Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
File: iydIPcFsMY5a__gyKTDIF_0ZLJE.mft (raw, json)
Hash identifier: TZhICN7cWsPpV83wcKGOamK8RVdFUkbWZM3zd1cXsYo=
Subject key identifier: E2:BF:4C:53:8A:D0:3E:84:8E:A8:AE:E2:F1:A2:48:05:58:49:D1:01
Authority key identifier: 8B:27:48:3D:C1:6C:31:8E:5A:FF:F8:32:29:30:C8:17:FD:19:2C:91
Certificate issuer: /CN=8b27483dc16c318e5afff8322930c817fd192c91
Certificate serial: 019A4FD02CE857266D072B2002F19BDDD348
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
Manifest number: 0A6D
Signing time: Tue 04 Nov 2025 17:00:34 +0000
Manifest this update: Tue 04 Nov 2025 17:00:34 +0000
Manifest next update: Wed 05 Nov 2025 17:00:34 +0000
Files and hashes: 1: WG1KTWwRB1pYbj2P1y-YbJWElMQ.roa (hash: /RcbZ2ujStzbSPjPDGEz6Qg57WsDieIVmjOcowRraSQ=)
2: iydIPcFsMY5a__gyKTDIF_0ZLJE.crl (hash: ksYO/FwNLHkv5SC6INv7CwDJrp2tdls3EfIQbJAUIws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:d0:2c:e8:57:26:6d:07:2b:20:02:f1:9b:dd:d3:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b27483dc16c318e5afff8322930c817fd192c91
Validity
Not Before: Nov 4 17:00:34 2025 GMT
Not After : Nov 5 17:00:34 2025 GMT
Subject: CN=e2bf4c538ad03e848ea8aee2f1a248055849d101
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5f:f3:cf:b4:aa:34:f0:c6:85:3f:a3:be:9c:
e9:f4:0d:47:9e:36:6d:b2:d8:2c:f7:1e:a0:21:38:
3f:38:ca:08:31:e8:97:f9:00:a3:3a:80:76:c2:20:
a3:f7:ed:bb:f3:54:8a:7c:ee:2f:b0:91:88:85:3b:
41:f3:7c:57:d2:1b:22:37:d6:71:92:df:2a:51:0e:
34:f5:67:dd:19:89:75:1c:fc:e0:8e:01:b0:8a:be:
25:69:75:3f:d3:11:d7:a7:9d:29:24:8e:da:6f:2a:
6c:78:92:17:1f:89:d3:a1:99:29:c6:ca:c5:fa:d0:
c5:ee:d5:b1:ef:5d:b7:c9:dc:38:53:5e:06:e5:b2:
06:49:ca:a3:88:69:44:80:58:27:ae:32:a5:d9:17:
4c:e9:37:db:a9:7b:5c:ee:52:c3:cf:b9:15:51:95:
2c:19:47:91:2e:06:97:65:30:ee:85:21:19:46:e3:
54:55:72:9a:20:47:d0:46:a3:02:10:d3:cf:57:45:
b9:0a:f7:8e:63:55:46:1d:51:ce:e2:99:4a:96:c8:
18:b6:ef:b8:db:37:07:61:4e:99:a8:3f:4d:91:c6:
11:cc:90:59:82:eb:8d:49:11:6d:52:be:d7:6a:fb:
48:a2:68:b4:27:f2:1c:14:e2:50:9e:63:d7:e7:17:
2a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:BF:4C:53:8A:D0:3E:84:8E:A8:AE:E2:F1:A2:48:05:58:49:D1:01
X509v3 Authority Key Identifier:
keyid:8B:27:48:3D:C1:6C:31:8E:5A:FF:F8:32:29:30:C8:17:FD:19:2C:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:38:af:de:ed:57:4f:ed:8e:77:c7:df:2b:e5:8a:0d:b6:59:
23:3a:12:ce:15:6d:9f:45:8f:56:56:93:69:47:6c:29:dd:86:
2d:d4:79:36:05:ae:75:ad:6a:ca:a5:58:8e:d7:cc:3f:5e:83:
74:8b:50:cb:17:4e:2c:c8:99:31:aa:3b:61:43:af:2f:fb:ed:
2b:12:4e:1b:e0:89:66:d2:ce:5b:e0:62:f1:24:6c:f8:26:a8:
01:c9:c3:52:d5:ce:1a:2d:0e:bc:98:0e:82:78:53:f2:46:f9:
6f:10:68:91:15:28:b9:ef:29:17:43:79:37:42:25:59:82:e6:
72:99:5f:1e:8d:d1:0b:04:2a:32:c9:53:92:6b:ba:4a:7e:9b:
0c:9c:d4:ff:c6:7d:67:e4:c8:d8:02:a8:5b:62:40:97:9c:8c:
0a:65:e2:34:ce:a3:08:55:ee:26:ad:75:e7:c9:63:c8:3d:31:
f4:16:50:24:67:84:f1:13:42:26:a3:fe:42:6d:25:23:d2:fd:
a8:95:07:4c:52:6b:f5:ad:09:43:1f:48:63:0e:78:63:8f:1e:
16:f6:5e:5b:41:a9:b7:4e:9f:66:e3:a9:d3:fa:e8:bb:c6:54:
9a:b9:5c:ac:ba:3b:90:d0:a0:4f:00:4d:0e:7f:31:09:2c:d9:
73:d8:81:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:15:47 2025 by rpki-client