Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
File: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft (raw, json)
Hash identifier: /gPVMDLTkg0sFcyrkT+7k9DrdHUYVlX9KhdTn9FlwVM=
Subject key identifier: 45:BC:EB:92:A2:1E:68:EA:92:4C:86:AA:AC:A3:60:DA:68:68:AD:D5
Authority key identifier: CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
Certificate issuer: /CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Certificate serial: 0199FB459FBAF60CE4BFC88BCD2B7593ED61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
Manifest number: 0395
Signing time: Sun 19 Oct 2025 07:01:07 +0000
Manifest this update: Sun 19 Oct 2025 07:01:07 +0000
Manifest next update: Mon 20 Oct 2025 07:01:07 +0000
Files and hashes: 1: q6cfXUDveWHdgQWTYKqVwvvOAe0.roa (hash: BJPMM6GNYN6IqCj9i2G5fXzbZjuTVnz0OtAPd8t+eZk=)
2: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl (hash: PKYxAb80znd4u56P5kUR1zqp3Q7vJEPg2rkZG8p8Few=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:9f:ba:f6:0c:e4:bf:c8:8b:cd:2b:75:93:ed:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Validity
Not Before: Oct 19 07:01:07 2025 GMT
Not After : Oct 20 07:01:07 2025 GMT
Subject: CN=45bceb92a21e68ea924c86aaaca360da6868add5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:87:77:6e:69:55:d6:d9:c2:00:8f:2c:86:d3:
bf:a5:92:4a:e4:a7:7e:93:e0:55:16:b9:18:43:32:
4a:5e:c0:ba:4b:4e:0c:24:cc:a1:c5:20:28:24:09:
86:f9:aa:cb:eb:69:56:89:a2:e0:8e:17:89:15:73:
ef:fa:9f:46:de:cd:7d:06:70:77:bc:80:4c:ef:00:
aa:2a:ed:5c:b5:c4:5e:8c:e6:62:8a:3b:1c:f7:a5:
22:c7:15:e5:ad:3c:18:bc:90:9b:16:1a:fc:00:e4:
2c:02:4e:b3:eb:84:d0:b5:b9:78:d6:1c:69:8d:10:
e8:eb:ae:c6:ae:83:80:17:5a:6e:bd:77:39:d8:c2:
f4:dd:7c:25:0e:33:de:4a:fb:aa:93:34:69:33:20:
82:f1:14:66:4f:ac:c9:a2:2e:ff:3b:fb:bf:26:1d:
1f:55:d7:72:d1:f7:72:dd:66:b9:f7:56:76:91:eb:
45:68:ba:2d:51:c6:e5:dd:95:94:d6:74:f3:ef:32:
f7:44:23:e6:97:49:2c:0c:5f:c1:c5:72:b5:41:ce:
1e:a0:5a:86:fd:98:d5:86:e5:29:43:4c:29:54:94:
77:be:f1:a3:fa:80:74:a1:c0:65:68:e7:0d:0c:a6:
1c:a8:4f:f4:50:77:aa:4c:3b:35:a3:8a:c5:51:33:
76:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:BC:EB:92:A2:1E:68:EA:92:4C:86:AA:AC:A3:60:DA:68:68:AD:D5
X509v3 Authority Key Identifier:
keyid:CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:b3:e2:f0:d3:1b:89:f3:e9:eb:ce:0e:35:4a:79:c0:a4:d0:
26:ed:01:18:65:00:bc:70:52:0a:78:45:01:98:98:c2:45:4e:
26:71:c1:05:9e:72:61:07:72:bf:61:d8:42:0e:7e:ff:58:e3:
7f:d0:76:2b:95:0f:66:0f:46:54:e3:2e:d6:d5:fa:48:26:4d:
cd:28:13:fe:00:e3:ec:5e:c4:e0:39:68:b7:8b:ba:d1:f0:66:
7f:3e:42:00:c4:f5:5b:3e:01:fe:f4:16:9a:eb:fd:d2:56:d4:
78:19:d5:b1:28:87:8f:cc:41:c3:8f:d2:3c:3f:e8:84:27:e0:
a4:15:6e:a9:10:5c:c9:70:81:69:c1:cb:67:db:1f:18:54:d4:
31:64:41:46:dc:e4:68:a7:77:27:25:83:97:c2:27:05:5d:f6:
94:28:8e:ed:21:ee:7b:a7:92:15:70:6d:d9:70:b2:cc:1b:fd:
87:c4:37:46:99:a9:e5:2d:4d:d8:4c:d8:c7:5d:ca:2f:c0:fd:
6a:2b:56:02:a8:6b:f0:e6:9f:bc:f2:8c:95:56:4a:d3:80:35:
bb:23:28:83:79:a7:be:60:d3:47:c5:4d:49:98:41:17:4a:a1:
6f:ee:e3:37:eb:ed:19:58:07:ed:5c:06:33:4c:e1:fd:0c:ee:
e3:63:a1:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:29:32 2025 by rpki-client