Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
File: yABBYZAh42MorViY6Jl4cEa48Pk.mft (raw, json)
Hash identifier: G5v+VKr1/xZxbcMEWYMeGBjmG1avtmjEOITffEtZ+Vo=
Subject key identifier: 7B:72:C5:CA:98:FA:28:FB:44:E8:EA:ED:6C:EA:9B:B6:EB:71:1D:D1
Authority key identifier: C8:00:41:61:90:21:E3:63:28:AD:58:98:E8:99:78:70:46:B8:F0:F9
Certificate issuer: /CN=c80041619021e36328ad5898e899787046b8f0f9
Certificate serial: 019A71B7BA078457D4BA602B47AF2DEC8AE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yABBYZAh42MorViY6Jl4cEa48Pk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
Manifest number: 07AE
Signing time: Tue 11 Nov 2025 07:00:57 +0000
Manifest this update: Tue 11 Nov 2025 07:00:57 +0000
Manifest next update: Wed 12 Nov 2025 07:00:57 +0000
Files and hashes: 1: Mok6_FqiiR5wYGEWZBTs8xeaVoQ.roa (hash: FbjTDRIPu8bBy/5KLYHNgVHrWy/v2L+xeWuUUm4Xmek=)
2: yABBYZAh42MorViY6Jl4cEa48Pk.crl (hash: JujbScbFv8BGwOIZinKUzT7BamHqtRY3d53+hJe0ouo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yABBYZAh42MorViY6Jl4cEa48Pk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:ba:07:84:57:d4:ba:60:2b:47:af:2d:ec:8a:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c80041619021e36328ad5898e899787046b8f0f9
Validity
Not Before: Nov 11 07:00:57 2025 GMT
Not After : Nov 12 07:00:57 2025 GMT
Subject: CN=7b72c5ca98fa28fb44e8eaed6cea9bb6eb711dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4c:5d:3b:1d:81:e2:ad:89:23:9f:11:c1:9d:
4f:20:cc:9c:b2:65:f2:2a:32:0e:bf:2d:6e:26:0a:
8e:3a:b3:d3:1a:b4:de:a7:6e:73:39:72:f9:28:29:
f7:9b:a1:77:3f:32:da:c2:b7:94:57:2e:b5:1b:70:
1e:14:4e:cb:69:8e:c7:ed:01:7c:f9:4a:1c:9f:0b:
12:d8:4d:be:89:4d:03:bf:75:35:a5:33:1e:a6:79:
be:23:0b:7c:6b:8a:b1:75:a9:3f:a9:00:e4:9e:22:
6b:e7:99:1f:95:25:6b:73:f2:ee:9a:b1:25:45:a4:
88:6b:c1:05:3e:c6:b8:7b:5c:9b:ef:dc:ae:70:2b:
21:8c:b3:d2:3e:e1:5e:bc:2b:05:81:c8:32:87:05:
e1:4b:a9:a6:31:f9:59:b8:02:da:f5:69:06:83:8d:
29:c1:50:17:77:cd:be:8c:82:18:19:2a:b0:b1:02:
bd:35:b9:fc:86:b6:1e:4c:a4:f8:4a:1c:0f:5c:25:
4b:67:97:ba:ab:51:2f:5e:22:be:ab:ad:64:ab:4a:
83:d8:31:aa:33:54:a8:f1:42:23:77:a7:6c:e6:89:
a6:4b:8b:0f:70:52:4d:e0:bc:b4:ca:17:3e:7e:65:
42:fb:76:1f:33:dc:2c:b7:a4:76:20:f3:48:a8:8c:
5c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:72:C5:CA:98:FA:28:FB:44:E8:EA:ED:6C:EA:9B:B6:EB:71:1D:D1
X509v3 Authority Key Identifier:
keyid:C8:00:41:61:90:21:E3:63:28:AD:58:98:E8:99:78:70:46:B8:F0:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yABBYZAh42MorViY6Jl4cEa48Pk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:ac:4c:e1:51:d5:df:fe:c5:21:52:f6:4f:7f:eb:a0:5b:f1:
27:d4:18:66:27:f9:fb:10:91:2a:34:6b:64:d4:6f:96:54:cb:
64:1e:d8:fd:fc:2c:87:87:42:20:51:ae:dd:fd:66:4b:e8:74:
cc:3e:c3:04:21:a2:b6:2f:c6:99:e4:ad:a7:b6:c6:23:e7:75:
1c:59:07:94:08:b3:82:ba:d7:3c:c4:11:29:3b:c1:59:c9:6b:
58:ba:51:21:b4:ad:99:7f:f1:2a:74:61:54:16:f3:7a:ef:f4:
62:a7:17:0e:c9:86:a0:48:43:81:ae:41:a2:cf:1d:39:0d:e7:
d1:b8:65:b2:75:e3:4d:9e:73:d1:6b:0b:90:aa:3b:d5:05:f2:
b5:3d:f1:23:e0:5c:82:9e:fb:11:dd:31:8f:ff:30:d2:6d:3d:
bd:83:42:32:d2:be:f8:31:2f:7a:8c:fa:15:94:c1:d9:41:42:
8b:1b:8a:17:83:3c:fa:5d:90:12:da:5c:57:34:d6:70:6f:12:
b7:cf:0f:d2:64:17:ec:34:87:de:71:92:d9:3a:82:e0:f9:50:
19:0b:db:30:04:4a:7e:32:a5:50:89:05:c1:59:71:97:cb:c8:
4f:ed:c7:b2:87:cd:72:50:b1:44:78:3b:3b:dd:58:43:17:1f:
d6:83:55:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:22:06 2025 by rpki-client