Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
File: yuDyZX221YxEden7gXNW4u3SzA8.mft (raw, json)
Hash identifier: R4FnoifzMquOD6deLX2jpTZZ8Rgxa662txeC39Vb67k=
Subject key identifier: DB:E9:89:8E:A3:19:75:4C:BE:1A:D7:ED:CC:D8:8F:25:22:9F:D9:EC
Authority key identifier: CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F
Certificate issuer: /CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f
Certificate serial: 019A4F62E3B15DE79981F8B3FA15199E336C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
Manifest number: 12E9
Signing time: Tue 04 Nov 2025 15:01:12 +0000
Manifest this update: Tue 04 Nov 2025 15:01:12 +0000
Manifest next update: Wed 05 Nov 2025 15:01:12 +0000
Files and hashes: 1: yuDyZX221YxEden7gXNW4u3SzA8.crl (hash: odG6Y9zY+hbDmWkWg43jCkWfa9AcsafCGQTYsW3qb0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:e3:b1:5d:e7:99:81:f8:b3:fa:15:19:9e:33:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f
Validity
Not Before: Nov 4 15:01:12 2025 GMT
Not After : Nov 5 15:01:12 2025 GMT
Subject: CN=dbe9898ea319754cbe1ad7edccd88f25229fd9ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:12:93:ea:af:95:ef:1f:67:c2:24:4c:58:c3:
8d:a0:5d:19:a1:8b:80:0f:57:6f:11:32:c8:f8:8a:
92:7c:92:7d:80:64:29:fc:20:37:46:c0:6e:49:c8:
56:a9:83:93:92:cd:2e:9d:6b:5b:4f:87:59:48:15:
98:e0:ce:5f:3a:1a:eb:c5:ec:5b:af:2a:f9:f7:2e:
48:ee:7c:b6:af:e5:51:40:e0:de:b1:37:56:d4:95:
b2:cd:e5:a5:70:04:1e:2e:1d:61:43:21:a7:11:7a:
70:a8:1b:59:40:8d:c9:fc:54:19:ce:4d:c4:03:73:
a6:e1:d0:16:21:30:69:d5:66:d2:f4:73:2d:ca:bd:
c7:19:c2:cd:93:15:5e:6b:93:f0:2c:59:a0:98:ce:
72:9d:a1:c4:0c:3d:c9:eb:4e:72:0a:ce:1d:0f:fe:
1a:8b:4f:07:c8:10:6a:cc:e8:a2:92:10:27:17:77:
0b:d4:d3:8a:00:6d:ef:e9:c6:42:d2:b2:03:c6:9e:
98:fc:49:fe:99:f1:dc:86:ad:c1:14:2e:d1:db:ad:
1e:7f:ed:1d:ad:52:1e:17:f9:3e:1a:02:af:55:f0:
eb:8d:90:47:b2:56:1a:25:93:8f:b1:c7:88:0b:bd:
0d:b4:d5:5e:e3:b0:f7:5c:86:bb:68:f0:07:e1:ec:
85:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:E9:89:8E:A3:19:75:4C:BE:1A:D7:ED:CC:D8:8F:25:22:9F:D9:EC
X509v3 Authority Key Identifier:
keyid:CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:3f:03:1f:46:08:d2:8a:ab:a9:1b:c7:f1:90:13:ef:24:b1:
c2:b0:2c:34:b7:97:77:39:1d:4b:27:08:8c:ea:57:d2:02:30:
04:97:3e:85:6f:37:c3:48:0c:3f:c1:ef:66:4b:93:90:10:95:
6e:72:6e:78:a6:ea:ed:c2:8a:4a:63:be:03:94:2e:4f:14:b6:
a7:9c:9f:a4:f9:ef:3b:f9:db:37:5b:41:44:ab:b2:76:48:d9:
70:de:3c:25:8d:ea:2b:54:55:2d:e1:c2:0c:38:86:a0:bd:16:
36:0e:cd:fa:f2:2b:33:5f:90:a8:45:e4:80:d0:9e:88:3f:7c:
a1:7c:b4:ff:45:88:35:cc:0c:e1:0f:fc:aa:11:2e:98:ca:09:
15:7b:20:5f:94:f3:24:4b:ce:d8:8f:3f:9b:a5:87:c8:b4:5e:
aa:cc:7b:81:8a:10:83:c2:de:ab:c5:b0:66:56:9b:85:be:90:
05:46:ea:82:de:a4:4c:22:f6:98:f4:d3:76:11:79:5d:3f:30:
67:7a:64:72:cd:b2:fc:f7:6d:2b:2a:6c:7c:b7:09:c9:7d:37:
f6:e8:14:10:9f:21:54:d6:70:31:e1:74:f2:15:a4:95:ef:eb:
c7:b7:6f:b0:d8:3a:be:f1:b0:06:2d:50:10:2f:81:ec:9a:23:
37:cb:86:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 23:53:28 2025 by rpki-client