Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
File: yjzk270E4HrOGTf4ChWvc5m4Aw4.mft (raw, json)
Hash identifier: 4utTpF+0CLpP445shVRyreJX5i8Ey1I3TAOccoGzhNk=
Subject key identifier: E5:58:13:66:EF:0E:00:5C:6D:24:7B:9F:05:07:EB:46:C3:C2:80:C4
Authority key identifier: CA:3C:E4:DB:BD:04:E0:7A:CE:19:37:F8:0A:15:AF:73:99:B8:03:0E
Certificate issuer: /CN=ca3ce4dbbd04e07ace1937f80a15af7399b8030e
Certificate serial: 019A72CA860B70AD46C6E9DB98F23C510F79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
Manifest number: 06B6
Signing time: Tue 11 Nov 2025 12:01:06 +0000
Manifest this update: Tue 11 Nov 2025 12:01:06 +0000
Manifest next update: Wed 12 Nov 2025 12:01:06 +0000
Files and hashes: 1: yjzk270E4HrOGTf4ChWvc5m4Aw4.crl (hash: G+3f1p4rpQ3aT+KUSrr5lXlqhb6DE+YbDcUc1KVcP7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:86:0b:70:ad:46:c6:e9:db:98:f2:3c:51:0f:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3ce4dbbd04e07ace1937f80a15af7399b8030e
Validity
Not Before: Nov 11 12:01:06 2025 GMT
Not After : Nov 12 12:01:06 2025 GMT
Subject: CN=e5581366ef0e005c6d247b9f0507eb46c3c280c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5c:05:e1:12:ea:f6:50:3a:10:51:dd:06:e0:
50:dc:38:dc:0d:4e:07:d1:63:1a:4d:26:2e:a0:17:
ea:ab:bf:a8:a6:f8:38:c2:b9:5d:fc:96:bb:53:63:
2c:bb:12:bd:7b:88:18:7d:c0:95:4e:65:80:65:d9:
f2:13:67:f7:cd:26:c6:c4:58:48:49:1b:c6:c6:98:
ba:f5:5f:04:3f:98:56:cb:24:10:1a:a1:a9:11:3f:
29:b6:1a:a0:ae:ec:da:d0:2a:97:d2:6c:09:3b:ee:
6f:bf:5a:07:20:b8:42:da:bd:ec:bb:10:87:f8:1f:
2d:75:75:3d:74:ef:b8:6b:df:eb:4a:6e:a7:56:ae:
76:23:5d:9b:fb:f0:30:7e:04:e5:d5:a3:52:05:75:
75:d7:63:63:3d:39:b4:73:f6:20:2a:d0:df:21:f5:
2a:0c:f2:1a:3e:97:0f:c1:c7:f6:72:01:c8:4f:0f:
70:be:d8:1f:3f:d9:8f:6d:19:96:49:34:fd:43:4c:
c8:4d:da:3f:fe:40:fe:9d:77:4b:4f:53:21:8e:2a:
cd:a2:f7:7f:39:47:ec:43:f2:5e:2b:fb:a6:48:82:
fa:4b:9a:43:d6:7e:ba:47:67:ee:c4:05:b1:b2:20:
b7:fe:5b:1e:36:c7:b7:f1:7d:c8:77:a6:ba:7c:48:
ab:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:58:13:66:EF:0E:00:5C:6D:24:7B:9F:05:07:EB:46:C3:C2:80:C4
X509v3 Authority Key Identifier:
keyid:CA:3C:E4:DB:BD:04:E0:7A:CE:19:37:F8:0A:15:AF:73:99:B8:03:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:5d:8b:5f:17:0e:b0:ae:39:75:69:f7:ee:5b:a1:7e:38:51:
45:9b:e4:0b:4d:20:00:0a:c1:0c:f5:52:2b:d6:5e:61:f5:84:
58:87:ad:8f:1e:1a:ba:8e:51:df:9d:be:fd:82:ea:dc:6c:41:
fa:e7:a0:3c:2f:44:46:bc:55:58:4f:c6:a5:51:dd:aa:ba:17:
77:67:29:57:de:5e:78:4d:54:62:96:81:43:d1:d1:47:91:b1:
ee:af:ff:02:9f:35:ce:33:43:e3:46:61:2b:e4:c2:ee:3d:43:
9e:ab:5b:72:e4:01:89:d0:18:a1:7a:d0:07:80:cc:d1:de:59:
1c:07:10:62:e5:7e:5a:f2:bd:2a:f5:9d:26:16:58:03:7b:e4:
c7:96:ed:3b:a1:c6:26:a0:0d:8c:2b:c7:71:88:e4:0f:8e:70:
89:e2:6b:b6:d5:bc:f5:ca:60:8e:1b:7f:26:c7:2e:6e:53:4b:
3a:2d:b2:9a:4a:a2:71:81:0b:1d:d0:d5:01:6d:1a:f3:0d:06:
3a:29:64:b8:69:30:d5:07:1e:0e:2c:86:2a:1b:74:fe:ca:7e:
a4:6c:ed:24:a1:3b:51:27:bc:fb:0f:b0:10:c6:21:7f:88:83:
fc:ed:06:cf:f3:4b:65:21:69:87:31:9f:73:4b:4c:07:48:1a:
10:86:7a:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:53:04 2025 by rpki-client