Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
File: y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft (raw, json)
Hash identifier: wUFHfqLMJ5Bp9tWSti+4olHnJoC37MxDPzxlRwCRJtY=
Subject key identifier: 8B:C1:5F:0A:57:16:A2:00:27:06:F9:9F:61:DD:42:EC:24:93:59:C5
Authority key identifier: CB:FF:7F:D7:EE:11:EF:F8:91:4A:31:50:FC:D1:6A:64:8A:3C:7F:30
Certificate issuer: /CN=cbff7fd7ee11eff8914a3150fcd16a648a3c7f30
Certificate serial: 019A7293820E08BE47CB6609A61A6B8659BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
Manifest number: 067B
Signing time: Tue 11 Nov 2025 11:01:00 +0000
Manifest this update: Tue 11 Nov 2025 11:01:00 +0000
Manifest next update: Wed 12 Nov 2025 11:01:00 +0000
Files and hashes: 1: meIfpWGWvt-OCR5hELolYg558lc.roa (hash: b6ypOtwfgJ3TZwPfNgJCJZ3JwL1dV4492jTSEMjG2cE=)
2: y_9_1-4R7_iRSjFQ_NFqZIo8fzA.crl (hash: FlZiDbqaQE9m30NEaJeZdBzkGGPLmJjEsquhqqZmTQE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:82:0e:08:be:47:cb:66:09:a6:1a:6b:86:59:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbff7fd7ee11eff8914a3150fcd16a648a3c7f30
Validity
Not Before: Nov 11 11:01:00 2025 GMT
Not After : Nov 12 11:01:00 2025 GMT
Subject: CN=8bc15f0a5716a2002706f99f61dd42ec249359c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:77:f6:5e:a7:98:c3:c7:8c:dd:eb:60:8d:14:
27:b7:9d:9c:f0:37:1d:c7:a3:17:d2:94:58:48:34:
7f:8a:22:65:6a:09:bc:9d:35:5b:02:f9:62:c2:4e:
ed:34:19:49:96:ba:50:91:38:3a:9e:12:e3:bd:db:
e7:75:27:ec:95:b4:42:0e:d0:72:db:53:64:76:aa:
9b:33:55:ca:4a:77:25:fd:f8:72:6a:d2:be:ad:6e:
64:7d:d0:f6:5e:72:dd:16:e1:3e:4a:9c:15:d3:86:
95:a8:7d:d8:bd:a1:17:96:e3:7c:c3:d1:4e:d2:00:
3b:5d:3c:a6:7a:5b:d1:f6:26:35:55:fa:c7:d9:b9:
30:0a:97:0d:1b:65:cc:1a:7a:0f:d7:c7:eb:01:7e:
6f:bb:96:ed:47:74:d7:18:40:02:4d:be:f9:e9:eb:
5f:68:bd:6d:be:91:1f:76:e6:bb:7d:b7:df:4f:16:
32:39:f3:75:f7:47:99:80:52:41:5a:70:f2:c4:5a:
60:c5:75:9a:cb:97:21:34:93:2b:0d:1d:68:ae:49:
5e:a8:02:7c:4b:8e:9c:46:22:0d:7d:fd:d9:03:b1:
b1:0e:32:c7:83:6f:1a:d4:e2:85:b6:4c:74:e2:d4:
7e:00:60:d6:60:7a:82:fe:ba:14:9d:d1:23:34:2c:
2c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:C1:5F:0A:57:16:A2:00:27:06:F9:9F:61:DD:42:EC:24:93:59:C5
X509v3 Authority Key Identifier:
keyid:CB:FF:7F:D7:EE:11:EF:F8:91:4A:31:50:FC:D1:6A:64:8A:3C:7F:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:6b:c5:75:c4:9b:3d:dc:31:a1:58:2f:91:54:62:ef:92:88:
53:74:8a:6b:a0:f4:00:12:4a:71:85:8f:4f:c3:30:5c:ee:f7:
15:12:71:2d:ef:62:7c:25:b8:3e:27:d2:fc:b8:94:36:90:ec:
7d:ff:a1:13:49:f2:29:e9:c3:ad:05:a1:0a:5d:bd:cb:f3:24:
3b:32:4c:9b:f5:9b:38:51:7d:b1:c9:b7:2a:fe:c7:ac:52:aa:
a7:8f:00:fe:f5:48:20:e0:ca:30:a8:6b:82:f5:89:bb:e7:59:
ce:4d:9b:a5:9d:47:4f:8f:35:f9:63:ee:89:7b:2f:b6:8f:63:
b2:f4:09:36:ae:ff:8f:d8:25:90:0f:03:b1:b3:e6:ff:d6:ef:
86:6e:9d:ed:03:9e:72:70:14:8d:29:57:e6:e6:4f:75:f1:2a:
0d:d0:fe:55:6f:f7:83:84:73:c9:1b:2b:55:73:14:20:58:8f:
f7:a7:97:dd:14:31:f8:f5:5a:cb:18:a2:7e:f8:66:24:9f:9f:
bb:7b:15:28:28:c0:af:d0:bc:46:42:a9:92:e4:22:14:62:6f:
e9:8b:0b:b8:01:a1:5c:60:ad:a7:b5:09:57:fd:7d:1b:53:dd:
aa:d4:d0:e0:31:34:9a:1e:b6:58:0c:1a:92:36:6e:17:6f:f1:
fe:f3:96:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:26:42 2025 by rpki-client