Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
File: yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft (raw, json)
Hash identifier: MBJzBDeo2dQbjph3j14ql8gNxU7HL/lPbsUEgcxkrtA=
Subject key identifier: 7D:3F:68:C6:EE:3B:50:A6:DF:33:01:76:0D:BE:A0:32:B7:7C:D1:8F
Authority key identifier: CA:AC:C4:FE:BB:48:79:96:D4:EE:01:D5:3B:11:F8:42:03:CA:83:67
Certificate issuer: /CN=caacc4febb487996d4ee01d53b11f84203ca8367
Certificate serial: 019A71EEF53B16A3F178130F8D2A455682DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yqzE_rtIeZbU7gHVOxH4QgPKg2c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
Manifest number: 027C
Signing time: Tue 11 Nov 2025 08:01:17 +0000
Manifest this update: Tue 11 Nov 2025 08:01:17 +0000
Manifest next update: Wed 12 Nov 2025 08:01:17 +0000
Files and hashes: 1: Dribm7v4eJGFRaCGtu-42niad5g.roa (hash: COADFM31Atbne40gqBHSktN8SaWdLigZF/t1VPBNlag=)
2: yqzE_rtIeZbU7gHVOxH4QgPKg2c.crl (hash: KJu37S2V2wnXmXZxopgvhlgQ5DSC5c7nbMOc51ZL9vU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
rsync://rpki.ripe.net/repository/DEFAULT/yqzE_rtIeZbU7gHVOxH4QgPKg2c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:f5:3b:16:a3:f1:78:13:0f:8d:2a:45:56:82:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caacc4febb487996d4ee01d53b11f84203ca8367
Validity
Not Before: Nov 11 08:01:17 2025 GMT
Not After : Nov 12 08:01:17 2025 GMT
Subject: CN=7d3f68c6ee3b50a6df3301760dbea032b77cd18f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:83:31:57:e8:a1:ac:83:b5:11:50:3e:0e:33:
f1:5f:08:4e:c1:f3:1b:24:d0:a8:79:af:32:bd:30:
31:37:bf:82:e4:07:19:6c:98:ca:b0:88:15:7b:5a:
b8:26:3f:41:e8:47:e4:50:fd:9c:e2:ae:b5:01:2d:
73:25:8c:af:f9:76:3c:3d:28:20:f4:15:27:93:76:
0a:13:2b:04:39:74:74:2f:46:6a:52:00:af:e1:a6:
bc:7f:37:6b:49:45:70:b8:7e:41:42:8a:85:fa:8c:
09:e1:40:01:21:f9:b6:9e:07:de:ce:ea:e1:90:87:
dc:9d:f9:20:64:c6:35:ab:20:0c:8b:bf:4a:36:57:
de:2f:7b:60:e6:de:25:85:34:d4:81:83:c2:76:70:
73:7b:f2:e9:a6:16:d1:db:0b:24:7b:98:87:5d:8e:
f6:3f:10:13:e1:85:79:e2:d6:3d:64:e7:1d:44:77:
e6:2a:20:86:db:6a:69:ed:99:e5:5f:a9:e0:9e:c6:
cb:6c:a1:1d:2d:ed:a2:90:25:a5:9d:9e:7d:6d:5c:
0d:0e:3a:9d:9c:0f:cc:55:b6:b1:fa:e7:3b:e9:b1:
e6:5e:5f:78:e8:8d:72:0c:9b:18:c4:89:68:ac:68:
d6:4b:3e:f3:e9:0b:42:37:ea:b9:7d:e2:ce:1d:fc:
ea:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:3F:68:C6:EE:3B:50:A6:DF:33:01:76:0D:BE:A0:32:B7:7C:D1:8F
X509v3 Authority Key Identifier:
keyid:CA:AC:C4:FE:BB:48:79:96:D4:EE:01:D5:3B:11:F8:42:03:CA:83:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yqzE_rtIeZbU7gHVOxH4QgPKg2c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:9f:c0:7a:56:b6:3a:35:91:a9:65:59:f0:6d:b4:af:2b:a5:
d1:75:6d:34:48:0f:23:88:7f:b0:63:e1:4a:80:f6:4d:8c:e7:
a2:23:20:2c:af:2e:a7:99:69:7e:f9:ec:11:85:67:f0:57:35:
26:c2:86:04:65:17:c2:2f:7b:d8:a4:08:36:ed:e0:d8:6b:13:
54:cd:e2:64:df:84:a1:8a:fd:1d:13:98:c9:eb:a2:ae:e0:29:
42:a5:c8:29:c6:5c:5d:82:28:31:65:e9:39:bb:20:02:01:49:
43:07:20:f1:1a:86:31:ec:a3:5f:59:95:57:81:ff:59:64:31:
3b:58:90:01:45:a8:ab:ea:8c:b6:4e:e2:24:2a:af:b8:6c:f5:
00:82:b3:cd:08:11:11:15:95:44:35:10:af:3d:04:d7:22:08:
93:e7:69:6b:df:4a:c0:2a:db:b3:5f:0a:ff:55:59:f4:e7:8b:
4f:ec:d9:94:5b:c0:47:e9:6e:c7:9e:fb:bd:8d:c9:8d:46:7c:
e2:73:ce:3b:19:f7:2c:b7:ee:bf:ed:b2:d0:79:28:0a:1d:c2:
81:6d:89:3f:67:0c:1d:db:90:9e:12:5c:d7:ef:47:59:74:da:
20:33:07:9f:32:d3:92:9d:54:ed:30:a9:d2:8d:3f:71:b8:61:
5a:3d:a0:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:42 2025 by rpki-client