Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
File: YAc2XgzzDKj86YxiZg0YapebyVk.mft (raw, json)
Hash identifier: NQV4nnXz+U/gD90VOPI+uYbOHpYHPtP4siI+P2OJuDg=
Subject key identifier: 5A:AF:B4:BA:5C:04:56:03:F9:46:7C:C4:16:5A:73:64:1C:84:02:8D
Authority key identifier: 60:07:36:5E:0C:F3:0C:A8:FC:E9:8C:62:66:0D:18:6A:97:9B:C9:59
Certificate issuer: /CN=6007365e0cf30ca8fce98c62660d186a979bc959
Certificate serial: 019A7293D404AD3ADF50D6EBD7DB40720790
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAc2XgzzDKj86YxiZg0YapebyVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
Manifest number: 0A7D
Signing time: Tue 11 Nov 2025 11:01:21 +0000
Manifest this update: Tue 11 Nov 2025 11:01:21 +0000
Manifest next update: Wed 12 Nov 2025 11:01:21 +0000
Files and hashes: 1: Oc_LJaADC2cknQ1kKmCdsTOaMZk.roa (hash: JMTbvNQOvHmoLJzyFa8UDUWlgTHr2CpWgpqDOMIvsck=)
2: YAc2XgzzDKj86YxiZg0YapebyVk.crl (hash: c3bQDuhFPgVFRPnrJscJMDW3fFZSvlGV2nlhMQao628=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAc2XgzzDKj86YxiZg0YapebyVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:d4:04:ad:3a:df:50:d6:eb:d7:db:40:72:07:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6007365e0cf30ca8fce98c62660d186a979bc959
Validity
Not Before: Nov 11 11:01:21 2025 GMT
Not After : Nov 12 11:01:21 2025 GMT
Subject: CN=5aafb4ba5c045603f9467cc4165a73641c84028d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:57:72:dd:c2:44:7a:f0:ae:b9:4e:e8:f3:25:
69:cd:6a:99:b0:0d:5d:8a:c4:a5:0d:11:a9:4f:37:
42:52:df:92:b9:76:01:f0:42:71:20:69:2e:4e:60:
57:76:e2:2d:e1:8d:61:bb:2f:17:da:2d:ad:5f:27:
25:fa:77:b5:e2:04:a1:f5:dd:9c:3a:c5:41:8b:be:
f9:28:5b:40:a3:9e:6b:67:ea:75:c0:04:36:af:a0:
76:c9:e7:1c:63:4f:41:3f:6c:f0:eb:7b:36:50:6d:
4c:c0:63:b9:67:3b:44:80:d4:d6:83:16:22:d9:8b:
aa:51:ba:5a:72:b4:bb:9b:20:a1:66:16:e3:18:a2:
3c:04:a3:ee:72:70:6c:e3:ad:56:60:fc:b0:60:80:
b7:db:87:e1:2c:16:44:a1:ab:ee:08:b8:f0:91:ea:
69:37:e7:a4:7d:cc:22:53:b5:76:be:50:f4:ed:7d:
ca:c3:e8:13:af:0d:91:15:35:a5:24:c0:ad:4f:ec:
5a:67:f2:63:f5:18:36:85:3a:97:86:f2:26:4b:8e:
c4:bb:f3:42:ae:6c:9a:36:f5:09:a2:74:21:92:e2:
89:cc:7a:02:c8:de:08:48:ec:3e:f4:4c:d5:c5:1e:
ac:8d:17:72:99:59:cd:07:28:7d:bb:8f:d0:15:ee:
77:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:AF:B4:BA:5C:04:56:03:F9:46:7C:C4:16:5A:73:64:1C:84:02:8D
X509v3 Authority Key Identifier:
keyid:60:07:36:5E:0C:F3:0C:A8:FC:E9:8C:62:66:0D:18:6A:97:9B:C9:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAc2XgzzDKj86YxiZg0YapebyVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:01:0e:97:d6:fa:dd:59:d6:99:c8:bb:76:06:c1:9d:cc:f2:
e4:e3:28:fd:86:13:fe:ce:00:c4:ac:59:58:44:ac:17:00:a3:
36:71:23:01:e8:0e:d5:5a:49:d5:61:2b:de:d4:43:54:81:69:
13:3a:99:6d:b6:48:a6:2b:6f:d6:0b:38:73:f3:17:54:27:e8:
79:39:7a:89:13:4c:c5:01:14:bf:7f:64:1c:22:7d:99:2e:6f:
52:12:d1:46:06:74:18:7c:2c:f2:3f:52:a3:cc:b7:7f:bb:fb:
f3:f6:34:f0:df:c4:68:61:8e:dc:62:67:66:1e:ec:ce:7d:9e:
70:ec:36:53:6a:06:29:5e:6d:cf:f0:32:87:66:bc:48:d8:a4:
38:0a:65:8f:32:3a:93:cc:62:8a:56:95:bb:91:05:92:1b:88:
40:17:da:3a:52:f1:05:44:0c:32:46:af:32:4e:7e:c9:45:41:
ca:ef:ea:34:dd:c4:1c:44:e9:1f:48:d4:ca:25:41:84:b9:f0:
15:7c:23:c1:14:f9:b9:c4:84:74:71:d3:47:9d:47:3c:a5:11:
7d:c4:13:66:6c:d0:8a:db:e4:e8:3a:91:a9:12:6a:29:b3:a4:
09:a6:86:53:a3:c8:c6:b4:90:a9:ea:e7:01:f0:17:83:d3:27:
2f:da:ab:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 18:36:41 2025 by rpki-client