Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
File: 1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft (raw, json)
Hash identifier: A33FKAl9d+htcdO6bge6/roC6T4VS9qXJdfBD+pC6JQ=
Subject key identifier: 8D:F8:A2:4D:DD:81:E4:5F:9A:AD:5B:6C:3D:C2:D6:10:FC:94:E5:7F
Authority key identifier: D5:A2:19:6E:F1:19:22:11:55:E1:68:3F:89:67:D2:54:62:5D:AE:71
Certificate issuer: /CN=d5a2196ef119221155e1683f8967d254625dae71
Certificate serial: 019A530830298F91C8C3C5BB552FD17C326C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
Manifest number: 170D
Signing time: Wed 05 Nov 2025 08:00:36 +0000
Manifest this update: Wed 05 Nov 2025 08:00:36 +0000
Manifest next update: Thu 06 Nov 2025 08:00:36 +0000
Files and hashes: 1: 1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl (hash: dcPIwVOElKquJtDf52h4PEsRQ7iZM/aVKb5F+xDLpPI=)
2: Rvoozr9-AEirIvl3H78yEjywI3M.roa (hash: C8PH+7JgTNI/2g3gAC+RhVDcD73858pmRmw+QrCbn9g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:08:30:29:8f:91:c8:c3:c5:bb:55:2f:d1:7c:32:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5a2196ef119221155e1683f8967d254625dae71
Validity
Not Before: Nov 5 08:00:36 2025 GMT
Not After : Nov 6 08:00:36 2025 GMT
Subject: CN=8df8a24ddd81e45f9aad5b6c3dc2d610fc94e57f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2a:99:f0:bf:a2:dc:c5:b9:12:ae:0e:85:47:
fa:7a:1d:cb:57:1b:58:0c:75:f7:24:de:dc:a2:1b:
1d:ff:c7:f4:66:09:63:d5:3c:34:96:25:e7:33:82:
31:0d:9e:2e:6f:70:58:56:9d:6d:53:b6:72:2a:29:
b8:1e:87:04:d8:e4:3f:a6:dd:1d:89:50:df:88:ac:
e5:1e:a7:ec:9d:03:a7:eb:b8:33:2e:a9:c4:1a:b5:
61:8d:de:c5:58:46:87:c9:9a:f5:de:9f:d0:2b:68:
8d:7a:ca:70:39:40:b8:67:e0:1b:61:00:b3:ef:09:
60:e3:51:8a:2f:57:ce:40:33:e3:3a:d6:be:06:b3:
25:df:f2:cb:99:2a:da:d4:0a:6b:3c:eb:56:fb:21:
06:95:18:cc:1f:9a:27:16:a0:44:a7:74:8b:41:97:
fb:ce:87:63:8f:9c:03:85:e9:71:39:f4:cc:24:1b:
2c:db:2e:9c:6e:7f:ca:51:3b:c5:10:5b:21:77:d9:
b1:22:22:55:08:7f:3f:d4:92:ec:4e:0a:63:28:35:
0f:6b:15:28:a3:34:6c:fc:a7:88:e6:74:7f:4b:61:
72:d4:07:bf:aa:ff:5f:df:a3:91:a4:fd:4a:83:84:
34:c6:dd:9c:16:58:14:a2:89:89:80:c3:61:92:db:
3d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F8:A2:4D:DD:81:E4:5F:9A:AD:5B:6C:3D:C2:D6:10:FC:94:E5:7F
X509v3 Authority Key Identifier:
keyid:D5:A2:19:6E:F1:19:22:11:55:E1:68:3F:89:67:D2:54:62:5D:AE:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:34:6e:e4:7c:0f:43:d2:8f:13:37:13:49:f5:a2:6a:41:28:
4d:f2:2d:d7:15:99:cd:8d:d4:77:70:02:68:c2:b6:a5:23:29:
01:a0:de:62:a2:4a:a0:b6:e9:95:0c:23:2b:52:86:f1:34:38:
47:fd:2a:7c:48:61:df:9a:3e:58:fc:da:2a:ee:2a:d5:8a:2e:
12:e0:58:37:35:65:cd:b3:7e:f4:2d:58:88:21:63:9b:07:9c:
fe:1f:08:e8:a8:09:8e:b9:c8:72:df:f7:ac:42:df:76:93:f0:
90:31:d3:75:f0:8a:23:69:34:ac:da:cf:4e:36:43:4c:8a:2c:
82:66:b4:4b:0e:42:ca:87:ab:ad:89:41:31:f1:72:90:d7:a0:
5d:df:ca:0d:00:01:7d:ed:36:18:01:85:9d:f4:c5:8c:8d:9c:
5c:8c:1a:f9:92:0a:ff:58:75:13:13:f0:b0:fd:18:26:74:ab:
b3:92:1d:76:b8:94:66:81:84:a6:27:7f:92:ba:d2:21:98:4f:
40:b1:b9:bb:00:85:08:13:24:ad:5d:1b:53:d9:b8:0d:61:91:
52:64:8a:44:52:7f:51:1b:e0:29:be:fc:44:db:df:34:34:4d:
35:05:99:7e:a2:e5:47:8e:46:54:7a:df:a1:1f:5f:95:f1:bf:
84:3c:55:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 17:51:59 2025 by rpki-client