Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
File: yS0-Y6HAGI17pgy4TXDk64m4rlE.mft (raw, json)
Hash identifier: ggcEd3pdtlhV4FY0mfkWsyP2PYpT1EDZDaQXOPHkcBA=
Subject key identifier: 52:81:4A:96:38:BD:3F:D8:F2:B7:67:93:B7:A4:02:0D:81:FF:AB:DD
Authority key identifier: C9:2D:3E:63:A1:C0:18:8D:7B:A6:0C:B8:4D:70:E4:EB:89:B8:AE:51
Certificate issuer: /CN=c92d3e63a1c0188d7ba60cb84d70e4eb89b8ae51
Certificate serial: 019A71B8F38C8AD35FFAEAB9739F4E4ECFCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
Manifest number: 07A7
Signing time: Tue 11 Nov 2025 07:02:17 +0000
Manifest this update: Tue 11 Nov 2025 07:02:17 +0000
Manifest next update: Wed 12 Nov 2025 07:02:17 +0000
Files and hashes: 1: yS0-Y6HAGI17pgy4TXDk64m4rlE.crl (hash: SgHdNYGIohJtIGyf0SFvG/U4adeXPk+frJomPBUEGPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:f3:8c:8a:d3:5f:fa:ea:b9:73:9f:4e:4e:cf:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c92d3e63a1c0188d7ba60cb84d70e4eb89b8ae51
Validity
Not Before: Nov 11 07:02:17 2025 GMT
Not After : Nov 12 07:02:17 2025 GMT
Subject: CN=52814a9638bd3fd8f2b76793b7a4020d81ffabdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:83:bb:2a:e3:3c:9a:38:2f:a8:e6:d4:9c:5f:
30:d1:aa:02:d9:9c:d8:3c:f5:ea:de:00:0f:32:c8:
db:70:6c:cb:5e:9d:2c:63:73:6e:d5:de:56:56:de:
c1:cf:76:4a:15:83:04:1b:95:aa:87:70:89:02:de:
3b:82:28:4b:23:db:9c:eb:86:f4:ec:86:93:2b:b8:
b5:b7:4e:35:0c:80:d5:0d:b3:12:85:8a:f9:75:f0:
9b:15:40:71:73:03:6a:a8:f2:cf:f7:84:4a:3a:e2:
73:1f:ed:d8:3b:0f:75:e8:41:7a:5d:85:9d:20:94:
1f:b8:9e:6c:ce:0f:74:23:b8:2d:dd:5a:d5:fe:ac:
79:54:94:2f:9c:75:19:ec:5c:75:29:b0:57:99:69:
d5:4e:65:0a:74:b7:8d:b8:6e:62:68:ed:6d:11:ea:
65:08:b0:89:6f:e0:e4:4e:3b:45:92:4d:41:c0:51:
6e:d7:6d:ca:90:5f:65:1f:0b:05:09:79:cd:79:34:
02:3c:72:19:de:9a:85:d8:3e:6c:85:06:ea:5d:ac:
a2:57:d5:0d:78:68:57:9e:27:99:62:5e:c5:88:45:
38:f5:01:60:27:50:52:1e:ef:5c:28:91:87:25:3f:
2c:01:65:6f:92:39:80:30:a6:3c:27:92:5a:c4:0b:
ad:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:81:4A:96:38:BD:3F:D8:F2:B7:67:93:B7:A4:02:0D:81:FF:AB:DD
X509v3 Authority Key Identifier:
keyid:C9:2D:3E:63:A1:C0:18:8D:7B:A6:0C:B8:4D:70:E4:EB:89:B8:AE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:c6:45:7e:91:c7:06:70:3e:11:28:72:6b:6c:f2:1d:1f:cf:
f3:17:51:1c:f9:52:1f:4b:cc:10:92:cd:6c:fb:eb:d7:1d:9c:
7b:e6:86:d6:93:b4:35:34:d7:0f:cc:bd:21:07:e3:b1:41:e6:
c4:1e:b5:f8:1a:82:52:80:e9:cc:01:19:b8:f4:b9:6f:04:ae:
03:1d:a6:c8:35:db:5a:ef:c5:f9:cf:bd:6e:43:bb:9e:a8:73:
2b:9a:cd:c1:92:6f:ed:29:a9:94:f5:ad:14:70:da:4f:44:b6:
0a:53:f8:d8:c8:f1:90:77:19:99:53:bd:aa:f2:87:65:3e:48:
c8:51:c5:bc:6d:29:75:0d:d6:04:d4:d6:30:3d:2b:54:2a:fa:
f1:e4:02:07:d1:2f:50:f1:31:67:e1:e7:40:de:42:44:8f:14:
bc:a6:ca:aa:5d:ca:b4:1b:40:2c:1d:81:03:44:3b:2d:c3:59:
f1:5c:2b:c3:87:9f:49:cb:08:83:db:b7:de:0d:9a:92:68:c8:
35:6e:eb:c0:8a:16:08:c5:0d:57:84:5e:bc:ef:14:3e:e3:d6:
8c:34:0f:a5:23:5d:61:4c:14:55:66:1f:95:6c:a0:ff:81:92:
2c:04:9d:b3:bf:30:44:3f:cf:10:50:b0:37:d0:d5:aa:b3:a8:
93:b6:a5:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:16:03 2025 by rpki-client