Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft
File: yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft (raw, json)
Hash identifier: upLPwRiLoHnYwkXe/lBXY+GRvsCnbjkvblhmlsnSHuE=
Subject key identifier: EA:79:26:71:52:65:60:FD:9E:2B:23:59:F6:D3:C1:2C:CB:03:43:7D
Authority key identifier: CA:18:3A:66:91:30:9A:79:D6:E6:60:5B:0D:5C:11:E3:FF:7E:91:94
Certificate issuer: /CN=ca183a6691309a79d6e6605b0d5c11e3ff7e9194
Certificate serial: 019A7293392B578E026D672E17F03393AB26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft
Manifest number: 16AE
Signing time: Tue 11 Nov 2025 11:00:42 +0000
Manifest this update: Tue 11 Nov 2025 11:00:42 +0000
Manifest next update: Wed 12 Nov 2025 11:00:42 +0000
Files and hashes: 1: yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.crl (hash: xgSDZSezSxDQNi5SJBRa3uotyY9hPVCloERjHLHRvTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:39:2b:57:8e:02:6d:67:2e:17:f0:33:93:ab:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca183a6691309a79d6e6605b0d5c11e3ff7e9194
Validity
Not Before: Nov 11 11:00:42 2025 GMT
Not After : Nov 12 11:00:42 2025 GMT
Subject: CN=ea792671526560fd9e2b2359f6d3c12ccb03437d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:40:0d:8f:7b:73:55:92:35:11:49:6e:20:8a:
e2:6a:82:6d:79:ee:d4:2f:41:24:d5:6b:a6:ae:c2:
33:c8:cf:2f:d1:8f:4e:42:21:c0:80:77:0f:83:39:
b4:70:cc:e4:9e:03:92:fe:cc:f8:55:61:8d:55:7a:
bf:44:8f:64:16:34:e1:1e:74:f9:92:52:7b:22:57:
9e:b9:ee:38:1a:1a:d7:2d:11:4f:0e:5f:03:9c:8e:
84:f8:2d:7d:16:b3:81:26:8e:b5:6e:0b:97:1a:6d:
51:6b:e4:a9:62:47:b8:21:7a:b5:3e:8c:a6:6b:b1:
be:94:46:fd:cd:18:63:f5:f5:43:74:98:2a:83:0c:
89:83:ca:a9:b3:ae:63:85:f3:78:0f:12:29:3f:a5:
10:53:9c:89:7c:33:81:4d:5a:3f:69:42:60:02:6f:
51:36:59:26:be:d3:bd:d2:75:e3:36:75:c2:76:39:
39:3f:cb:7b:41:b5:5e:52:aa:11:b0:15:8c:9e:29:
36:a1:47:c1:9f:0a:0d:e4:c9:22:b5:b6:47:83:54:
74:dc:94:8d:da:52:c5:16:c7:3c:6e:36:a4:a3:f7:
6f:1b:f4:fa:21:e4:d8:9c:46:20:b6:e2:36:3b:2d:
7d:d3:09:c4:e2:85:4b:24:52:a5:71:85:22:de:8d:
90:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:79:26:71:52:65:60:FD:9E:2B:23:59:F6:D3:C1:2C:CB:03:43:7D
X509v3 Authority Key Identifier:
keyid:CA:18:3A:66:91:30:9A:79:D6:E6:60:5B:0D:5C:11:E3:FF:7E:91:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:3d:47:94:52:3a:41:a0:03:2a:b0:f7:da:04:79:25:75:0d:
16:1e:2b:f0:ab:9d:19:17:80:60:da:80:67:48:97:a9:5f:b1:
51:a1:de:cb:eb:0f:51:82:07:66:6a:48:37:1a:d4:a0:6f:17:
c6:67:03:d8:6c:7d:6c:ca:28:64:df:32:aa:f0:70:c0:27:d0:
b9:ec:aa:31:f6:ba:a3:c7:18:9e:96:ed:52:c6:e4:08:ac:cd:
8d:52:b5:ca:bf:42:97:27:f5:cf:d9:dd:1a:a2:20:24:61:26:
11:b1:8d:d1:a5:47:cb:9f:36:c9:3f:b5:03:37:3c:07:dd:16:
39:cd:98:72:53:6f:f7:cf:db:36:13:06:3d:58:24:25:0e:9e:
27:54:27:de:42:ae:c9:c4:61:50:4c:e0:c0:7a:37:d6:62:81:
29:47:29:3b:b4:51:c1:8e:05:09:75:a6:d9:41:1b:e5:b7:5a:
c4:2f:af:1b:67:ec:10:2b:09:16:9d:0b:4b:13:e5:c3:5f:4d:
a9:e9:67:e3:ed:d3:24:a9:d1:df:df:03:ed:08:10:38:8b:41:
c2:5d:d2:1b:9a:6f:9e:08:96:14:36:37:1a:7c:60:36:5c:ed:
69:7a:1f:37:b7:8d:76:a1:e0:f7:df:ae:96:6b:b7:05:01:03:
95:26:ef:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:17:14 2025 by rpki-client