Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
File: Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft (raw, json)
Hash identifier: Y2DoyQawkwr5vCZpc5bTJDsh72l2O0IrTDx4whDQnVI=
Subject key identifier: D5:85:08:68:5B:5E:CD:41:53:89:5E:74:2C:EE:9F:D5:B7:BB:AC:74
Authority key identifier: 63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
Certificate issuer: /CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Certificate serial: 019A4D064383EB046AFBB78BD9A59E3ABECD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
Manifest number: 0438
Signing time: Tue 04 Nov 2025 04:00:47 +0000
Manifest this update: Tue 04 Nov 2025 04:00:47 +0000
Manifest next update: Wed 05 Nov 2025 04:00:47 +0000
Files and hashes: 1: Qzda_dpxvv_9oCqZ0rKtNjYGFYA.roa (hash: yhmVIZybj8mBYPvdFgcuCe4v8sYhgAuDZKiw+Hdv0f4=)
2: Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl (hash: Ac4CVeZoL0estLHLiPLty1z0aIzv/p+lw5h58OM/5r8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:06:43:83:eb:04:6a:fb:b7:8b:d9:a5:9e:3a:be:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Validity
Not Before: Nov 4 04:00:47 2025 GMT
Not After : Nov 5 04:00:47 2025 GMT
Subject: CN=d58508685b5ecd4153895e742cee9fd5b7bbac74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:dd:97:d6:f2:da:8f:4e:ba:01:16:ae:cd:ca:
91:d4:d6:c6:66:aa:d4:9a:1f:74:ea:f6:0d:4b:55:
d3:f3:9b:5b:e0:6b:a4:70:c8:1b:37:fa:91:4d:40:
06:d1:51:8e:2d:f5:2d:5a:b7:22:0f:8d:64:35:cf:
0a:43:dc:13:df:94:b3:04:f0:bb:f1:7f:73:46:de:
da:16:af:bc:54:c8:7e:ef:11:a9:23:a8:a5:78:76:
38:82:3c:7f:d1:09:17:98:10:78:0e:47:cf:c4:32:
4c:74:18:8c:30:91:cd:7d:fb:21:fa:5e:67:3e:18:
db:81:53:92:df:45:ce:ec:64:85:07:d1:2c:16:a1:
b5:74:6f:7d:1c:d7:c0:de:a0:b2:ec:e5:fd:2a:9a:
de:8e:c1:91:42:0d:79:00:ad:75:2a:2b:6d:e6:7b:
91:9d:ab:b5:23:fe:23:ad:bb:3e:7a:61:69:c7:40:
96:06:ea:20:3b:17:f9:49:c3:dd:9b:d2:74:7d:e2:
04:77:02:b1:8f:e1:07:15:7d:f1:e2:bd:c0:93:df:
70:ff:f7:ab:8b:1a:81:e8:2d:1c:29:39:82:f8:7c:
76:52:cd:06:73:ef:b5:13:7a:8b:cc:94:61:ce:e5:
59:cb:1b:a5:7c:8e:9d:7a:6c:30:b4:b7:83:e6:f8:
27:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:85:08:68:5B:5E:CD:41:53:89:5E:74:2C:EE:9F:D5:B7:BB:AC:74
X509v3 Authority Key Identifier:
keyid:63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:c2:d2:49:67:7e:00:45:cc:f2:35:77:40:be:a6:8a:1a:2c:
63:5c:0b:df:a5:91:9d:2e:bd:2f:80:0d:8a:7f:f4:27:b0:ff:
02:05:40:bf:eb:d7:83:d8:2f:46:5a:cf:6a:62:8a:70:e3:15:
c8:40:a9:67:31:e5:1b:0b:ec:a5:e8:d0:a6:b2:0d:55:58:b9:
4f:c3:c3:39:d5:e2:60:c8:2b:dc:ac:63:c4:bc:17:02:3e:d2:
41:45:5d:1e:1f:0b:47:59:0e:8d:df:b1:72:9e:03:a1:0e:ef:
8e:05:36:68:3f:56:d1:17:04:27:be:15:b9:8e:41:dd:e3:d4:
be:68:0d:24:fa:1b:73:06:c0:83:23:3d:68:08:8b:02:f6:cd:
b7:e9:17:34:6f:9d:34:43:cb:29:0d:dd:d0:49:1d:0a:56:74:
8d:6c:63:1f:b8:42:dd:8e:16:fe:cf:90:00:ec:c2:df:55:24:
fc:6f:6b:16:2a:18:55:20:c5:99:5a:47:e9:f4:71:08:3d:0a:
9e:e6:af:9d:27:ca:90:36:06:60:d2:fc:36:d3:cf:ee:be:85:
f6:c2:3a:92:af:f3:04:e6:ce:44:e0:d6:70:e5:d7:7a:a4:0a:
6d:85:3b:94:86:24:cd:f7:e3:76:64:99:35:92:57:86:e6:79:
9f:94:6c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:51:13 2025 by rpki-client