Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
File: YIYxT4djXnk7wuPbvtZkBbisZ3E.mft (raw, json)
Hash identifier: ziIbFSCvbmsJwddbnVHvTfS6Q2Du0YGYwjLmcXjVHhc=
Subject key identifier: 13:4B:F8:5C:7D:91:19:24:B2:7F:B8:93:17:D2:7C:CE:8B:62:CF:E7
Authority key identifier: 60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
Certificate issuer: /CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Certificate serial: 019A71EE5F37D166831277334DCFA4635335
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
Manifest number: 171E
Signing time: Tue 11 Nov 2025 08:00:38 +0000
Manifest this update: Tue 11 Nov 2025 08:00:38 +0000
Manifest next update: Wed 12 Nov 2025 08:00:38 +0000
Files and hashes: 1: YIYxT4djXnk7wuPbvtZkBbisZ3E.crl (hash: 8eXt9zkmoZOjw1a90frawUAOBWgz869DONciFK1zG9g=)
2: ul5EPC9Jg-xhzDe3-EnpTxgh7Dw.roa (hash: pDodgoORM1hTtwe+JSl0g3mWRdcfDqaXlT1wiKFyqck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:5f:37:d1:66:83:12:77:33:4d:cf:a4:63:53:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Validity
Not Before: Nov 11 08:00:38 2025 GMT
Not After : Nov 12 08:00:38 2025 GMT
Subject: CN=134bf85c7d911924b27fb89317d27cce8b62cfe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ff:f4:8f:c1:93:c3:09:51:77:28:76:46:b4:
1b:fe:86:b1:bf:06:0a:b2:6a:bd:db:9c:9f:c1:5a:
d1:c8:ed:42:c6:df:8b:d5:1c:d4:33:13:9b:1c:bf:
53:1f:b3:07:be:a8:6c:08:0f:f7:2e:77:61:ba:64:
d0:62:cd:38:25:52:e9:cf:6b:bc:7b:be:d6:7b:4d:
58:5d:47:e7:99:af:26:22:27:29:1d:ec:5a:d1:0c:
52:e5:de:44:f3:3c:de:19:ed:b6:b4:01:83:e0:f7:
e4:91:42:fe:b0:ab:a6:15:5f:b1:06:4c:45:8e:0b:
d9:e7:6a:b4:a4:bb:d0:3c:f2:61:c9:8a:5c:a4:c9:
14:54:70:2f:1e:bd:bf:7e:00:65:9c:c2:0d:69:ec:
81:2b:a4:c7:03:aa:ee:8c:49:98:17:bd:c9:ca:57:
0f:2b:ff:cb:1f:41:f7:c8:d1:2f:54:bd:64:32:da:
c0:03:27:45:b1:10:21:e2:ae:6c:ec:24:01:c0:b3:
67:0d:b8:3f:5c:4c:41:09:8f:cd:5f:12:d6:12:3d:
91:64:33:12:7e:6b:08:c5:51:59:00:ae:88:d4:c7:
c0:df:f2:9c:5a:c3:59:c7:ba:d0:f3:e1:aa:cd:f9:
83:a0:8f:12:9a:e4:60:bc:43:70:b1:05:ff:85:0f:
94:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:4B:F8:5C:7D:91:19:24:B2:7F:B8:93:17:D2:7C:CE:8B:62:CF:E7
X509v3 Authority Key Identifier:
keyid:60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:72:20:12:da:ab:b6:31:cf:37:cc:61:58:d8:4f:be:92:12:
0f:27:89:d7:45:65:ea:c2:90:43:1d:cb:2f:3d:2a:ca:25:76:
54:98:1c:80:e0:16:ea:e2:ac:b1:f9:12:89:41:d2:8f:ed:0d:
f7:2d:5d:56:f1:9f:12:eb:9b:13:a8:0d:4a:af:45:77:6f:b5:
81:c5:44:1e:89:18:78:9e:5b:3b:d4:a5:8d:57:59:e9:04:71:
4d:7d:42:ae:e7:28:53:98:8d:9e:53:fb:04:d3:20:51:26:ba:
2d:c3:c3:d6:3b:45:ff:a9:1e:4b:51:9a:76:42:95:52:9b:8b:
f0:fb:89:16:55:21:78:98:47:c3:cc:29:7a:c6:81:30:61:5a:
a3:8d:62:cf:a3:7b:c1:5d:ee:86:a9:c8:05:1e:98:40:38:aa:
4b:f1:a3:4e:3e:f3:ef:11:33:c4:8f:42:28:88:56:5b:91:95:
48:4f:b9:da:b4:d0:c4:df:ee:06:78:af:9b:e7:c6:6a:52:fc:
09:09:77:31:f9:86:9a:b6:cf:aa:fe:57:bf:90:ab:66:3f:c0:
e0:05:b3:32:ff:36:1c:83:2b:a2:8b:01:7b:27:e2:0b:5e:62:
3f:19:fd:b5:66:4c:71:e2:dd:6b:f5:c0:72:bd:f1:ab:28:b6:
6a:2b:de:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:26:55 2025 by rpki-client