Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
File: YHZWuPfoG1FJtIYPgSex1OO0h9w.mft (raw, json)
Hash identifier: B+W+CZO0ylYliMghaziRcfz+rS5+Vfzr4jukku2b3FE=
Subject key identifier: 15:EB:0D:31:FC:61:9E:AA:33:E6:10:2E:98:5D:93:94:1F:FD:6A:F2
Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Certificate serial: 019A7225A0C045C0AC4A9F1115D8BF2C700A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
Manifest number: 0D30
Signing time: Tue 11 Nov 2025 09:00:59 +0000
Manifest this update: Tue 11 Nov 2025 09:00:59 +0000
Manifest next update: Wed 12 Nov 2025 09:00:59 +0000
Files and hashes: 1: 7-uxb2sVoc0kcAT2m9SP5qVnZ8E.roa (hash: acdZUKxa+ye22RHZ+hlpmz4eeOUGVIjJiD1cAB8HEbo=)
2: YHZWuPfoG1FJtIYPgSex1OO0h9w.crl (hash: hPsoy/qw3zLP1GUiTItGGdMP6pTN6b42vh3HtH9tiQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:a0:c0:45:c0:ac:4a:9f:11:15:d8:bf:2c:70:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Validity
Not Before: Nov 11 09:00:59 2025 GMT
Not After : Nov 12 09:00:59 2025 GMT
Subject: CN=15eb0d31fc619eaa33e6102e985d93941ffd6af2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a7:6c:e9:ff:80:a4:c6:fd:42:76:85:a4:03:
5a:b1:08:de:aa:98:57:1d:a8:32:dc:03:38:27:69:
6f:04:27:bb:75:b3:ed:cd:7b:34:39:78:75:3b:ca:
42:30:89:06:6e:16:49:1a:e2:23:27:cf:98:53:16:
8b:9d:c1:78:9a:30:0e:80:e3:f6:82:08:38:b8:7c:
c6:63:88:b0:97:b3:25:5b:32:7c:5c:4b:f6:07:67:
31:ef:7f:d3:52:67:7c:f5:47:80:a0:e7:96:a6:01:
76:c5:74:cf:03:d1:ff:21:2f:51:01:fd:45:60:73:
34:11:55:3b:a3:fd:ee:b0:6c:4f:2d:08:98:46:0d:
f6:b9:f8:7d:a6:e8:f3:be:ee:b9:91:5e:90:e2:20:
08:9a:0f:bc:73:f1:33:18:cd:58:d0:41:c5:25:a5:
73:97:bf:74:7d:49:5b:94:dc:02:68:c2:87:59:ea:
05:a4:d5:a6:0b:92:9e:61:98:09:d5:d4:fb:d1:ed:
f6:ed:da:16:82:45:45:21:8e:43:a6:67:f0:97:6c:
36:b1:63:b4:d7:ec:2c:01:e1:6c:24:c4:16:aa:a2:
59:5f:34:87:36:7b:18:01:7f:24:4e:2f:54:1a:6e:
1b:f8:67:d8:2b:2d:fc:41:6d:9b:95:38:58:ef:ae:
36:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:EB:0D:31:FC:61:9E:AA:33:E6:10:2E:98:5D:93:94:1F:FD:6A:F2
X509v3 Authority Key Identifier:
keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:82:4b:f1:43:80:f2:8d:07:1f:ca:23:28:16:4f:dc:2c:75:
dd:11:6b:ed:3e:79:d4:89:af:2d:7d:02:0f:8e:a0:04:d6:2e:
00:74:e7:fb:66:13:64:b9:97:87:f1:5e:dc:09:be:67:a2:e4:
c4:d5:6e:0a:57:9b:b4:b2:05:1b:6c:80:1b:4e:af:ca:0c:68:
46:a0:e0:02:0b:3b:43:fa:e7:ff:0f:7e:de:b2:7e:7b:b6:ce:
99:a7:43:36:90:de:86:94:dd:1d:2f:fd:73:a9:35:9e:bc:98:
38:a9:f1:80:6e:7a:4e:92:ad:d8:41:d3:6e:4b:c1:00:10:3c:
3c:d5:55:c6:68:7b:d3:be:32:34:26:87:9a:bc:bf:36:74:85:
0d:c7:26:15:3b:d4:a8:0e:d8:a1:9d:5a:17:10:99:48:7f:43:
64:3a:9f:01:0d:93:9e:6d:7a:7f:0f:ec:c0:28:84:9c:70:e9:
7e:5c:4f:22:d8:75:36:d7:a6:90:86:6b:06:b4:b8:9f:ab:43:
97:b6:e1:12:71:d5:42:42:87:58:fd:9b:ad:ae:b3:1b:f0:94:
6e:a8:10:d2:9f:ee:47:5f:d6:4b:11:93:f0:18:43:2a:8f:a7:
25:10:bc:d9:4d:ca:e8:5e:6e:c7:61:31:54:4e:e7:ac:45:ef:
f1:c5:7e:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:48:57 2025 by rpki-client