Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
File: dHyzZv9uI99sCX9grcf6gHVZgZE.mft (raw, json)
Hash identifier: RwysBa0XuHCGw06OvJ/3hEKCGIzdxMjfXuRJnrpFwy4=
Subject key identifier: 8E:D7:9D:35:28:FC:9D:B6:79:24:C7:8C:E9:67:F5:60:76:74:C6:69
Authority key identifier: 74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91
Certificate issuer: /CN=747cb366ff6e23df6c097f60adc7fa8075598191
Certificate serial: 019A4FD09884D083D0333A8E39143C4C86CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
Manifest number: 0AD5
Signing time: Tue 04 Nov 2025 17:01:01 +0000
Manifest this update: Tue 04 Nov 2025 17:01:01 +0000
Manifest next update: Wed 05 Nov 2025 17:01:01 +0000
Files and hashes: 1: _yLmchLwIYVTnPdJc9fw9h7BqNI.roa (hash: jQg4aqJLhfqC2o9cWdzjV4aGpmH8JtaZPWEi/oExAo8=)
2: dHyzZv9uI99sCX9grcf6gHVZgZE.crl (hash: r+7Yt/IFo8j3CG8pJartnrH40/ASMDfi7ZqgdE2E5P4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:d0:98:84:d0:83:d0:33:3a:8e:39:14:3c:4c:86:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=747cb366ff6e23df6c097f60adc7fa8075598191
Validity
Not Before: Nov 4 17:01:01 2025 GMT
Not After : Nov 5 17:01:01 2025 GMT
Subject: CN=8ed79d3528fc9db67924c78ce967f5607674c669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:5d:f1:09:6e:83:41:55:2c:14:fd:93:bd:7e:
18:e3:7a:63:49:39:a9:6c:c8:a1:d6:97:80:95:21:
04:36:7b:af:fa:14:68:5b:f3:95:ee:a9:03:de:6b:
04:a9:7f:c3:83:a4:da:a1:4b:35:bc:8a:49:4d:10:
09:04:5e:e5:25:c5:e6:8c:53:a2:10:49:64:bc:fd:
af:c5:0b:f1:00:54:6d:cd:b1:04:f8:7c:26:96:ec:
64:8e:c7:7b:00:78:ca:08:b5:5d:55:c7:d5:30:ed:
3e:3f:56:07:ce:d3:ff:c9:cf:c8:cd:7d:04:3e:a1:
94:58:f7:ed:b1:ee:27:cb:9a:3e:94:2c:fe:2d:36:
b7:90:fb:49:fb:08:95:e7:49:55:49:56:b9:b8:8e:
43:3c:ce:fc:a2:6e:24:00:32:17:4a:45:64:0e:0a:
00:40:6a:22:05:ec:3d:4f:b3:b9:28:26:02:e1:13:
39:59:d3:11:f3:92:7d:5a:0d:75:5e:b2:60:69:99:
97:9f:0c:f0:f7:de:4b:b5:eb:ec:cb:47:b0:c0:8b:
1e:a5:14:cf:73:a8:57:d5:cf:db:70:3c:c9:39:43:
8a:01:d2:91:c8:8b:ac:6e:bb:0e:83:c9:c5:08:09:
f9:35:bf:75:d3:5b:04:50:0e:d6:a2:3c:b9:15:4f:
30:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:D7:9D:35:28:FC:9D:B6:79:24:C7:8C:E9:67:F5:60:76:74:C6:69
X509v3 Authority Key Identifier:
keyid:74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:9e:ba:db:ee:d3:c6:15:1e:be:ee:2d:2d:a7:f8:84:94:4f:
f5:eb:2b:26:b0:96:53:74:46:00:7e:0e:7c:d3:6f:fb:d3:6e:
88:2a:90:d0:cd:0d:5f:e8:2f:68:44:01:48:a9:b3:67:6c:d7:
a9:7b:f0:09:8e:8c:55:ff:ea:3f:8f:8b:c4:70:a5:b6:67:4f:
88:d1:89:60:b2:05:40:bb:69:f0:ac:89:49:a2:a2:f6:2f:5b:
c5:13:53:62:92:15:55:a5:cc:f3:26:e3:16:8d:c3:64:29:7c:
a0:79:c7:fa:6a:19:8d:b4:d2:d0:e9:13:80:e6:9d:2b:2a:e6:
53:a0:4f:7e:67:2a:08:05:41:94:cf:ae:5b:50:85:44:3a:a9:
50:39:01:04:bc:58:06:e9:a5:88:22:b6:3f:ed:6d:2d:66:6c:
59:9d:be:15:96:d8:8e:0a:57:09:fa:ae:3a:5f:0e:d2:2e:b7:
ec:1d:fe:43:e8:f4:1c:34:5f:89:b7:1c:68:a2:be:63:da:cc:
d3:c4:cb:09:a6:fb:61:8b:1d:5a:f6:03:5d:34:90:40:e4:21:
9c:d6:69:e4:72:b5:53:f3:5f:b3:76:b1:18:8d:03:fe:01:bb:
1d:cf:2a:ad:3e:a9:94:c0:ac:77:cb:b9:dc:18:95:c7:ee:18:
4a:ec:94:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:20:58 2025 by rpki-client