Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
File: y9dX6ROqzkNObdbW1Qp-33LOiIw.mft (raw, json)
Hash identifier: lumQPkR4TdB2493AeOU4WUote22wiTAnT1hbwhxSj8E=
Subject key identifier: BE:B2:FE:BD:2E:7D:C8:D7:40:E8:B1:E4:12:9A:D0:43:11:93:6D:32
Authority key identifier: CB:D7:57:E9:13:AA:CE:43:4E:6D:D6:D6:D5:0A:7E:DF:72:CE:88:8C
Certificate issuer: /CN=cbd757e913aace434e6dd6d6d50a7edf72ce888c
Certificate serial: 019A70A4C5E4803CD84805866BA240C25864
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
Manifest number: 10EB
Signing time: Tue 11 Nov 2025 02:00:37 +0000
Manifest this update: Tue 11 Nov 2025 02:00:37 +0000
Manifest next update: Wed 12 Nov 2025 02:00:37 +0000
Files and hashes: 1: xXYCNUnm-3UsiS0Y2j4IJt8GJmU.roa (hash: kfa/1BPOG2GKMxXo/zgSWZ2DSaf3+pCaWIgYdprI0TU=)
2: y9dX6ROqzkNObdbW1Qp-33LOiIw.crl (hash: gA6zoaE9bjl3iFUuvN/AgXEera0LJHcjCstiVp+OVv0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a4:c5:e4:80:3c:d8:48:05:86:6b:a2:40:c2:58:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd757e913aace434e6dd6d6d50a7edf72ce888c
Validity
Not Before: Nov 11 02:00:37 2025 GMT
Not After : Nov 12 02:00:37 2025 GMT
Subject: CN=beb2febd2e7dc8d740e8b1e4129ad04311936d32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:43:25:83:ab:5e:0b:cf:16:02:93:0a:83:59:
7b:09:58:37:25:12:4b:74:89:a5:82:b1:f9:7c:1b:
93:58:c9:e1:b8:85:ca:d9:d7:0a:d3:60:31:bc:18:
7e:6a:c6:e5:45:09:68:63:ed:d9:4a:ce:f6:84:9c:
d0:0d:d7:1a:2a:3e:3c:e9:18:f9:47:dd:4e:bd:8c:
75:7f:a8:29:0e:26:39:4d:ee:52:90:33:92:a2:87:
e9:4c:43:0e:08:fd:ae:66:94:07:e1:8b:d9:9e:03:
5a:d4:63:d4:17:f1:a1:c7:0f:99:82:3b:87:fe:9e:
fb:2a:9d:df:4d:c4:d9:39:05:dc:43:ba:29:c2:22:
17:05:a0:10:c8:7e:12:6d:7b:dc:c7:de:d1:fb:0e:
e3:57:e6:2e:2e:44:6b:87:bd:5e:ed:ed:14:0a:f9:
a1:f7:7b:19:63:cc:d8:88:b8:99:f2:42:b8:fb:b4:
36:b1:7d:da:3c:cd:2d:48:f0:a2:02:13:64:a7:9e:
bb:22:94:1e:c9:a6:a0:90:c4:80:e4:75:76:9b:be:
f3:d6:1a:9d:dd:b3:cd:1f:90:1b:47:49:1b:58:f4:
1f:b7:18:8f:16:3b:34:cc:f8:2e:8e:31:61:83:70:
bc:99:95:d7:61:96:41:d8:a9:89:5f:ff:78:27:b2:
7b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:B2:FE:BD:2E:7D:C8:D7:40:E8:B1:E4:12:9A:D0:43:11:93:6D:32
X509v3 Authority Key Identifier:
keyid:CB:D7:57:E9:13:AA:CE:43:4E:6D:D6:D6:D5:0A:7E:DF:72:CE:88:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:f8:ac:d6:60:76:d1:8d:b3:43:90:b7:72:95:43:40:11:a0:
15:f2:29:8a:33:c8:f8:da:c0:aa:93:95:1a:dd:00:1e:92:18:
95:c9:52:f5:c9:dc:b7:75:22:4e:40:2c:da:6a:6a:ff:66:2f:
05:b1:9d:e0:24:30:35:dd:26:c5:fe:9f:42:84:a4:31:be:19:
d7:4c:77:12:34:d1:40:75:ff:5f:f0:ed:b3:f1:e9:10:13:0c:
7b:dc:3c:d5:81:48:4c:9a:36:18:b7:fa:4a:a2:e9:09:f7:35:
df:bc:87:96:c5:84:cb:af:a6:4c:96:fd:d9:1a:41:24:82:b6:
4a:76:7b:a8:ec:c3:25:bd:db:4c:61:8d:57:4c:51:49:c5:1d:
67:18:3e:1f:90:1e:68:63:24:14:a4:21:4a:07:16:43:b0:ec:
d5:63:59:10:e0:82:ed:73:43:4e:6b:0c:b3:4d:30:c9:76:26:
71:f9:e8:70:3b:fc:17:ea:90:7c:87:6c:1d:54:5d:8b:36:90:
b9:23:4b:f9:e3:ed:07:5f:c2:24:c5:04:8c:53:4c:0c:40:07:
c6:d4:3d:be:5e:ea:5f:a1:32:3b:f5:99:d5:63:96:47:98:63:
cf:e0:eb:34:cf:85:9f:da:72:bd:ca:f8:3b:b4:41:3d:55:74:
52:7f:86:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:48:03 2025 by rpki-client