Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json)
Hash identifier: bAUD3F0sHoxE8SExts7u7F8WN5ZGDFkuYkbvXwCE3ZI=
Subject key identifier: 78:F9:D4:74:1F:D0:AA:A1:BC:8F:46:54:CC:3C:E0:2F:D4:7E:7F:03
Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33
Certificate serial: 019A56403EE4AB0FD4861592F96D489422DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
Manifest number: 04F3
Signing time: Wed 05 Nov 2025 23:00:42 +0000
Manifest this update: Wed 05 Nov 2025 23:00:42 +0000
Manifest next update: Thu 06 Nov 2025 23:00:42 +0000
Files and hashes: 1: OpWpWHElMT6Em0cb46EU4-eZHBM.roa (hash: UkmgnvSBtnTTqSpYqYCCjTjePdoSg2sK2f+rfkHw/HY=)
2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: UgdAwEKpS8QQw4sUAWEcSQDhvkljsGR4/KR/RooryTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:56:40:3e:e4:ab:0f:d4:86:15:92:f9:6d:48:94:22:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33
Validity
Not Before: Nov 5 23:00:42 2025 GMT
Not After : Nov 6 23:00:42 2025 GMT
Subject: CN=78f9d4741fd0aaa1bc8f4654cc3ce02fd47e7f03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ff:c4:23:9b:77:95:83:91:c2:5f:dc:02:05:
88:f6:70:eb:f8:af:0e:21:dd:69:fa:a2:03:e3:0d:
48:6b:05:2c:74:3a:c3:6f:3b:dd:76:82:e5:b9:8b:
85:81:7f:32:6a:4c:70:38:c9:2b:d6:db:93:65:a7:
9f:51:aa:83:ca:3d:17:42:9f:33:87:cf:fc:b0:2f:
a1:0c:84:94:45:d5:c5:3d:ac:01:a6:a7:30:fd:1f:
19:9f:0e:99:dd:a9:49:53:46:02:70:51:8e:a2:92:
c1:87:ea:9a:a0:c8:01:04:54:c4:7b:8a:17:47:0e:
33:6d:be:70:66:f9:86:28:50:23:53:60:f8:19:81:
51:51:5d:92:ea:2d:61:ae:2e:f7:05:a0:4a:e4:90:
4c:39:bb:6e:46:08:c2:33:4f:92:69:70:51:ea:34:
38:5e:4d:fa:73:11:7d:30:7a:69:0b:7a:c5:6c:7d:
24:9e:8b:18:b2:da:52:f0:ad:97:1c:b0:de:87:72:
1e:a3:c4:b7:b2:d8:ae:10:a5:5f:b9:85:01:35:5d:
aa:32:3c:0b:9c:0a:4a:8c:0a:54:f2:eb:2b:aa:aa:
62:54:ad:a5:d6:91:74:f6:18:d4:a6:f0:4d:22:a5:
5b:6f:be:5a:83:e0:5b:c6:de:fd:da:fd:55:b4:8f:
fd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:F9:D4:74:1F:D0:AA:A1:BC:8F:46:54:CC:3C:E0:2F:D4:7E:7F:03
X509v3 Authority Key Identifier:
keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:5c:4c:86:8a:ed:14:a7:2e:04:b2:86:98:00:f1:fb:d6:51:
af:87:32:cb:62:cd:bb:73:37:85:fc:a3:1f:f8:bd:d8:79:49:
69:4a:1e:63:f1:16:80:2a:1c:08:5c:ad:2e:b3:50:21:0d:a6:
90:ff:d1:12:da:09:7b:3e:2b:31:ef:5d:fd:89:29:70:b9:61:
75:f2:80:30:24:aa:19:fd:eb:db:76:7c:9b:78:1f:bc:27:95:
0c:96:f7:16:5d:3f:1a:97:d5:7a:2b:29:2c:cf:69:7b:eb:69:
69:1b:b8:88:ab:77:a2:89:ab:8f:6e:6f:54:23:fd:63:51:ca:
ae:f4:33:69:c5:2c:45:89:76:df:6d:5d:24:f5:a1:6e:cf:99:
0a:5e:cb:61:be:81:91:ea:78:9e:cb:29:48:68:06:13:ab:f4:
b1:4a:e7:f9:ef:6a:49:84:52:63:ec:63:c1:ef:09:be:58:95:
ee:d5:46:b9:3f:96:56:fc:f0:67:9a:59:ef:3c:12:d3:a3:43:
30:60:66:97:ed:56:0c:34:7e:dc:33:c7:43:a3:14:a4:06:d3:
c5:c2:04:98:61:2e:85:9f:8b:d6:0e:da:41:0f:5f:a2:9d:25:
7f:7d:bf:06:27:95:a4:8a:cf:71:0f:83:32:e9:25:bb:86:df:
e2:b8:33:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 05:32:43 2025 by rpki-client