a:54:5c:49:33:bc:
dd:6d:45:d6:46:b1:de:19:d1:c1:ae:54:14:0d:e9:56:d6:f0:
2f:34:0f:e2:24:3a:1e:85:69:9b:c7:91:6e:c7:20:8b:13:bb:
2a:2b:04:01:ad:b3:14:4c:57:18:f0:cd:8e:b7:a1:54:ea:b3:
a1:ee:ba:bd:55:50:68:e0:c3:59:f7:99:8b:45:74:33:d6:cd:
6d:9c:11:af:84:5d:a8:04:8a:2d:fa:9f:25:ab:34:91:ea:4c:
c3:20:e8:98:b1:23:e3:c3:63:0c:67:49:a9:dc:a9:56:aa:45:
29:75:b4:c3:6e:a6:3c:7a:06:a4:31:63:72:e1:8b:c0:75:c6:
fe:b5:c3:5f:37:34:1f:57:3b:bf:71:7c:50:0b:7c:a7:a1:dd:
4a:4d:35:e8:ec:f6:17:02:59:60:b1:71:c4:17:2e:31:7a:f1:
fe:56:43:be:c8:72:06:43:82:87:4f:95:5b:f6:55:79:6e:a6:
70:43:43:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:47:04 2025 by rpki-client