Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
File: yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft (raw, json)
Hash identifier: wqpIe6f4eeefCTvJrNiWRhPNLSBX3A+C53s52A7x/7Y=
Subject key identifier: 6B:41:1A:50:B6:A0:29:5E:BF:27:3E:8F:DE:6F:44:A4:88:56:C2:C9
Authority key identifier: CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64
Certificate issuer: /CN=cb36180ab4542d6eee66d9f99030df71236ce264
Certificate serial: 019A522C4E4E5E4B183C115EE6F1C65F24EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
Manifest number: 1555
Signing time: Wed 05 Nov 2025 04:00:26 +0000
Manifest this update: Wed 05 Nov 2025 04:00:26 +0000
Manifest next update: Thu 06 Nov 2025 04:00:26 +0000
Files and hashes: 1: Iq8sBOoYl2FdEDuOs7ZjqubA0mo.roa (hash: cKH71Gw8ENbKfDC7hsHD0Ixm5ykhTLruun3w+xwHV3U=)
2: yzYYCrRULW7uZtn5kDDfcSNs4mQ.crl (hash: 8JVlNnsu/BysuHIgG8mp5cQcoBkGY3Ur3K1Ofw86+Z0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 04:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:2c:4e:4e:5e:4b:18:3c:11:5e:e6:f1:c6:5f:24:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb36180ab4542d6eee66d9f99030df71236ce264
Validity
Not Before: Nov 5 04:00:26 2025 GMT
Not After : Nov 6 04:00:26 2025 GMT
Subject: CN=6b411a50b6a0295ebf273e8fde6f44a48856c2c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ae:b3:26:36:36:39:2d:fb:b0:ec:58:ec:70:
c9:d8:ea:ed:e4:6c:0d:eb:f5:4e:51:7f:85:8d:32:
62:63:30:59:fb:16:3d:55:10:8a:46:11:2f:67:fe:
ac:99:a3:52:a2:93:1d:53:a5:c8:60:58:ae:43:32:
03:a1:85:81:f1:94:74:d0:16:bc:4f:cc:c2:5c:3b:
08:fa:23:fa:21:a8:fa:7f:00:48:ad:5e:1b:66:3f:
8a:93:07:ef:fe:1f:d0:d9:3d:9f:2c:33:f9:71:9d:
61:8e:32:3a:07:dd:40:7c:0f:0e:12:62:70:0e:3e:
a4:ef:c4:da:2f:89:ea:67:54:56:91:5f:0c:10:58:
c1:3e:69:f1:92:41:d4:2e:40:50:ba:3c:d8:85:6a:
02:fe:5a:d9:51:95:8a:30:03:3c:df:64:0d:ea:9d:
36:11:8c:da:16:ad:76:4f:0a:54:01:79:e4:10:0b:
21:55:8f:86:0c:a5:81:c3:be:c8:de:15:50:dc:f8:
f7:08:90:71:7b:da:df:67:10:bb:35:eb:44:1d:5a:
45:ea:d4:6e:2e:ab:7c:b6:c6:9f:d6:3b:4f:a1:a2:
b0:e5:9b:cb:b6:5c:e1:74:42:f3:c5:0f:eb:2a:ec:
67:2d:bc:d8:3b:0d:10:95:15:bf:3e:c3:23:e5:cd:
7d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:41:1A:50:B6:A0:29:5E:BF:27:3E:8F:DE:6F:44:A4:88:56:C2:C9
X509v3 Authority Key Identifier:
keyid:CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:53:b6:a2:86:92:5b:4c:7a:5c:f8:1b:c3:80:00:71:60:30:
d9:27:84:c2:b1:98:a2:b3:92:26:23:9f:36:e6:34:1a:24:53:
17:f7:78:f1:0f:9d:89:ae:55:39:ee:6a:0d:c5:64:82:7f:fc:
23:2c:41:13:e9:c4:0a:34:7f:13:9a:2f:64:0f:7e:b9:82:ab:
de:37:19:0e:bc:f0:fa:0b:0d:86:66:7d:14:14:df:26:cc:6f:
f5:9e:fc:70:d7:24:50:66:b2:30:8d:e4:fb:c0:5f:7c:85:77:
86:54:c9:b4:58:62:e4:03:be:c5:93:97:c0:2b:58:53:6b:f4:
03:b3:14:12:29:8d:88:0d:90:87:21:c4:b8:49:88:ab:f7:29:
16:86:d9:10:0d:36:9a:76:73:50:9d:61:40:06:3c:48:60:12:
45:f1:c1:c9:f3:4b:3d:02:4a:21:d8:40:74:ff:45:c1:f9:29:
ab:9b:20:1e:8a:3b:eb:b1:a0:5c:ed:8c:62:00:e9:7e:63:97:
f2:7a:a5:41:68:0d:cf:28:8c:9e:9b:fb:4d:7a:65:1c:a0:fc:
21:48:ca:59:10:76:bf:91:84:01:9e:3a:37:0e:86:9e:52:f0:
16:18:0c:5a:83:47:f3:73:92:cc:e1:79:02:3b:3d:16:25:d4:
da:b5:df:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 14:10:01 2025 by rpki-client