Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
File: yjzk270E4HrOGTf4ChWvc5m4Aw4.mft (raw, json)
Hash identifier: o7Vzb9p2w90+qNV4s8nK33Pf+1sSj2qJ2moYkRf984U=
Subject key identifier: 9E:AE:54:FD:24:E3:AF:09:A5:83:32:CC:0E:A6:51:07:53:F1:05:02
Authority key identifier: CA:3C:E4:DB:BD:04:E0:7A:CE:19:37:F8:0A:15:AF:73:99:B8:03:0E
Certificate issuer: /CN=ca3ce4dbbd04e07ace1937f80a15af7399b8030e
Certificate serial: 019A50072892ABAEDE481F7EB7EC2DB85031
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
Manifest number: 06A4
Signing time: Tue 04 Nov 2025 18:00:37 +0000
Manifest this update: Tue 04 Nov 2025 18:00:37 +0000
Manifest next update: Wed 05 Nov 2025 18:00:37 +0000
Files and hashes: 1: yjzk270E4HrOGTf4ChWvc5m4Aw4.crl (hash: MiBFp8xKHR5auqjkhCGFkmE/vKVsVk65bOXKzgdEoW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:07:28:92:ab:ae:de:48:1f:7e:b7:ec:2d:b8:50:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3ce4dbbd04e07ace1937f80a15af7399b8030e
Validity
Not Before: Nov 4 18:00:37 2025 GMT
Not After : Nov 5 18:00:37 2025 GMT
Subject: CN=9eae54fd24e3af09a58332cc0ea6510753f10502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:45:eb:bd:0b:c1:6d:2b:70:62:97:45:4e:d2:
0d:6f:a5:9c:04:13:d6:dc:f7:02:04:d6:d0:c5:4d:
40:fd:60:43:0b:53:d2:ad:17:22:82:c0:74:6a:fa:
dd:44:3e:a1:4c:ba:dc:c8:08:2a:d3:a1:f7:cc:b5:
79:16:c7:54:0f:d0:44:8b:03:1c:76:46:9d:af:5c:
d4:b9:77:1d:13:97:24:43:41:6c:24:7d:a6:05:a7:
26:15:dc:02:7c:eb:68:e3:11:bb:ef:97:5f:bc:31:
1b:59:3a:5e:5b:1c:b8:fa:fb:e3:e5:7b:85:e0:a3:
60:f9:f5:5b:1e:30:e1:f6:95:5d:3f:c9:a8:15:d3:
37:11:24:58:74:68:b8:09:18:aa:85:55:8e:6b:f6:
28:95:00:aa:e2:51:1b:d2:73:54:7e:9f:ea:a7:54:
fb:a9:0d:46:2f:7e:17:11:6c:16:1f:34:fb:5b:22:
b2:a9:a3:ee:e3:44:b1:ea:03:6d:bb:9f:d2:5f:44:
ed:89:88:cf:88:92:1b:ba:9e:dc:d9:91:91:80:66:
7e:d7:6d:25:25:0c:6c:95:0e:d6:74:5a:70:d1:49:
b1:cb:45:cb:23:40:02:fe:37:5c:72:99:11:d6:d8:
5c:79:5e:30:f3:5f:2e:36:ac:2f:c8:51:65:0b:44:
5e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:AE:54:FD:24:E3:AF:09:A5:83:32:CC:0E:A6:51:07:53:F1:05:02
X509v3 Authority Key Identifier:
keyid:CA:3C:E4:DB:BD:04:E0:7A:CE:19:37:F8:0A:15:AF:73:99:B8:03:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:2a:4d:b8:8e:6a:4f:41:2d:8c:b7:65:1f:84:cc:d7:a3:4c:
b8:9c:96:b6:fe:06:6f:0f:85:fd:59:34:df:b8:36:64:a6:d5:
6b:d0:cb:7b:61:0a:41:7b:7c:09:29:97:db:8e:24:86:0f:48:
3e:58:8a:d2:2f:ca:01:1b:84:e9:0a:1d:75:68:a9:f9:3c:3d:
32:12:68:df:ab:49:bb:e6:45:ce:ad:cf:51:64:31:26:1f:29:
4b:92:38:51:96:a8:ab:e8:80:20:f3:d3:5a:33:a1:77:b6:b3:
1a:3f:72:b2:3d:36:b5:6a:06:fa:c9:68:97:d9:c4:61:da:e8:
bf:31:5f:3c:4b:52:73:55:03:68:62:e4:32:be:ba:0c:b8:3d:
60:50:0c:55:aa:05:e3:c7:55:c3:49:26:23:df:5c:da:07:83:
77:4d:0d:a1:b2:ab:88:78:9e:c8:a7:26:79:7b:a0:9d:3c:83:
c5:e0:2c:8d:76:3d:bf:60:81:da:16:68:6d:e7:b6:d9:d5:9c:
1f:29:4f:69:a7:a6:52:ca:8c:83:66:a4:d2:52:b3:3c:8f:7c:
ab:cf:63:cd:9a:97:d5:10:07:93:ef:f1:c5:e9:df:20:52:6f:
e5:18:70:42:18:86:e2:b1:74:ed:cf:6b:f3:f7:03:99:cc:ea:
65:9b:46:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:48:00 2025 by rpki-client