Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
File: YFvAEwOQWABiCsJsFGixQfgHRRQ.mft (raw, json)
Hash identifier: YBN9kl/ESYrATTjwq8jcPYEj+oZIwBj6BAnH9efXqW4=
Subject key identifier: C7:6C:FC:92:65:E7:8F:0D:84:F2:8A:4C:D2:EF:CF:2B:D1:F5:44:AA
Authority key identifier: 60:5B:C0:13:03:90:58:00:62:0A:C2:6C:14:68:B1:41:F8:07:45:14
Certificate issuer: /CN=605bc01303905800620ac26c1468b141f8074514
Certificate serial: 019A706E823865E16B5CD4C1CA52CCCB23C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
Manifest number: 0DF4
Signing time: Tue 11 Nov 2025 01:01:21 +0000
Manifest this update: Tue 11 Nov 2025 01:01:21 +0000
Manifest next update: Wed 12 Nov 2025 01:01:21 +0000
Files and hashes: 1: 9c99e7OOCoSsqv05bamuZvrBRAg.roa (hash: gcQqAYS/2mIfyTda9lezITlbdeVA2P8mDvlHBkdo3p0=)
2: YFvAEwOQWABiCsJsFGixQfgHRRQ.crl (hash: r9M4/6tiH5zVGnk1WxXB5jbiMAemLFHzLzpS3sO864A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 01:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:6e:82:38:65:e1:6b:5c:d4:c1:ca:52:cc:cb:23:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=605bc01303905800620ac26c1468b141f8074514
Validity
Not Before: Nov 11 01:01:21 2025 GMT
Not After : Nov 12 01:01:21 2025 GMT
Subject: CN=c76cfc9265e78f0d84f28a4cd2efcf2bd1f544aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:71:ce:ac:24:4e:01:5f:9e:e3:6a:92:ec:e0:
f1:8c:33:17:6a:92:78:2d:fa:83:bb:e2:f2:92:2f:
10:8a:c9:dd:ac:4d:14:b9:ab:56:65:bb:a1:15:7e:
fc:1b:70:f3:62:4f:5b:f9:e4:04:80:72:cf:65:29:
07:9c:1d:76:60:47:a8:49:f9:50:e1:6a:c0:43:ad:
27:ad:75:f8:73:48:c0:a0:2e:45:b7:fe:51:e8:6f:
43:0f:f4:6e:ed:80:cf:89:b5:61:a3:28:a3:82:a8:
00:29:8a:94:e3:f9:e3:d7:44:6e:3f:90:af:d0:4b:
85:ee:bb:01:6c:a7:57:e4:5c:22:ec:58:07:9b:97:
4a:29:c6:ab:e8:e4:63:62:13:d9:fd:5c:7f:ee:d9:
2c:81:e8:fd:9d:57:0e:06:65:d3:16:30:26:ab:93:
af:95:e7:e1:c2:52:83:26:53:2a:95:c0:7a:50:12:
79:2f:62:53:3a:8c:2d:7e:5a:95:bd:7a:8f:44:bb:
1e:78:63:59:50:45:7e:f7:12:05:ab:4a:12:06:c7:
34:00:d9:35:89:4c:10:08:8b:fd:1a:c4:d9:5e:20:
b2:4e:4d:3c:77:13:4d:21:08:49:b9:4a:0b:98:e5:
54:4f:7d:70:71:be:e9:03:59:a4:f2:54:83:1f:fc:
2b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:6C:FC:92:65:E7:8F:0D:84:F2:8A:4C:D2:EF:CF:2B:D1:F5:44:AA
X509v3 Authority Key Identifier:
keyid:60:5B:C0:13:03:90:58:00:62:0A:C2:6C:14:68:B1:41:F8:07:45:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:e5:ce:95:a1:9d:99:4d:be:91:9f:12:83:76:7d:fc:e8:87:
a2:2a:09:e5:78:09:9f:3f:3a:ed:41:a2:2c:3c:30:b1:d5:f2:
3d:09:ef:c9:d0:f2:94:2f:4d:38:fc:b1:e4:65:55:e4:9c:74:
1a:2b:96:bd:9e:98:c2:56:c2:c9:c0:45:76:e2:6f:40:18:70:
54:81:8a:e3:6d:25:22:e1:42:c0:ce:d4:ec:2e:02:70:ef:a1:
a3:1b:61:b7:a6:4c:8f:e5:09:79:ae:bf:8f:4e:f7:89:67:a6:
9d:c0:4a:4a:e1:00:7b:a4:b6:c2:69:69:f1:09:94:95:12:0e:
ee:70:e2:24:d3:16:3e:d7:7b:ef:84:6e:06:4f:a5:fd:f2:b6:
73:07:42:5c:71:6a:dc:b1:99:32:20:ec:48:b0:7e:28:ff:d2:
a4:19:19:51:f8:c8:12:95:29:8d:77:a8:9e:22:08:0f:4a:5d:
30:a2:26:39:40:c3:be:e2:41:14:27:e1:69:60:65:4b:8d:93:
ca:24:2f:be:c7:1d:a8:02:ac:53:85:bf:a0:c3:88:11:fd:66:
42:19:90:57:c5:b5:4f:1c:73:a1:a0:69:d8:7e:25:b3:fd:a3:
3a:d0:8d:58:a8:e0:41:1d:96:f4:b9:e5:dd:95:37:1b:20:42:
d6:69:0d:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:54 2025 by rpki-client