Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
File: mRyTTgj1egPvTro2taTaeYolIgc.mft (raw, json)
Hash identifier: 6ZrMV8z92SdYmwcyRl0tGQtfkTjF18FRllgStZZ+rPM=
Subject key identifier: B1:77:DA:BC:E1:2B:A4:D0:1E:49:15:AB:8E:1C:96:99:D4:69:D1:A4
Authority key identifier: 99:1C:93:4E:08:F5:7A:03:EF:4E:BA:36:B5:A4:DA:79:8A:25:22:07
Certificate issuer: /CN=991c934e08f57a03ef4eba36b5a4da798a252207
Certificate serial: 019A51512926D42FD5D67DEBE37C1B5B1429
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
Manifest number: 170B
Signing time: Wed 05 Nov 2025 00:01:04 +0000
Manifest this update: Wed 05 Nov 2025 00:01:04 +0000
Manifest next update: Thu 06 Nov 2025 00:01:04 +0000
Files and hashes: 1: db9OeH46tzqgA4Lx9Y7WIwYTuDM.roa (hash: FuLyiACFaT6BITOZPeoXwp9XiYIYBsR3kP7HfHr2tYI=)
2: mRyTTgj1egPvTro2taTaeYolIgc.crl (hash: 9Rb07SCcQJVkjrJ9yfX36JqawWHcKGPopXou/ylyXUc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:51:29:26:d4:2f:d5:d6:7d:eb:e3:7c:1b:5b:14:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991c934e08f57a03ef4eba36b5a4da798a252207
Validity
Not Before: Nov 5 00:01:04 2025 GMT
Not After : Nov 6 00:01:04 2025 GMT
Subject: CN=b177dabce12ba4d01e4915ab8e1c9699d469d1a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:18:0c:5e:34:e2:2c:a1:73:95:9a:28:eb:70:
de:74:2f:a7:e1:d5:c9:ec:0d:70:de:be:60:c3:e7:
02:56:0a:9d:68:3a:3b:a5:37:e2:a8:82:8a:6a:ef:
32:90:7a:72:0f:d5:1e:0f:ad:66:77:58:86:67:7a:
f9:02:56:7f:3a:8d:80:d1:49:e2:47:2a:1c:32:22:
c3:f0:05:43:59:ef:a5:ec:c7:bb:9c:29:0d:15:d3:
69:f2:a1:84:f7:06:e5:1a:13:bc:1f:84:56:2f:8d:
5b:2d:f6:5d:54:8f:ac:55:dd:18:ec:79:8b:1a:7a:
68:de:b7:da:d0:a6:07:e8:2b:6e:c4:8f:41:b7:4b:
16:88:f5:ff:2e:87:c1:98:eb:df:4d:46:02:cc:a5:
e3:75:c8:2f:8d:b9:cb:6a:25:54:1f:da:eb:a6:08:
0d:d9:11:8a:06:f0:24:40:c4:3c:49:68:18:55:58:
3f:8d:9a:aa:21:87:a4:58:07:ad:6f:b6:ff:59:66:
a3:f5:20:22:65:02:45:a4:90:11:92:3f:df:65:71:
7b:6e:70:d0:b9:53:c6:8f:82:c7:0b:aa:04:f3:9d:
f4:d6:fa:fc:d1:02:a5:4d:46:f5:d8:22:55:a7:2e:
f2:c1:0b:8f:67:b0:e4:52:2c:04:8e:79:15:b5:d1:
75:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:77:DA:BC:E1:2B:A4:D0:1E:49:15:AB:8E:1C:96:99:D4:69:D1:A4
X509v3 Authority Key Identifier:
keyid:99:1C:93:4E:08:F5:7A:03:EF:4E:BA:36:B5:A4:DA:79:8A:25:22:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:87:a0:1b:44:af:0a:6c:a6:35:da:fd:db:f9:8c:02:ea:e1:
42:9b:c1:b1:c1:f1:fb:89:a7:76:02:37:9f:39:01:05:7e:a8:
31:d3:81:7f:2d:45:94:f3:67:83:af:b7:9d:06:c0:82:55:11:
bd:c0:04:25:a7:84:23:64:d0:7a:f3:4d:09:ff:6b:2b:f6:2a:
86:c3:74:88:db:65:b6:c9:6a:03:bd:12:20:4c:df:6f:54:76:
69:ef:26:95:c9:f8:a5:a3:f5:9d:8b:82:87:4b:58:2a:82:71:
e9:ce:e1:30:6f:d1:70:b4:5c:a4:58:9e:42:32:7f:b0:0c:30:
40:3b:ad:b8:0c:ba:85:0a:8f:49:b6:a1:9f:c2:e2:69:f9:ba:
94:c1:7b:fd:53:ac:16:ba:b6:b4:d7:b4:ba:cf:ee:3e:5e:dd:
95:ff:7e:b7:ab:a7:9c:c3:50:c4:c0:14:e9:4d:0a:5c:39:f2:
1d:f2:a5:94:d5:11:fe:e3:f0:89:ef:48:8a:a9:2c:e0:70:16:
e0:b0:08:5a:ea:29:51:3b:e0:14:1b:cc:2e:0c:0b:bf:78:61:
d2:cc:f4:51:4c:45:82:7e:66:4c:81:fc:3b:72:fd:80:de:40:
8b:30:8a:1b:a9:cf:a3:1a:8c:4c:be:80:96:5f:e2:2b:52:a1:
0d:05:e9:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:57:34 2025 by rpki-client