Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
File: y5idLhUgGyDjQIjdHARVslRE-Pw.mft (raw, json)
Hash identifier: ciI4AiBtP+P8JVHEOvLJWlAUlPfW8KaT1J2UC+j/uhA=
Subject key identifier: 67:30:22:68:1A:68:79:2C:3C:8B:1E:63:2B:39:4C:B0:53:C2:D6:DB
Authority key identifier: CB:98:9D:2E:15:20:1B:20:E3:40:88:DD:1C:04:55:B2:54:44:F8:FC
Certificate issuer: /CN=cb989d2e15201b20e34088dd1c0455b25444f8fc
Certificate serial: 019A4E188619636F9DBE2B49FE5D14C21094
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
Manifest number: 0D46
Signing time: Tue 04 Nov 2025 09:00:21 +0000
Manifest this update: Tue 04 Nov 2025 09:00:21 +0000
Manifest next update: Wed 05 Nov 2025 09:00:21 +0000
Files and hashes: 1: IlHeExFCZOwDVGR-pn-Mj6btqHA.roa (hash: G3OUewbUbdIfclHozVugqBGDnmkGwJv9DxeJNbUzFpM=)
2: y5idLhUgGyDjQIjdHARVslRE-Pw.crl (hash: 7EOGPGGGsV3pH4Z61vLXgFei29Zm8G+BA1ThWfynhBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:86:19:63:6f:9d:be:2b:49:fe:5d:14:c2:10:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb989d2e15201b20e34088dd1c0455b25444f8fc
Validity
Not Before: Nov 4 09:00:21 2025 GMT
Not After : Nov 5 09:00:21 2025 GMT
Subject: CN=673022681a68792c3c8b1e632b394cb053c2d6db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:37:94:50:d9:02:de:fd:dc:14:85:f7:17:d4:
ab:53:23:70:b3:be:79:ab:e6:71:50:cc:ac:aa:a2:
46:e9:2b:61:c4:8c:80:27:e3:d3:b5:85:5e:4b:06:
ff:62:03:bb:65:12:4a:5c:ff:fb:b0:46:c6:2f:2f:
9b:f5:04:8a:db:d1:05:8a:63:6d:92:92:67:25:e2:
b6:67:2c:a7:a1:ef:05:d6:da:83:71:bc:74:bf:4d:
6e:cb:0f:11:62:dd:ae:3d:27:37:e2:4d:2f:f8:3c:
5b:58:0a:69:22:31:45:e9:e6:9c:50:99:b3:0e:29:
32:ed:85:6c:4e:fc:9f:5e:9b:82:2a:a0:25:03:8c:
f4:29:48:de:8b:e8:95:b0:a5:a9:ca:68:71:ef:c7:
16:29:53:10:1c:5c:91:a0:db:1c:f4:7b:f8:b2:ba:
70:58:47:91:be:57:ec:e6:64:70:fb:ad:4b:a3:51:
38:70:d7:2e:7a:f8:f2:79:c2:12:91:26:a5:b2:3d:
8e:15:79:d2:7b:fd:1f:bd:85:fd:79:42:66:c2:de:
35:8d:cd:b8:5f:29:ba:99:39:d4:ce:3f:cd:68:95:
29:dc:76:93:76:0c:91:81:6b:c7:96:8b:12:c8:1d:
fe:73:f7:e4:98:cb:0f:64:4d:d3:41:98:17:5d:9a:
43:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:30:22:68:1A:68:79:2C:3C:8B:1E:63:2B:39:4C:B0:53:C2:D6:DB
X509v3 Authority Key Identifier:
keyid:CB:98:9D:2E:15:20:1B:20:E3:40:88:DD:1C:04:55:B2:54:44:F8:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:0c:6f:c9:9b:92:06:06:f5:80:ad:5b:51:75:4c:a6:f0:de:
82:15:e9:b3:8f:d4:2d:2b:41:a9:21:d2:83:ee:0d:b2:70:2e:
7e:57:22:3e:50:a5:a2:29:38:e9:ef:94:77:88:ae:5d:11:27:
7c:f8:19:7c:6c:98:47:26:ea:c3:05:d2:b0:21:03:ff:fb:3d:
fb:35:14:2a:b7:19:81:e4:bf:39:ae:93:0f:a5:cf:63:83:ad:
b8:9d:42:65:60:09:9c:a4:e0:24:ae:b6:2f:d5:20:61:7d:bc:
78:0d:f9:97:71:c8:50:ed:7f:78:7c:7a:32:6f:a3:e5:0c:a8:
fc:4c:69:63:73:3a:84:8a:ac:53:f6:3e:dc:b5:b4:08:13:65:
b0:86:7e:b1:82:02:08:cc:23:7e:8c:5a:78:37:fe:86:aa:77:
0d:30:9c:c9:04:02:45:7c:18:91:06:e1:75:f1:fa:f0:f3:3a:
6b:62:df:9b:c7:cc:52:85:04:2f:59:44:ad:b6:6f:93:d3:6b:
cc:86:28:74:f5:43:d0:d9:81:83:8a:c0:f7:31:d3:35:80:64:
a8:12:7e:f1:75:76:dc:bc:af:36:e8:2c:28:da:a0:63:d4:8b:
4b:4f:2f:85:56:0c:75:81:31:d2:b6:91:6a:36:4b:33:29:39:
31:d7:cb:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 11:00:36 2025 by rpki-client