Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
File: ymTavZvEZIX2qRY27edT2jjI82Q.mft (raw, json)
Hash identifier: z7xB2fW9P6R4gFn1OAaVfgzStdxTZcFmtJN+gEgvjyE=
Subject key identifier: 1B:E7:22:9C:8B:F9:1E:39:9B:E0:14:EE:EB:45:BF:24:7C:02:46:74
Authority key identifier: CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
Certificate issuer: /CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Certificate serial: 019A7112F64E0D8F29161FB4F0815B5769C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
Manifest number: 171F
Signing time: Tue 11 Nov 2025 04:00:59 +0000
Manifest this update: Tue 11 Nov 2025 04:00:59 +0000
Manifest next update: Wed 12 Nov 2025 04:00:59 +0000
Files and hashes: 1: NA5mgzoDK6jbbKh48XeliWtbDYM.roa (hash: 9nIV3wU01lTdftDhSQVjEb+D2h3DXok24aEDQGNAM3o=)
2: ymTavZvEZIX2qRY27edT2jjI82Q.crl (hash: u0Jz1gCMLSC8dr0YnyqZ9rQqyupChF3l3nBZdny98eI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:f6:4e:0d:8f:29:16:1f:b4:f0:81:5b:57:69:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Validity
Not Before: Nov 11 04:00:59 2025 GMT
Not After : Nov 12 04:00:59 2025 GMT
Subject: CN=1be7229c8bf91e399be014eeeb45bf247c024674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2f:7c:ef:25:71:69:46:a5:d8:f7:09:d8:3c:
ab:8d:af:17:63:94:f4:2c:64:4e:ec:a5:49:41:13:
06:a2:16:b9:ff:c0:95:c9:9b:5b:6b:a2:87:6e:43:
01:92:f9:72:cd:3c:64:e6:37:b4:32:1b:53:20:d9:
b5:57:b2:8d:e7:86:de:cf:c8:18:e8:b6:a6:40:0b:
9c:97:72:b7:e0:87:18:c0:39:5c:96:3e:bc:80:a3:
6d:ca:b3:23:19:13:4b:b8:1c:48:df:f1:74:72:d9:
3a:73:e9:e3:2d:f9:02:f5:64:1e:d5:21:a8:9f:6d:
45:89:40:cc:2c:82:d5:b8:7e:18:ab:1d:02:51:89:
3b:8a:22:83:58:21:fe:1d:71:31:64:7e:f6:58:46:
3c:39:5b:8d:31:65:4a:29:5b:d3:0c:0c:d0:8d:d1:
e2:a2:4d:ff:b9:07:33:a2:40:82:db:76:a3:5a:d7:
7d:8e:f2:97:ee:91:e1:bc:cb:06:ff:1a:97:61:1b:
e3:f9:3c:e0:99:6f:9f:01:0d:fb:71:8a:07:4d:ec:
6f:5b:6c:b4:cf:17:f5:2f:9e:e1:26:ec:4f:a7:4d:
e8:b0:a4:b5:6d:cc:25:dc:bd:f5:77:3b:86:12:da:
0f:64:e5:ba:7d:7f:d1:04:08:2f:71:df:82:00:12:
c0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E7:22:9C:8B:F9:1E:39:9B:E0:14:EE:EB:45:BF:24:7C:02:46:74
X509v3 Authority Key Identifier:
keyid:CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:30:69:cd:2e:53:23:c4:78:35:4a:56:cf:d1:ad:10:c6:2b:
fd:24:b2:2e:a8:f1:18:42:d4:c0:cf:7e:cb:c6:a9:ba:53:75:
ca:bc:2c:fe:67:f1:57:4c:5b:f3:37:11:d2:88:ae:c0:50:89:
a4:05:77:80:b9:50:08:e1:5d:87:b4:76:00:52:62:f1:ec:78:
f4:88:ce:f9:02:28:83:34:6a:29:29:93:96:08:fc:97:1c:68:
8b:9e:c3:51:fd:e8:03:78:57:06:04:ed:91:23:37:b2:0b:27:
b9:51:93:b0:17:2e:65:a6:6b:29:75:1f:a1:fd:a7:2c:38:45:
fe:3f:64:5a:cc:96:1b:2e:cf:90:48:2d:a7:5c:c7:9c:f0:bd:
7f:1d:59:68:9c:20:30:b0:28:3e:dd:56:8d:50:41:b3:c2:22:
64:09:c9:2b:4a:ad:8d:80:07:6f:f2:8a:cb:40:10:28:56:21:
2f:2a:56:32:db:bf:5a:c3:98:2e:c4:b0:6f:38:8e:27:c1:b6:
3f:5b:47:bd:a1:a2:f4:27:93:f1:4d:70:71:05:24:f3:06:e1:
81:9f:49:c8:ab:a8:25:b1:29:46:b4:36:04:a6:62:12:28:46:
2e:a0:5a:c9:df:d7:1f:64:d2:89:91:59:bc:93:96:b4:a9:1a:
63:cc:31:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:10:21 2025 by rpki-client