Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
File: YHZWuPfoG1FJtIYPgSex1OO0h9w.mft (raw, json)
Hash identifier: DKu/+ygPeAwqplDlCeo0VxtO8CC3l6q1nw8U4M04crI=
Subject key identifier: 5C:27:60:A3:CD:5E:4A:24:50:1D:FC:BE:33:0A:FD:70:00:03:4A:5D
Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Certificate serial: 019A5150680622938C1495FAFE7E150C05C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
Manifest number: 0D1F
Signing time: Wed 05 Nov 2025 00:00:14 +0000
Manifest this update: Wed 05 Nov 2025 00:00:14 +0000
Manifest next update: Thu 06 Nov 2025 00:00:14 +0000
Files and hashes: 1: 7-uxb2sVoc0kcAT2m9SP5qVnZ8E.roa (hash: acdZUKxa+ye22RHZ+hlpmz4eeOUGVIjJiD1cAB8HEbo=)
2: YHZWuPfoG1FJtIYPgSex1OO0h9w.crl (hash: ikGPnj0IPVr7arLYexSaQZxyQWJ1ZYykDNhbZR336vo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:50:68:06:22:93:8c:14:95:fa:fe:7e:15:0c:05:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Validity
Not Before: Nov 5 00:00:14 2025 GMT
Not After : Nov 6 00:00:14 2025 GMT
Subject: CN=5c2760a3cd5e4a24501dfcbe330afd7000034a5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:42:70:12:d9:20:43:46:41:33:28:a1:da:80:
a4:ef:1b:4e:b7:da:dc:93:1a:e0:fa:77:e9:d0:50:
0f:0b:12:0e:f9:7a:f8:a1:70:d5:3c:08:5b:f2:88:
b9:c9:aa:52:b1:c7:be:06:91:a8:cf:31:01:cc:34:
ea:a3:be:fe:ec:df:9e:b0:4e:57:92:a3:7a:da:e5:
25:0e:55:56:61:6d:94:08:53:69:a9:58:fa:a2:6c:
77:b5:9e:ed:52:0b:d7:e5:89:19:62:67:4b:5d:79:
1b:d8:1d:a8:21:c0:42:57:a8:55:a0:b2:52:b5:d3:
be:78:c5:ca:e2:a0:b5:56:f3:d2:a1:10:e3:27:e8:
6d:65:f9:24:3b:59:af:eb:3c:ee:04:76:b7:e6:af:
97:99:0b:eb:ce:96:c4:1a:a0:57:63:49:9f:52:e9:
c9:e9:57:5f:33:08:29:07:2c:4d:0f:33:4a:f7:9b:
6d:f7:a4:fe:b0:6f:c4:e2:5a:13:9f:53:1a:4e:60:
cf:56:4d:f2:af:08:24:8d:68:23:10:59:ea:4b:5b:
f5:f2:1d:b8:ce:b8:26:a6:45:12:32:63:83:b3:ac:
28:02:c8:4e:de:c1:d6:da:0b:82:db:b8:e8:66:0a:
02:23:f3:6e:b7:be:11:02:b5:c2:e2:fb:4a:96:eb:
43:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:27:60:A3:CD:5E:4A:24:50:1D:FC:BE:33:0A:FD:70:00:03:4A:5D
X509v3 Authority Key Identifier:
keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:95:b8:40:f5:a9:b9:6d:90:13:95:d8:60:07:39:1d:76:9c:
ef:d4:69:a9:a9:20:07:52:e0:f2:bb:6c:21:b4:f5:1e:6d:47:
ec:37:d9:9c:33:8e:8d:c8:28:e4:11:4a:85:f6:5a:df:cb:44:
45:68:99:cc:cd:2a:f5:bb:25:50:ea:30:4b:6c:53:9d:2e:35:
3e:32:10:11:3f:0c:3e:a9:a4:ce:55:bb:e8:ef:3d:e8:21:c5:
e2:57:be:e4:c4:55:0f:ee:ec:51:4d:99:44:6c:4c:7c:c9:72:
64:9c:a8:ba:2b:47:e9:d5:a3:03:b5:31:83:0b:12:40:56:34:
7f:a3:cc:1f:a1:09:b4:bb:92:09:74:62:8c:59:3f:e2:a7:91:
cd:be:02:b7:68:cf:57:28:d2:df:d4:e8:e8:de:44:b2:96:97:
70:ba:53:df:9b:8a:d0:bd:39:f2:17:7b:4d:14:20:eb:dc:32:
5c:11:5c:f1:02:6d:e2:54:f9:35:df:7e:0b:ac:e9:d9:c0:84:
be:2d:c9:0a:8d:f5:00:7e:84:a6:23:c8:a0:5b:e6:b0:03:f5:
50:aa:87:bb:5b:71:04:da:bf:c3:fd:3f:21:91:f7:fc:3a:42:
4c:94:f7:30:a0:8e:23:e6:fa:bf:d0:c9:55:4a:d2:ed:33:c9:
a8:6c:50:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:37:14 2025 by rpki-client