Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
File: yBi-GcEJgPFbze4HZpAHhJGoqiE.mft (raw, json)
Hash identifier: 1r9I3FsxtKcKkYcNYMNtSDMzQHyeSkdenxzlbYnRIsc=
Subject key identifier: 7B:C8:3D:87:B4:38:D2:E1:43:65:75:56:92:67:22:0A:9E:E1:E8:2E
Authority key identifier: C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
Certificate issuer: /CN=c818be19c10980f15bcdee076690078491a8aa21
Certificate serial: 019A725C52D91D85AD639E3466D35DFE56B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
Manifest number: 0D4D
Signing time: Tue 11 Nov 2025 10:00:44 +0000
Manifest this update: Tue 11 Nov 2025 10:00:44 +0000
Manifest next update: Wed 12 Nov 2025 10:00:44 +0000
Files and hashes: 1: gZMQxr61w0P4Si-B6lBsVj_b8vM.roa (hash: 3Vc/pW8ygtdQIimX5iqQ/MSW6PLhJ2nbGCIzRJsZshI=)
2: yBi-GcEJgPFbze4HZpAHhJGoqiE.crl (hash: 99GIujoheILIKK0A0oXCAgoHSvc2Z8AtQgCBlT4W2IA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:52:d9:1d:85:ad:63:9e:34:66:d3:5d:fe:56:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c818be19c10980f15bcdee076690078491a8aa21
Validity
Not Before: Nov 11 10:00:44 2025 GMT
Not After : Nov 12 10:00:44 2025 GMT
Subject: CN=7bc83d87b438d2e1436575569267220a9ee1e82e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:a2:e5:bf:70:08:d1:70:d3:5a:9a:57:e5:60:
89:12:45:1c:5a:89:66:4a:ee:e5:17:7b:cb:0c:14:
04:de:0d:85:b8:84:74:40:8f:0b:47:aa:c8:c0:b8:
83:85:79:4d:08:b0:cc:76:b3:76:ad:2f:f3:5c:ea:
3f:76:04:67:97:a0:2e:ba:18:4e:90:6d:1e:6c:62:
8f:09:65:ce:72:63:ba:b6:7e:46:29:5c:e5:96:c5:
9f:c6:ab:fa:f4:84:44:69:c2:c3:44:57:ad:e5:4a:
2d:05:d7:45:f4:7b:59:62:1d:63:50:e4:9f:d1:db:
63:b2:e5:51:49:89:d8:d4:6e:20:8c:59:b7:a6:20:
19:1a:46:b3:ae:a1:12:fa:09:ec:c2:21:ba:5b:6c:
87:16:38:8f:bb:c1:dc:62:99:70:0c:6e:28:31:e1:
3b:1b:3b:76:eb:1c:66:95:f2:96:97:3b:73:f4:1f:
03:f9:f6:e9:af:15:36:b6:f7:bf:6b:17:48:0f:2f:
8e:93:4d:d4:75:96:bc:79:42:0c:5e:c5:69:65:7f:
b7:f5:8a:e7:93:7f:d2:00:f2:00:82:38:36:89:e5:
4f:1e:f3:92:50:45:e8:06:3f:3d:0d:61:f9:7c:f2:
e0:c2:3f:1a:47:4e:8e:6a:39:c6:f7:57:48:cc:48:
1a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:C8:3D:87:B4:38:D2:E1:43:65:75:56:92:67:22:0A:9E:E1:E8:2E
X509v3 Authority Key Identifier:
keyid:C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:c1:e5:60:03:4d:72:b5:fa:1d:71:4f:1a:1d:a0:df:e7:51:
7d:3e:33:aa:5f:f3:81:60:6a:6f:7b:08:a9:b5:67:84:e8:0d:
a4:f8:08:54:70:7b:08:05:94:a3:96:bf:fe:fb:46:2a:ba:05:
9b:1d:9f:42:cb:23:b0:a5:5a:8c:5f:5b:62:89:fb:84:a8:26:
ec:7d:1a:d3:70:45:ef:4d:a3:d7:a9:7c:69:5d:33:04:b6:0e:
16:16:12:c4:17:7a:70:97:0b:67:f6:78:47:32:69:68:12:93:
6a:f7:fe:c8:a2:0c:e6:51:df:1b:be:08:58:33:a5:52:65:50:
f7:d9:8e:f9:8e:7e:7f:d6:3f:64:d1:f8:57:d7:64:58:2a:eb:
62:af:96:d0:83:07:63:d9:9a:c3:f3:08:5d:e3:bd:ea:0f:ce:
ee:1a:91:62:61:53:ca:25:4f:9a:69:78:21:59:56:d1:1c:51:
50:fd:a0:59:d1:3b:b3:06:53:f0:2a:5a:c6:2a:3b:ec:e1:e1:
ea:1d:f4:b2:0a:ae:d3:fb:45:e1:ec:89:ce:ef:97:0e:95:11:
1e:47:99:57:43:8f:00:52:cb:3b:59:15:84:f3:f9:de:5a:09:
82:db:ee:cb:9f:dd:00:4b:7a:7d:b7:da:be:b0:9d:2a:ae:86:
ca:c4:20:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:28:14 2025 by rpki-client