Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
File: y34FPHGZWsyb8TM_55w9W_1ulk4.mft (raw, json)
Hash identifier: jKU+4e5P9RbuXVketaZbUb3f0iHM0ElNLovwi75a9hg=
Subject key identifier: 75:34:3D:3E:71:A3:8B:F2:9A:2F:1D:B6:E6:1B:04:F3:28:C3:E9:71
Authority key identifier: CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
Certificate issuer: /CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Certificate serial: 019A4C614AE7C777136AE25754B929C995AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
Manifest number: 0D7A
Signing time: Tue 04 Nov 2025 01:00:35 +0000
Manifest this update: Tue 04 Nov 2025 01:00:35 +0000
Manifest next update: Wed 05 Nov 2025 01:00:35 +0000
Files and hashes: 1: OY3T_xG0jFJ_6yc5NmhmVJsNZOM.roa (hash: af8mlEBnTxkbr73XYFoiiYy6suBahBU1dHobCDHfy/U=)
2: y34FPHGZWsyb8TM_55w9W_1ulk4.crl (hash: /ElAn+clUzdg14kwlwyuyXbhb/uRl/V8OwldfrmuZbs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 01:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:61:4a:e7:c7:77:13:6a:e2:57:54:b9:29:c9:95:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Validity
Not Before: Nov 4 01:00:35 2025 GMT
Not After : Nov 5 01:00:35 2025 GMT
Subject: CN=75343d3e71a38bf29a2f1db6e61b04f328c3e971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d9:c8:ca:8a:c1:49:65:e4:f5:cd:12:b8:68:
a1:51:9a:be:1a:07:77:6a:73:db:64:b6:e0:8f:4f:
33:b4:fe:6c:ba:85:24:26:71:b3:71:9c:84:bc:e5:
b2:8d:fc:14:65:f0:d2:ed:2f:09:cc:00:1a:d1:21:
ca:5d:81:48:bd:69:17:f7:4a:d5:e6:04:7c:ec:0a:
2d:5e:1e:2c:d6:45:13:dc:f5:e5:9a:c9:02:4f:3c:
b0:03:a6:8b:29:4f:11:a4:1d:c8:ce:b4:76:f9:d0:
5b:5d:7b:9d:f8:4a:37:32:c5:64:52:08:77:d8:7d:
43:2d:0f:5b:87:52:5f:1e:83:5e:6a:a2:3b:68:d0:
0f:05:db:ac:72:a3:b9:34:50:19:28:75:5b:f5:62:
5d:cc:e9:7a:3f:9a:1a:55:d6:4d:15:43:65:84:c8:
8d:3a:c0:b7:f6:2f:57:94:43:fd:bc:bf:8d:07:4f:
a3:b2:b0:3b:06:e4:87:c2:5b:08:b2:38:bf:88:4c:
26:4a:74:6a:a8:18:1e:46:b6:a0:9c:57:0b:90:db:
92:fe:63:ce:14:48:cf:78:db:28:2a:56:a9:5a:7b:
ce:cc:c7:e1:e8:c8:9c:80:30:89:0f:4e:c8:69:75:
5e:93:a5:5c:b8:23:1d:6c:31:53:ef:d1:e0:cf:b4:
df:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:34:3D:3E:71:A3:8B:F2:9A:2F:1D:B6:E6:1B:04:F3:28:C3:E9:71
X509v3 Authority Key Identifier:
keyid:CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:af:3c:db:71:55:eb:e2:ed:a0:74:46:5a:88:8d:62:b9:3a:
97:a8:94:5c:fa:ea:84:e3:33:7b:2f:b2:ac:f5:3a:00:e1:6b:
1b:37:2d:09:48:9b:04:d3:cc:44:41:b3:7e:af:13:96:7f:66:
f6:51:d5:76:6c:4c:21:5c:60:d7:38:50:60:41:62:8b:5f:61:
79:a4:df:8b:b0:c4:95:a3:92:b0:ac:84:87:09:ff:3d:06:64:
4c:96:95:26:c4:ed:95:93:c6:43:82:bb:31:3a:2c:1b:8d:f1:
e9:d5:b8:9d:d6:57:13:90:39:58:2b:9a:54:61:ce:cb:92:c6:
f3:cd:9a:21:2b:f1:91:d9:b8:ff:50:25:75:4d:7b:c9:83:69:
63:ba:84:6a:05:9b:3c:d2:f8:91:41:10:33:90:b1:fa:ed:37:
1d:4c:ae:3d:21:62:12:7b:04:a7:51:77:4d:3c:b0:83:9e:7d:
f6:30:65:32:1c:da:35:d4:71:d1:57:d8:e8:ea:dd:1b:57:ac:
d3:b7:c4:a0:0e:bf:99:2b:c8:a0:2c:77:60:f2:ee:92:5a:5b:
a9:89:eb:4d:6c:04:a7:1f:d0:f8:37:79:30:1d:ee:8e:a1:95:
60:23:53:99:d5:34:cd:4d:00:f2:5d:d0:f5:d6:8b:63:4a:85:
1e:dd:fa:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 11:00:45 2025 by rpki-client