Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
File: yp4g0QNLRO916V_ffriIFbb30vg.mft (raw, json)
Hash identifier: IrYm31VUmlJajtX48u9vxYiZw0vLy4T3+Ra3pODk8g4=
Subject key identifier: AC:BE:EA:00:93:68:CC:0D:01:41:75:BE:77:D0:2E:58:A0:8D:27:7C
Authority key identifier: CA:9E:20:D1:03:4B:44:EF:75:E9:5F:DF:7E:B8:88:15:B6:F7:D2:F8
Certificate issuer: /CN=ca9e20d1034b44ef75e95fdf7eb88815b6f7d2f8
Certificate serial: 019A4E18AB0DC87BB86DD0CACCC483A7CFF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
Manifest number: 0F68
Signing time: Tue 04 Nov 2025 09:00:30 +0000
Manifest this update: Tue 04 Nov 2025 09:00:30 +0000
Manifest next update: Wed 05 Nov 2025 09:00:30 +0000
Files and hashes: 1: KJabg-goYfqIShBpOYNsGhfln78.roa (hash: 5RhSWnJ06JVLJawdnqYDlBh1ZbuwgFFPRLF+/W6LgAk=)
2: kwy8KgUICcwuEJop_j-CKqXu_cg.roa (hash: VpzhVsmBR8ZtX+oH6lHXeHMgxo/zL5mzYyLWURLNaRU=)
3: yp4g0QNLRO916V_ffriIFbb30vg.crl (hash: gD5PRBJadPRRANsznSdLSNBiKn6ckCXacPPDx7rAxWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:ab:0d:c8:7b:b8:6d:d0:ca:cc:c4:83:a7:cf:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca9e20d1034b44ef75e95fdf7eb88815b6f7d2f8
Validity
Not Before: Nov 4 09:00:30 2025 GMT
Not After : Nov 5 09:00:30 2025 GMT
Subject: CN=acbeea009368cc0d014175be77d02e58a08d277c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:1f:f3:7d:dc:ef:fc:18:a4:59:53:33:ba:8f:
82:c4:b9:e0:ab:0e:50:8d:ad:63:61:6d:e7:29:9e:
ac:e1:cc:71:57:74:35:f3:b9:71:90:a7:93:42:c4:
bb:ec:7d:38:bf:92:25:db:8e:f8:21:0d:e4:f2:80:
57:98:c0:d3:a8:23:4c:b8:b1:7c:ba:1b:27:0d:93:
39:0b:af:05:af:1c:a1:14:f0:1b:ea:8a:8b:76:50:
3d:dc:c6:89:c3:81:6d:2c:22:78:51:a9:6a:2a:4e:
53:b8:c6:93:a0:b6:9c:71:9f:90:58:6b:52:fd:a4:
19:06:3c:4e:76:91:b5:ab:49:28:5e:3d:eb:52:49:
8b:ae:b1:56:9c:ab:ee:4d:cf:5c:ca:fc:5a:92:b6:
94:a1:91:42:6b:92:9b:bd:a3:7d:32:4f:f2:db:ea:
a2:83:5e:d2:e4:b3:c3:9c:f7:51:29:05:70:74:ae:
17:c0:41:f0:9c:a8:22:66:05:f5:57:f3:00:9b:e4:
39:1c:0f:1d:e3:23:a2:58:93:c4:8f:7b:43:5b:39:
34:e1:24:d0:02:a9:17:5b:2d:45:a0:e8:56:2d:cf:
c5:3a:bd:a0:93:b8:42:8a:47:7d:ac:19:0d:e7:b8:
1e:d1:ee:bb:c6:ba:0c:0e:f0:26:7b:2e:f1:9f:ca:
26:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:BE:EA:00:93:68:CC:0D:01:41:75:BE:77:D0:2E:58:A0:8D:27:7C
X509v3 Authority Key Identifier:
keyid:CA:9E:20:D1:03:4B:44:EF:75:E9:5F:DF:7E:B8:88:15:B6:F7:D2:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:c3:fa:d0:92:30:34:3b:cd:22:a6:81:3a:63:a2:df:d3:9d:
e2:59:9e:a8:2b:ac:a5:95:ab:09:6d:3d:2d:57:08:f7:de:12:
3d:48:61:b7:6c:9f:da:f5:e3:0e:0e:ed:68:1e:50:1d:6b:e7:
79:d6:4a:07:cc:ba:93:f3:9e:03:68:d2:fb:5a:f3:dd:06:f4:
e2:92:5d:c6:0c:a4:74:70:2f:d2:43:ab:f1:bf:61:24:ff:8d:
b0:58:7e:a9:f0:0b:10:21:3d:ab:7a:05:a5:96:75:90:45:c6:
57:b6:0c:52:4e:79:5c:b6:c1:9f:9f:0f:70:67:f1:a7:2c:14:
5f:4b:04:18:86:ad:2e:9e:5f:cc:6c:f7:dc:1b:35:d9:03:53:
25:da:98:72:e4:2d:cf:14:9e:1f:35:14:16:23:bc:36:b9:ad:
58:95:30:33:1e:12:8e:88:9b:29:d0:98:9c:0d:88:a5:7a:23:
8b:57:5a:f9:34:8a:49:4b:5c:f1:50:e9:ce:59:b2:48:64:1b:
97:67:f9:a1:26:d2:3d:1b:24:93:91:85:53:35:ec:8d:cd:e9:
ce:00:72:47:22:db:bb:21:95:a1:e6:90:a1:91:17:58:0a:3d:
e0:56:11:86:8e:a3:e6:11:1b:82:7a:58:59:bb:f9:fd:0a:c4:
21:be:a2:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 11:20:50 2025 by rpki-client