Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft
File: YmJJH6XuZw3MLCvhaY436ZMXSSM.mft (raw, json)
Hash identifier: Om2yw4g/h85OUYhxfNuJ5nKLu1VePDSvJmpi1ONFuiU=
Subject key identifier: BE:CE:EE:5E:81:24:EF:28:1E:1F:29:E7:5D:63:CC:D1:DC:FF:9A:1A
Authority key identifier: 62:62:49:1F:A5:EE:67:0D:CC:2C:2B:E1:69:8E:37:E9:93:17:49:23
Certificate issuer: /CN=6262491fa5ee670dcc2c2be1698e37e993174923
Certificate serial: 019A725CDE94B6B2AB8B5842EFBD560FE3C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YmJJH6XuZw3MLCvhaY436ZMXSSM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft
Manifest number: 01B1
Signing time: Tue 11 Nov 2025 10:01:20 +0000
Manifest this update: Tue 11 Nov 2025 10:01:20 +0000
Manifest next update: Wed 12 Nov 2025 10:01:20 +0000
Files and hashes: 1: YmJJH6XuZw3MLCvhaY436ZMXSSM.crl (hash: BhWMQb3ttsLTAQ+boeBVgQjs15yESAWhRNebywRT3rQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft
rsync://rpki.ripe.net/repository/DEFAULT/YmJJH6XuZw3MLCvhaY436ZMXSSM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:de:94:b6:b2:ab:8b:58:42:ef:bd:56:0f:e3:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6262491fa5ee670dcc2c2be1698e37e993174923
Validity
Not Before: Nov 11 10:01:20 2025 GMT
Not After : Nov 12 10:01:20 2025 GMT
Subject: CN=beceee5e8124ef281e1f29e75d63ccd1dcff9a1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3c:16:41:ce:5e:da:0a:84:83:89:44:27:81:
5b:6d:25:ff:d6:9a:e7:3a:7d:30:c7:11:26:e0:c9:
14:d3:0c:69:c6:80:79:6b:c7:70:63:8e:10:b1:00:
08:78:e9:5a:f3:e5:b8:3b:0f:47:c3:6a:b8:36:74:
b9:55:5e:e4:66:04:f3:66:b7:95:0a:9d:12:54:07:
9d:23:d3:fc:52:49:8c:52:62:3f:9e:40:e3:5f:9a:
25:15:ef:f4:be:2b:fc:75:ed:20:9c:d3:4b:90:82:
19:61:bf:e2:88:1e:e1:5d:62:95:05:8a:de:ca:e3:
e3:2d:89:ec:ac:4a:47:90:ef:d9:46:20:eb:22:e7:
04:e6:32:20:78:fd:b1:90:40:25:26:03:54:13:24:
4a:90:6d:1e:bb:b0:42:9a:8c:39:5e:29:aa:e0:91:
22:cb:41:ed:76:88:69:15:bf:04:04:67:e7:32:76:
f1:08:aa:b6:63:c6:ea:52:42:a8:e3:96:bf:cf:3b:
1c:f5:e3:e1:84:4f:28:ca:90:af:28:d9:54:e1:1e:
a3:3b:70:92:6c:31:79:a6:17:21:d9:03:81:f8:95:
f3:87:1c:81:ab:54:99:d4:e6:ff:bc:bb:c1:86:8e:
5c:23:41:ed:27:bb:e9:5c:ec:c3:23:b9:42:90:50:
f6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:CE:EE:5E:81:24:EF:28:1E:1F:29:E7:5D:63:CC:D1:DC:FF:9A:1A
X509v3 Authority Key Identifier:
keyid:62:62:49:1F:A5:EE:67:0D:CC:2C:2B:E1:69:8E:37:E9:93:17:49:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YmJJH6XuZw3MLCvhaY436ZMXSSM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:c3:41:42:1d:ea:a7:e7:8c:3a:f7:44:8d:d2:76:84:d4:be:
c5:21:85:48:58:f3:eb:5a:25:14:cc:83:89:75:25:c1:af:01:
1a:b8:37:34:de:79:4d:83:d9:38:37:57:08:71:99:6c:58:59:
2b:45:5c:13:d5:83:51:96:89:3a:88:b2:bf:88:cf:12:0e:81:
0d:75:42:4a:99:6f:07:78:b3:76:6b:06:af:c8:5a:7b:7c:3a:
35:fd:5b:ca:c0:87:46:39:27:00:90:86:9e:cf:df:4a:22:87:
5b:d7:0a:ce:e4:5b:8e:6e:69:91:ce:9d:3c:06:0e:69:38:d4:
ae:86:92:5b:ab:06:f6:6a:f2:1f:da:45:8d:11:4a:c3:6a:a5:
e7:be:5c:86:20:7f:ab:df:27:66:d3:cc:85:28:e4:1b:a8:39:
39:38:cf:85:83:65:3e:c2:f6:19:b3:47:e5:b0:5e:20:87:30:
f0:81:16:c3:63:dd:9d:e5:fe:2c:5b:9a:a4:9a:ba:b8:50:18:
ba:84:63:df:ce:59:d4:0f:be:f2:9d:d1:0c:61:8d:fd:d2:e4:
da:57:ed:60:84:e8:95:43:49:5e:7c:88:d2:7e:93:80:9d:b3:
7a:88:6d:df:71:3e:42:af:fb:a8:0b:2f:7d:35:ff:b3:52:71:
63:8d:b9:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:02:38 2025 by rpki-client