Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
File: yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft (raw, json)
Hash identifier: XzExRCkOGFiTVRtvT2tlPIe/0a061skCFzNvNPhMUUw=
Subject key identifier: 78:77:15:4D:0F:11:CB:A7:60:34:25:7F:6A:F0:C3:8E:88:ED:A0:86
Authority key identifier: C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24
Certificate issuer: /CN=c8544c778152f0fd85e5dcb44904f001e5987424
Certificate serial: 019A4C981CA5FD531CF00B29B9EF4146C2C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
Manifest number: 07B7
Signing time: Tue 04 Nov 2025 02:00:28 +0000
Manifest this update: Tue 04 Nov 2025 02:00:28 +0000
Manifest next update: Wed 05 Nov 2025 02:00:28 +0000
Files and hashes: 1: S6l_0JOcWBI56o1Ky2VXoMdeNbs.roa (hash: Wj6L5jF5/gTOwMGZzw/KKTZV7RAbfIUF0qejcJRN4Ao=)
2: nUgVe_wCiJGaFj6dh7AjUlPsEn0.roa (hash: jaTBLGxMAzmUNw1xz6jc+rhc56U1GYTnqK8npgQkUZU=)
3: yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl (hash: rUoQUXMdhhUM7JSI3VQ6c+MUll5LnYhOKIsA3QKAqSw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 02:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:98:1c:a5:fd:53:1c:f0:0b:29:b9:ef:41:46:c2:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8544c778152f0fd85e5dcb44904f001e5987424
Validity
Not Before: Nov 4 02:00:28 2025 GMT
Not After : Nov 5 02:00:28 2025 GMT
Subject: CN=7877154d0f11cba76034257f6af0c38e88eda086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:e8:2a:98:1c:99:d0:ab:db:1c:60:af:92:5c:
96:05:b5:24:85:dc:0d:b7:52:79:da:5f:9e:7d:49:
22:b5:0a:a3:2e:4a:6a:e4:de:66:7a:83:91:24:45:
7c:1f:6e:ee:eb:23:66:46:04:30:bb:a0:ee:ed:b7:
50:2a:1c:19:4c:57:85:a9:3b:ad:fb:bd:da:bd:8b:
03:48:76:c7:53:2c:c5:ba:d6:bd:1d:32:76:21:71:
6b:40:9c:02:0f:e3:f5:b2:e2:b4:56:f2:96:58:7f:
6e:fa:85:2c:9c:6a:be:b8:ff:0d:6f:78:f1:cd:50:
76:43:b7:65:7d:96:df:97:0e:f1:03:14:a5:d4:85:
ad:f7:78:ae:3f:83:27:a3:57:6a:64:47:38:4d:6a:
77:9d:89:bb:8a:66:77:ac:9f:18:fd:11:c6:9c:91:
82:40:79:ad:e8:f0:11:51:33:5c:c0:fb:47:34:92:
5a:1e:99:32:30:90:0d:95:97:b5:a5:7e:72:87:fa:
ba:42:fc:cc:7d:d7:56:00:1f:7e:bf:28:d9:4a:62:
a2:79:8f:03:f6:0e:7f:2a:e6:5a:9b:f5:e9:60:90:
30:b0:55:94:58:e2:19:13:8f:20:73:68:92:74:c2:
01:41:38:86:7f:c7:31:d7:1e:5c:64:ab:f9:41:ac:
13:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:77:15:4D:0F:11:CB:A7:60:34:25:7F:6A:F0:C3:8E:88:ED:A0:86
X509v3 Authority Key Identifier:
keyid:C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:6f:81:47:58:a2:97:b3:f0:4d:af:9e:11:f6:40:a1:3d:21:
f7:29:76:96:4a:9a:d4:54:ef:d6:20:2e:5f:7c:bf:bd:49:4f:
80:10:e7:10:7e:cc:47:9f:b6:11:24:13:8b:b3:8d:47:3e:61:
bc:24:81:a2:8f:56:0d:e8:02:b9:9b:12:fa:60:95:f7:56:ea:
55:5e:83:76:9f:2b:08:b5:ca:f9:95:a3:54:47:e2:f9:f4:4d:
ee:ee:89:90:50:f8:74:a8:14:ee:8c:9c:1e:65:3d:64:24:71:
c8:4e:50:a2:dd:03:d6:21:c2:fa:06:33:74:44:50:56:db:3b:
9b:49:ea:d5:ec:79:2f:b0:86:d8:20:2c:0e:99:a8:4c:04:97:
e4:2d:fd:b2:40:90:c1:16:16:60:6f:7f:db:9a:56:e4:45:a5:
fa:ce:ca:be:35:e1:90:dc:65:f7:ee:8e:b4:67:f8:be:73:b6:
34:90:ec:79:4c:68:e9:f1:4c:78:78:fe:3d:da:d0:27:24:4a:
1f:34:8f:5a:e7:13:c6:bf:63:2b:b6:fc:b9:8f:ab:b9:33:47:
20:a3:f2:65:7a:ed:19:cc:44:0a:72:9b:b5:94:d6:77:50:65:
fb:6b:87:36:93:70:6f:e6:79:c8:75:e4:f8:5d:34:96:a7:53:
23:42:60:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 11:02:44 2025 by rpki-client