Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
File: y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft (raw, json)
Hash identifier: QFFCYdck+UL71aqdwpSwr1NKXyNBhhRm41VkbZJqhvg=
Subject key identifier: 62:AD:A2:77:FF:78:37:75:08:9D:05:78:4E:EA:34:71:24:63:C4:94
Authority key identifier: CB:B9:96:FF:05:5D:65:75:E0:1F:2E:64:D9:A3:B3:82:83:47:02:D1
Certificate issuer: /CN=cbb996ff055d6575e01f2e64d9a3b382834702d1
Certificate serial: 019A7301249496D6EF0FFC80B60856858B5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7mW_wVdZXXgHy5k2aOzgoNHAtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
Manifest number: 0BFB
Signing time: Tue 11 Nov 2025 13:00:45 +0000
Manifest this update: Tue 11 Nov 2025 13:00:45 +0000
Manifest next update: Wed 12 Nov 2025 13:00:45 +0000
Files and hashes: 1: hUKLcWa9OHC5GxmVq6KR5PIsB6o.roa (hash: scGqiYOmrM2j/apqj1QvggRupECIf8XpZkFfLXcvrsc=)
2: y7mW_wVdZXXgHy5k2aOzgoNHAtE.crl (hash: cU0X9ZYLQhx+FJH6RO1HQ9nBwxuIDdkHaotvlvfYDRA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/y7mW_wVdZXXgHy5k2aOzgoNHAtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:24:94:96:d6:ef:0f:fc:80:b6:08:56:85:8b:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbb996ff055d6575e01f2e64d9a3b382834702d1
Validity
Not Before: Nov 11 13:00:45 2025 GMT
Not After : Nov 12 13:00:45 2025 GMT
Subject: CN=62ada277ff783775089d05784eea34712463c494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:bc:96:e0:63:11:c4:be:14:92:12:79:d4:ab:
40:2b:ec:fe:00:4f:27:e0:c3:db:07:af:f6:f2:78:
94:22:86:92:43:2d:ab:69:f1:19:60:a0:45:cf:ad:
e1:a1:5e:32:6e:83:67:3e:0f:59:51:38:91:07:bc:
74:6c:e0:dc:ab:e0:aa:54:35:82:81:69:28:52:9f:
63:76:28:3f:50:7b:68:30:19:13:21:94:eb:3b:8a:
e7:bd:8b:8a:92:d5:ef:6a:b3:e5:fa:21:5d:2c:52:
18:95:aa:c9:2a:35:ce:a0:38:4b:ba:b0:8d:71:b6:
d0:1b:3d:78:43:e7:86:f7:a3:e8:a4:99:21:a5:49:
b3:7c:01:ca:26:ee:9f:fd:22:99:d1:05:c7:cb:18:
7f:73:58:e3:98:b5:b3:3a:72:78:3b:83:8e:69:a7:
35:9f:cf:f6:45:9b:fd:4e:47:37:3e:dd:4e:39:68:
91:b2:8e:bc:0a:e4:2e:9f:04:8b:9b:1d:95:8a:0d:
3a:d6:27:9a:b5:ce:f3:11:b3:86:42:d4:dc:6f:1f:
de:20:29:96:60:3d:ab:4e:60:3f:76:47:89:b0:83:
63:f0:2e:3a:6e:0c:5a:35:39:b2:b6:24:e4:0d:75:
d5:7f:fc:c0:b2:75:b0:0d:32:ea:f7:2c:38:f3:ee:
58:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:AD:A2:77:FF:78:37:75:08:9D:05:78:4E:EA:34:71:24:63:C4:94
X509v3 Authority Key Identifier:
keyid:CB:B9:96:FF:05:5D:65:75:E0:1F:2E:64:D9:A3:B3:82:83:47:02:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7mW_wVdZXXgHy5k2aOzgoNHAtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:a2:01:dc:74:b1:b4:99:9e:e0:f2:32:a7:74:81:0c:19:9c:
9a:e6:7a:e7:99:7b:8c:7b:d2:df:1d:72:f8:56:b1:6e:47:b6:
a5:bb:4d:f1:80:df:ac:43:5a:12:95:f1:7f:27:46:fb:9c:4d:
b0:94:5a:8a:e2:6b:a5:2e:22:5e:01:32:10:1e:03:7a:84:9e:
82:eb:41:dd:16:e8:2e:0a:a9:e1:37:3c:6e:26:bf:9d:eb:9d:
6c:7e:88:f2:a5:e2:07:5e:2b:ce:02:de:73:47:73:8a:16:ce:
01:32:c8:c5:11:73:1c:4b:1b:a1:b7:b5:11:16:36:7b:47:95:
50:f8:4f:a2:43:6f:d2:62:6d:7e:d2:22:ea:f7:d2:7c:e0:36:
79:be:7d:cb:84:ec:d2:cc:7a:b4:1c:70:1e:04:ac:9b:c2:49:
6c:48:a0:17:c5:ec:90:3c:96:9b:ec:c3:0c:3f:b3:90:c9:b8:
c3:ca:a8:95:66:5d:96:45:3f:d1:79:3f:02:7e:b1:d0:94:73:
91:b6:76:33:01:1b:92:72:31:4a:67:98:b1:f0:f6:9b:32:0a:
48:8b:0e:d7:99:4d:54:00:4c:78:5d:0b:6e:18:23:77:71:10:
7e:94:5f:78:77:a9:da:98:4b:a9:e2:03:a2:6a:c7:e9:0f:c8:
37:02:60:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 18:41:12 2025 by rpki-client