Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
File: yF0BtEKUbhkkMT1WTzG35C4kVec.mft (raw, json)
Hash identifier: ihFaEwzx46g82cb9zgA71GZI6aDBsddm/iKY/d2wYKE=
Subject key identifier: 7A:64:11:E3:40:E8:ED:58:B8:03:9B:2F:EF:90:9C:85:E8:19:9A:92
Authority key identifier: C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
Certificate issuer: /CN=c85d01b442946e1924313d564f31b7e42e2455e7
Certificate serial: 019A4C9828C76FEF8BFC82CD38BFE17A9079
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
Manifest number: 0B8D
Signing time: Tue 04 Nov 2025 02:00:31 +0000
Manifest this update: Tue 04 Nov 2025 02:00:31 +0000
Manifest next update: Wed 05 Nov 2025 02:00:31 +0000
Files and hashes: 1: DpCybAm9bBRoUpHGAuIQ86Lq5pw.roa (hash: 2p6cZB/6xzzCJ7jeUbBrD5Bf0hcHEh4tn/vPl+35cnU=)
2: yF0BtEKUbhkkMT1WTzG35C4kVec.crl (hash: Wa3oltRtzgIuDfkESUICgX+b0eCLEqkLSeSaJCKV7Xs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 02:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:98:28:c7:6f:ef:8b:fc:82:cd:38:bf:e1:7a:90:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85d01b442946e1924313d564f31b7e42e2455e7
Validity
Not Before: Nov 4 02:00:31 2025 GMT
Not After : Nov 5 02:00:31 2025 GMT
Subject: CN=7a6411e340e8ed58b8039b2fef909c85e8199a92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:7e:2d:f6:5f:91:4e:1f:6f:1d:80:ff:1d:54:
84:92:8d:67:33:4c:fa:ed:6c:05:2d:f4:75:69:f9:
1b:38:c8:23:61:ea:6a:9a:bc:a1:b2:03:e5:41:75:
2c:6b:f2:3e:72:3b:bb:10:33:2e:98:0b:a6:09:d2:
14:5c:b1:8c:b1:dc:9d:9b:3d:f7:92:8d:43:91:2c:
57:94:bb:cb:e8:79:46:e6:00:6e:2e:01:aa:ba:0d:
20:1e:e6:e5:15:23:ac:b2:01:1b:cb:5c:38:79:bd:
7c:51:17:7c:0d:11:02:c8:53:01:80:90:0c:dc:cd:
79:e4:0d:8d:a6:55:51:de:c7:3c:39:40:0f:ae:87:
18:25:ac:ea:ed:e8:49:e4:25:8c:dd:f8:31:c0:76:
9a:eb:9b:43:ef:6c:8a:bb:d0:9e:24:f0:c4:32:d3:
68:89:85:fb:5f:10:d1:ab:f5:f3:90:7c:79:a5:f6:
33:e5:87:af:a5:88:25:ef:95:f0:eb:6a:eb:0e:cd:
39:ce:20:de:e7:9b:3a:0a:5c:ab:9d:2e:c0:4d:48:
d0:a0:ca:ec:76:45:68:00:01:0e:02:b9:81:4a:d9:
33:f2:4d:4c:8b:52:d9:5c:e1:c1:6f:d4:37:40:8b:
05:6a:6f:a5:93:f2:97:2b:d5:8d:a0:fe:73:81:81:
ed:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:64:11:E3:40:E8:ED:58:B8:03:9B:2F:EF:90:9C:85:E8:19:9A:92
X509v3 Authority Key Identifier:
keyid:C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:96:f5:9c:37:50:a1:13:33:50:98:02:93:88:75:82:1b:a9:
b7:6b:70:2e:ca:0d:02:8c:81:e2:b3:ac:83:b2:e3:41:3a:63:
57:c2:8d:5e:34:47:7c:0a:23:c2:13:75:33:a2:c8:e6:3e:ac:
ed:d4:f6:61:60:f0:eb:c2:2a:38:84:21:2a:ad:ef:99:52:e5:
33:de:4f:1f:c0:76:52:f4:6c:9c:7a:21:63:7c:b5:ff:f5:d5:
07:71:52:3f:b5:6f:d8:3b:45:6e:30:c8:34:d2:83:95:0c:5f:
4b:44:ae:ed:58:fe:ac:5b:0c:c6:48:94:3d:7b:37:80:4c:17:
85:f9:60:e3:0a:73:9a:fa:43:84:7d:68:71:b0:6a:05:eb:74:
fb:d9:74:b5:34:57:85:31:d6:2e:aa:82:b8:bb:a1:7b:a5:d7:
50:fb:a6:12:80:2c:2f:1f:43:a0:c0:33:d6:36:e8:a6:ed:18:
5f:1b:5b:9d:58:10:61:60:16:9e:c3:dc:be:f4:e0:2b:43:cf:
41:ce:4b:65:92:da:5a:6e:9c:2b:2d:f0:8c:1e:0b:26:6d:b2:
28:73:53:3f:32:71:57:5b:31:6a:8d:2e:ca:1a:09:9d:8b:65:
26:a4:cd:a5:b1:af:cc:7e:7e:fe:5a:8d:11:06:9e:fa:00:f9:
ab:a0:47:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 11:20:48 2025 by rpki-client