Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
File: Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft (raw, json)
Hash identifier: dWWu5svTEGuhK7qtLmK/9h/KAnPUE+XnLO7x3V50Arg=
Subject key identifier: 66:E4:BC:67:CE:10:21:4A:FF:83:AF:4A:22:88:EF:E7:41:5E:41:E3
Authority key identifier: 23:28:72:F4:31:AD:A9:B6:82:6C:5F:08:97:EC:4E:53:42:09:2E:98
Certificate issuer: /CN=232872f431ada9b6826c5f0897ec4e5342092e98
Certificate serial: 019A4F99075AD9834F8D17D7A5D9FA20A947
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
Manifest number: 046D
Signing time: Tue 04 Nov 2025 16:00:20 +0000
Manifest this update: Tue 04 Nov 2025 16:00:20 +0000
Manifest next update: Wed 05 Nov 2025 16:00:20 +0000
Files and hashes: 1: 48SAL-XLUksWWK1voy4rKInz7oY.roa (hash: gFJO835mNcJuKRXk34iwBhwCN0pZ40KaHdrECvT9LmA=)
2: Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl (hash: cvX5E6GUTrxdVfWCd3k9J/9KG9Q+uEg5FeVrhbUZCdo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:07:5a:d9:83:4f:8d:17:d7:a5:d9:fa:20:a9:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=232872f431ada9b6826c5f0897ec4e5342092e98
Validity
Not Before: Nov 4 16:00:20 2025 GMT
Not After : Nov 5 16:00:20 2025 GMT
Subject: CN=66e4bc67ce10214aff83af4a2288efe7415e41e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b4:7b:a3:79:ed:a8:4b:df:93:60:45:9a:27:
af:5c:5d:45:20:52:98:9a:21:75:a3:22:05:71:a7:
ed:41:e7:90:63:bd:48:79:db:3d:fb:1a:0e:85:0f:
f5:5e:fb:13:0d:f3:d6:d5:3b:67:d3:6b:36:25:06:
19:db:d7:2d:45:29:e9:69:83:20:14:a1:5c:42:c3:
28:c7:d2:b2:9e:54:13:6e:d5:f7:76:3a:98:39:09:
51:4a:fc:1a:49:c3:26:88:2d:af:35:0b:5b:3a:1e:
6d:56:7e:a9:ca:9f:c0:98:d5:26:a7:c2:1d:2b:ad:
4d:51:f2:ee:d5:f4:47:83:a8:45:c8:6d:a5:90:78:
5b:d6:de:10:6d:a0:97:f0:18:bf:9c:e8:ba:f3:a7:
26:2a:27:cf:f6:be:59:63:17:07:aa:aa:13:e1:6c:
0c:e5:c8:9a:ee:74:b6:be:80:69:fb:29:af:c1:45:
26:7e:e4:f0:6e:a0:6e:47:17:96:6d:db:02:7e:fd:
4d:7c:3c:67:c7:fb:a6:47:e0:8f:d2:5a:a4:2a:63:
50:14:47:73:62:1e:5c:72:c1:8e:55:13:ce:5b:1d:
4f:c8:9c:8a:55:12:68:b9:0c:5f:0e:10:c8:4e:8f:
94:8a:c5:d3:79:0c:bf:5b:6d:1b:de:06:4a:ee:d0:
65:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:E4:BC:67:CE:10:21:4A:FF:83:AF:4A:22:88:EF:E7:41:5E:41:E3
X509v3 Authority Key Identifier:
keyid:23:28:72:F4:31:AD:A9:B6:82:6C:5F:08:97:EC:4E:53:42:09:2E:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:71:a6:db:b4:78:c8:c8:4b:b9:5e:20:9d:53:7c:aa:22:50:
13:ba:ac:36:7d:90:8b:89:ab:fd:91:19:2f:bb:53:65:6b:0e:
c3:ef:7d:c6:64:e0:6b:3e:65:7d:3c:d1:10:51:d1:c5:e8:58:
22:8d:c9:f5:0a:ff:54:cd:4f:0b:bc:3b:ca:5a:0f:0e:3a:cb:
90:33:d6:6e:a1:61:dc:51:e9:cf:a7:15:2f:a7:84:b4:70:4e:
ff:8e:36:5c:bc:c3:68:3e:89:47:f3:af:2e:23:4e:ee:b6:1d:
04:8d:d7:51:f9:31:70:2b:ca:a6:65:1a:25:70:3d:ad:2a:30:
f3:a1:3d:fb:b4:83:7a:b5:79:e7:b8:09:8f:10:d5:06:d0:b7:
38:2e:dc:35:0a:c1:a2:39:2e:57:eb:ce:e3:31:1f:b1:cd:cf:
37:c2:9d:2b:9d:7e:4b:59:09:6e:a6:61:ff:50:97:e7:3b:11:
3b:03:74:a2:5a:80:a3:97:5f:96:03:0d:ef:e3:02:77:91:ad:
1d:df:3d:bf:e9:25:4b:57:9c:84:44:57:18:8e:11:f1:d5:9a:
3e:0a:5d:50:e3:a5:f0:52:45:ad:b4:37:73:41:4e:61:f7:c3:
40:a5:d3:a2:e0:3d:c1:bb:56:02:af:a6:4d:7c:65:29:58:07:
58:b6:b8:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 00:14:23 2025 by rpki-client