Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
File: YEBzL9vKpSkA2yRiB1v07xUVlpU.mft (raw, json)
Hash identifier: z2yrQFkYntbe+udTkEBzoj/liSZwESg+mfv1P9LBHxQ=
Subject key identifier: 17:5B:9B:32:DB:CB:94:BA:1A:3F:99:EC:CA:08:05:5E:36:90:A3:CA
Authority key identifier: 60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
Certificate issuer: /CN=6040732fdbcaa52900db2462075bf4ef15159695
Certificate serial: 019A73383B375A688C290D546C804AF5C455
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
Manifest number: 05D0
Signing time: Tue 11 Nov 2025 14:00:56 +0000
Manifest this update: Tue 11 Nov 2025 14:00:56 +0000
Manifest next update: Wed 12 Nov 2025 14:00:56 +0000
Files and hashes: 1: 2zI93eWS4MAq1q_HzWCmHMK0vvc.roa (hash: OPrS0FrS6pSekQT7FXidaqihz4eIxPAHQ00wl3WWNU8=)
2: YEBzL9vKpSkA2yRiB1v07xUVlpU.crl (hash: bYd+x/QXcKrdcP8yKq1AP6EuRX7RPazwj6srJRre+DE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:38:3b:37:5a:68:8c:29:0d:54:6c:80:4a:f5:c4:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6040732fdbcaa52900db2462075bf4ef15159695
Validity
Not Before: Nov 11 14:00:56 2025 GMT
Not After : Nov 12 14:00:56 2025 GMT
Subject: CN=175b9b32dbcb94ba1a3f99ecca08055e3690a3ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:63:e6:d6:fb:c2:a1:98:0c:6e:d3:79:c0:dc:
28:88:0c:7b:74:60:69:e8:c3:de:de:6e:db:fd:e1:
da:b5:5c:3e:15:7d:5d:a8:90:08:00:00:fa:20:99:
f2:ad:58:12:8a:b9:e6:00:b7:78:ba:95:51:75:3d:
cb:e0:a9:f4:bf:07:ac:ec:17:09:2a:29:35:df:79:
da:bd:06:ee:a0:f4:cc:ee:8b:a7:17:50:9f:04:04:
eb:5e:38:4b:ef:e3:5d:36:e2:77:af:43:7b:c9:17:
b2:eb:17:96:fa:19:45:8e:f3:ee:cb:9d:70:bf:5d:
c4:8c:ba:55:45:93:e3:b2:b7:05:52:c5:92:27:30:
0a:f1:e4:d8:43:07:43:d1:63:9b:6f:f6:c3:20:e5:
f2:74:0e:dc:93:e7:73:84:d2:67:4e:2e:8f:e1:79:
d3:5b:b6:e6:63:5e:67:57:67:55:27:f3:1a:bd:df:
20:3c:32:9d:4d:cc:13:8d:65:fb:c3:63:de:4f:50:
f2:93:cd:67:60:84:3c:6a:bf:ef:dd:b7:dc:e0:f6:
9b:55:b3:11:ac:bd:7b:0d:87:48:93:28:3e:8e:00:
3c:b0:70:46:8d:da:14:2e:8c:2d:66:88:37:fa:6d:
61:47:c9:a6:39:b4:a4:89:a2:b3:ab:8d:03:29:d3:
4a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:5B:9B:32:DB:CB:94:BA:1A:3F:99:EC:CA:08:05:5E:36:90:A3:CA
X509v3 Authority Key Identifier:
keyid:60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:32:9d:4c:67:fb:60:5d:29:04:47:17:a7:57:cd:b6:7e:e9:
dc:91:0f:a6:a1:32:74:af:c9:f9:37:40:36:10:f5:0f:85:9b:
30:f8:b1:1d:c3:18:f9:0e:ec:67:46:ce:d6:f1:79:04:80:f1:
09:76:9d:4e:1c:87:be:05:ea:64:85:c7:13:c9:7c:77:e9:bf:
46:c9:62:71:12:eb:2b:aa:7e:1c:d1:3e:d6:21:1d:7d:f7:c1:
5f:8b:fc:37:f2:95:ff:b5:9f:35:89:ed:fd:06:65:7d:56:13:
b7:29:22:95:21:60:d1:51:34:70:8c:00:b1:43:f0:b0:bf:3f:
a7:a2:d6:d8:69:ca:08:19:f4:4c:59:1d:97:b2:bb:9c:56:15:
cd:02:49:95:14:cc:1b:06:cb:ee:7c:b2:95:69:08:41:ca:81:
f9:fb:04:d1:f6:fd:68:f8:d9:fb:eb:e4:f7:b8:ad:1f:f9:b3:
c7:b5:40:45:13:93:0b:59:05:60:e0:38:74:b9:ae:ee:f5:dc:
b5:29:1b:67:ad:ac:fd:35:25:c4:5f:8b:f7:a7:24:94:13:eb:
f8:af:1e:82:37:98:7f:5a:54:98:a4:5f:62:6b:ff:1c:d4:ee:
00:3b:98:12:96:7d:bb:82:ff:39:fb:68:31:da:90:64:ca:5a:
e4:ad:a6:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:22:07 2025 by rpki-client