Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: BONqvCxZDB7LnSN14bmv0x1C4HDzf7mz+iLRWDAKFhM=
Subject key identifier: 37:50:86:8A:FB:E9:92:95:17:A2:94:19:17:93:6A:7C:B9:0D:EB:3A
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 019A4E18C0ADC20C3E26D8DDFDF10E720CC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 0428
Signing time: Tue 04 Nov 2025 09:00:36 +0000
Manifest this update: Tue 04 Nov 2025 09:00:36 +0000
Manifest next update: Wed 05 Nov 2025 09:00:36 +0000
Files and hashes: 1: 9jS2v21J95xARBtQOtdTT0EtYBQ.roa (hash: BeiYvaVP67aUM+eVkzjpflxlaHwkNmiJmUTQZAVqkOQ=)
2: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: IPUr3ky7gmlYfmriTA1RGtXfqAILl8RfVTkDY8bpGyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:c0:ad:c2:0c:3e:26:d8:dd:fd:f1:0e:72:0c:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: Nov 4 09:00:36 2025 GMT
Not After : Nov 5 09:00:36 2025 GMT
Subject: CN=3750868afbe9929517a2941917936a7cb90deb3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:56:44:10:45:90:03:57:3f:ec:c9:e9:e9:f3:
4f:84:fd:3c:ae:2a:36:84:39:1e:0f:54:8f:93:ef:
ff:ba:39:8b:e2:23:27:06:cc:54:12:8f:52:81:01:
64:39:ce:16:32:22:ee:f5:a3:44:16:b2:ab:d0:80:
34:74:33:1f:ac:1f:67:c4:2b:7d:1b:37:d9:2c:6b:
a3:7a:d1:02:3f:69:2a:ea:47:e1:31:33:30:c1:d0:
82:74:0b:1e:cd:0d:5d:06:bc:8d:10:53:03:04:2e:
25:cc:f4:66:bf:9e:47:37:f5:75:fe:f6:2c:e8:1f:
fc:05:41:79:40:91:75:ed:82:b1:9e:61:8a:29:63:
32:49:78:3f:a5:36:a0:4a:69:cf:ff:4a:11:6c:6d:
ae:b9:3e:5d:39:66:da:44:2b:85:bd:52:1a:85:30:
23:82:60:79:95:fe:49:49:57:ce:13:15:b8:8e:39:
e0:58:02:c4:77:a3:4c:67:63:91:ce:17:b4:cc:0b:
7c:d5:d4:a8:19:b7:73:d7:3f:df:26:ea:6a:ea:60:
4c:91:50:e8:a5:3c:65:a7:16:d6:74:fd:21:af:84:
4a:fc:77:c8:5f:c4:60:71:ab:1e:2e:35:83:7f:81:
29:0a:e8:b2:1b:de:06:7d:6c:23:40:26:f3:6f:71:
6f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:50:86:8A:FB:E9:92:95:17:A2:94:19:17:93:6A:7C:B9:0D:EB:3A
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:b2:8f:16:f6:8c:84:a8:29:3e:a0:27:d3:13:51:c2:59:88:
2d:48:a8:84:12:3f:90:88:a7:5f:08:97:39:d8:4e:1e:b8:06:
0b:5d:55:32:47:38:a0:38:70:f4:e3:ed:e6:b0:14:ca:48:c8:
97:93:2c:c5:8f:9d:6b:a8:0f:14:df:4c:04:dc:c8:8c:61:f8:
5a:91:f4:1b:0c:85:6b:cb:0d:0d:44:6f:15:7a:ea:85:c4:3e:
d8:a8:78:47:47:12:66:b0:36:46:b1:68:73:76:25:80:07:6e:
cd:f0:37:ee:58:b8:42:74:40:59:7a:e5:62:e2:60:e9:97:14:
8b:7f:6c:41:ba:86:8a:1b:ca:f9:d9:71:0f:9e:76:6b:34:55:
db:12:1c:9a:41:10:e0:b0:6d:40:47:29:8c:43:5e:e5:72:0d:
3b:92:c9:57:97:86:7a:f2:0d:65:e8:3b:50:2e:67:62:68:6d:
43:fc:db:13:9a:ef:11:15:24:d2:7d:dc:d9:f8:af:aa:10:c7:
8f:8c:ce:ad:f9:9a:bd:95:2d:5a:f2:06:00:60:54:c0:48:41:
46:47:1b:d3:b5:b0:97:64:93:ba:88:8a:f4:71:d5:1e:37:4a:
01:da:e3:0e:93:27:e6:e7:ef:04:34:51:d7:a9:ec:89:f5:8b:
84:fa:72:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:15:54 2025 by rpki-client