Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft
File: YPa89uKxCboqFKc7l1rZVEhLS6U.mft (raw, json)
Hash identifier: wItG5ut4xHwvBg8dZuN3E0zoNnicNKoqg6vtdD6PVXo=
Subject key identifier: 8B:E3:F4:34:FB:AD:2A:2C:B0:69:1D:CD:18:5A:71:91:9D:92:81:34
Authority key identifier: 60:F6:BC:F6:E2:B1:09:BA:2A:14:A7:3B:97:5A:D9:54:48:4B:4B:A5
Certificate issuer: /CN=60f6bcf6e2b109ba2a14a73b975ad954484b4ba5
Certificate serial: 019A725CF45DBFD2911B9D6F43C5C81E3AE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPa89uKxCboqFKc7l1rZVEhLS6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft
Manifest number: 0BA1
Signing time: Tue 11 Nov 2025 10:01:25 +0000
Manifest this update: Tue 11 Nov 2025 10:01:25 +0000
Manifest next update: Wed 12 Nov 2025 10:01:25 +0000
Files and hashes: 1: YPa89uKxCboqFKc7l1rZVEhLS6U.crl (hash: wPuYAg0UaRsEdcCUMEbnLoVy0R/uObJbgfOVjrN5QTQ=)
2: oNp64lcp-PwrYsQaBw1j30tzyNw.roa (hash: FzeHCqPb/tC2Vmdnn3r7gfGFiDclam5dSTVPZrLAWO8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/YPa89uKxCboqFKc7l1rZVEhLS6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:f4:5d:bf:d2:91:1b:9d:6f:43:c5:c8:1e:3a:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60f6bcf6e2b109ba2a14a73b975ad954484b4ba5
Validity
Not Before: Nov 11 10:01:25 2025 GMT
Not After : Nov 12 10:01:25 2025 GMT
Subject: CN=8be3f434fbad2a2cb0691dcd185a71919d928134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:58:22:7c:a0:6d:65:d9:d0:61:8d:c0:7d:5a:
d7:d0:c8:c4:ee:1a:42:3b:66:ef:21:30:dc:dd:8c:
5a:e8:7c:a3:b8:14:b6:85:0d:aa:66:8d:9e:af:33:
28:a6:1f:be:d3:06:27:8d:2e:a5:c4:c2:04:c7:08:
c8:6c:63:b0:18:62:11:85:0c:ce:46:67:a8:71:7a:
0a:6e:b3:6c:f4:c3:b8:3f:0f:37:8b:f3:95:da:28:
d5:d6:a8:47:18:49:7d:b3:6d:9f:c3:0e:7d:19:0e:
e5:a3:e3:3a:fa:94:85:5e:c4:0b:4d:f8:0c:01:87:
87:c6:88:00:fd:05:fa:08:16:3f:da:e7:52:6a:b5:
d9:e7:a4:65:9e:3c:77:fb:a7:14:9b:95:07:a7:77:
26:d8:2e:57:50:e9:7b:e3:e4:d5:a9:5b:1c:c5:ae:
e8:74:4f:96:8a:ae:48:22:72:0e:40:23:28:42:12:
02:10:92:44:66:9d:79:97:c7:05:98:fb:14:38:ff:
1c:ce:ec:a5:a4:d5:60:43:1e:60:98:1f:03:4b:f4:
c8:08:fa:10:8e:ba:cf:9e:70:08:e7:cd:27:4d:24:
12:d3:2c:56:22:3e:1c:6e:89:f6:2a:df:e8:76:59:
29:b6:c0:dc:08:87:ea:46:a5:9f:f8:eb:ba:75:3a:
b6:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E3:F4:34:FB:AD:2A:2C:B0:69:1D:CD:18:5A:71:91:9D:92:81:34
X509v3 Authority Key Identifier:
keyid:60:F6:BC:F6:E2:B1:09:BA:2A:14:A7:3B:97:5A:D9:54:48:4B:4B:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPa89uKxCboqFKc7l1rZVEhLS6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:06:c6:8c:8b:7a:88:ed:88:23:16:a8:20:99:6a:b3:88:ef:
f9:44:1a:4b:f6:d7:5f:d6:e4:1b:78:ae:20:a9:d9:f5:34:9b:
96:b9:13:96:5c:c7:25:65:97:b0:3d:af:93:dd:c2:e4:c7:7e:
69:a0:64:56:ff:5b:83:f4:3a:a9:c3:91:5e:75:f1:38:76:0c:
43:1b:45:70:e4:b9:b2:ec:b9:ae:a2:87:f0:e8:2e:ad:65:16:
37:dc:c2:c9:3a:fe:30:47:21:db:c4:af:d3:fc:80:2e:9a:13:
1a:89:0c:07:8e:9d:22:27:fc:6a:4c:ed:01:12:2b:01:84:e3:
b1:2e:f6:ff:05:e2:c9:5c:40:d7:b7:13:24:37:a6:cc:69:7e:
69:f8:33:c0:b6:4c:6b:5c:5a:fe:39:a5:4c:bd:c7:87:ed:d4:
cc:b2:1a:1c:84:77:1e:75:fc:f9:e6:fe:18:64:6d:71:6a:55:
4b:88:9f:e3:04:21:64:07:42:60:9e:0b:8f:f4:29:fc:f8:cf:
e5:ce:76:0d:aa:0d:9c:02:49:f3:12:12:50:05:87:73:7f:a3:
8c:40:c8:c8:d8:eb:ab:4a:44:e3:ff:55:67:9d:8a:c8:1b:e5:
bc:d8:04:3a:3c:56:49:b5:72:36:23:ef:da:c6:ff:32:ab:57:
63:e2:ff:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:13:59 2025 by rpki-client