Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft
File: yu79CETrE5qyH4DUByzguO3MBrU.mft (raw, json)
Hash identifier: fpy6UPh/Kk2JeBHPxWhjjEPf3pSv7qXs5E94FkjcxiQ=
Subject key identifier: D7:2C:17:40:75:44:89:6C:24:76:62:E9:5B:87:53:01:BD:16:07:BB
Authority key identifier: CA:EE:FD:08:44:EB:13:9A:B2:1F:80:D4:07:2C:E0:B8:ED:CC:06:B5
Certificate issuer: /CN=caeefd0844eb139ab21f80d4072ce0b8edcc06b5
Certificate serial: 019A4DE1FC9FCA517F725DB18A06EFA8AFDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yu79CETrE5qyH4DUByzguO3MBrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft
Manifest number: 035D
Signing time: Tue 04 Nov 2025 08:00:46 +0000
Manifest this update: Tue 04 Nov 2025 08:00:46 +0000
Manifest next update: Wed 05 Nov 2025 08:00:46 +0000
Files and hashes: 1: Zja22H7huKyd4DPgiFnlD1La7Es.roa (hash: AXLErsCzJc/qr3Tna9lN0B3Ap4Vz9K2Svk3Dy2hJER8=)
2: yu79CETrE5qyH4DUByzguO3MBrU.crl (hash: fx76lnmbqiKbPFqpjt13TmX0ZXKAafDm7SeVmy6S5LI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yu79CETrE5qyH4DUByzguO3MBrU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:fc:9f:ca:51:7f:72:5d:b1:8a:06:ef:a8:af:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caeefd0844eb139ab21f80d4072ce0b8edcc06b5
Validity
Not Before: Nov 4 08:00:46 2025 GMT
Not After : Nov 5 08:00:46 2025 GMT
Subject: CN=d72c17407544896c247662e95b875301bd1607bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7c:b1:fb:7b:78:e2:b7:5f:45:71:ea:11:a5:
cc:b9:fc:48:bf:28:a0:ce:0f:00:92:33:8d:fc:75:
9d:39:0c:ee:98:6e:40:e2:7a:44:10:2e:1c:ea:f2:
95:e0:1c:0b:c2:7a:90:77:06:fb:fa:51:4c:63:9d:
31:24:95:a9:98:29:6f:2a:b1:dd:6a:67:38:bd:be:
d4:68:e3:a6:d2:50:1d:a0:e6:9b:e4:ca:f5:66:72:
82:0a:02:2b:8c:86:ef:2c:13:be:88:49:c0:7c:80:
20:75:c2:8b:11:0b:2a:30:21:c2:ac:77:3e:25:8f:
1e:b9:6e:58:30:14:b1:d4:4c:11:06:8b:d3:62:98:
40:4b:da:2f:b5:8f:4b:2f:fa:c7:98:b0:44:91:69:
d7:8f:9e:e4:dc:27:9a:af:f2:db:d8:19:ca:ef:ac:
b8:bd:3c:28:2c:a0:a3:aa:ea:08:68:a3:6e:69:03:
0b:df:9f:e3:f4:0a:3a:5f:50:e2:77:9d:73:c8:db:
d8:92:c1:91:8f:b6:8f:9d:8c:41:67:ab:23:89:ef:
3a:b3:40:e3:b2:5b:d1:ab:7d:bb:c6:0b:b1:ab:66:
ed:1e:b7:3e:9d:af:00:06:86:3a:b2:b5:8c:a5:80:
1d:e4:9a:11:83:78:52:2b:1b:e2:d3:96:aa:4e:3f:
29:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:2C:17:40:75:44:89:6C:24:76:62:E9:5B:87:53:01:BD:16:07:BB
X509v3 Authority Key Identifier:
keyid:CA:EE:FD:08:44:EB:13:9A:B2:1F:80:D4:07:2C:E0:B8:ED:CC:06:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yu79CETrE5qyH4DUByzguO3MBrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:3f:09:4f:79:54:a3:a0:9d:a3:9c:ef:23:e7:41:cf:91:81:
e0:73:c6:e5:8c:6f:73:aa:a9:a7:31:fd:d9:47:35:ae:ef:2f:
0c:33:63:08:a9:e8:b8:04:69:16:51:32:4d:50:5b:3b:ba:7a:
58:64:31:48:60:9d:4f:00:1f:46:63:b4:42:0c:81:f4:13:8d:
9f:72:c9:50:ac:67:ad:76:f1:ba:40:2b:52:dc:d2:e0:db:c6:
86:d0:7e:1d:72:1a:6d:f1:2d:c8:d0:42:45:8b:1e:2d:7a:a9:
e8:5d:c0:51:05:16:b1:27:1e:81:ff:49:f7:9e:4b:57:1a:c9:
cf:34:70:be:44:e4:f5:ac:96:4d:b0:62:e7:af:b5:30:14:c9:
d6:c4:06:96:08:3a:6b:e9:22:80:76:8c:32:ea:71:3f:6b:be:
cb:8e:05:18:1f:e7:61:6e:a4:a8:f9:fd:b1:93:9c:6e:12:fb:
1e:ea:91:44:18:94:71:dc:9d:10:32:3a:c3:00:5c:ae:26:a0:
cf:f3:19:b5:85:42:82:65:71:5c:b3:8f:5e:24:a9:7d:41:b7:
b4:b4:a3:0d:8d:62:cc:ed:8b:99:69:14:3a:50:41:73:7a:e3:
45:62:34:a6:48:ba:a2:88:41:3b:f0:39:c4:63:51:12:7a:26:
82:dd:72:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 11:17:57 2025 by rpki-client