Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
File: d8LYpgGX_HveZPw_rRDrLaT-h3k.mft (raw, json)
Hash identifier: czWMB1hbW/bYY42HD7aV9ioWFJ3qPrTqeAly7190h58=
Subject key identifier: E0:0C:21:B7:98:09:54:97:55:99:32:DB:34:BD:BF:6D:56:7D:36:C3
Authority key identifier: 77:C2:D8:A6:01:97:FC:7B:DE:64:FC:3F:AD:10:EB:2D:A4:FE:87:79
Certificate issuer: /CN=77c2d8a60197fc7bde64fc3fad10eb2da4fe8779
Certificate serial: 019A4E18A1862264BF6360A012F9C3B195B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8LYpgGX_HveZPw_rRDrLaT-h3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
Manifest number: 0762
Signing time: Tue 04 Nov 2025 09:00:28 +0000
Manifest this update: Tue 04 Nov 2025 09:00:28 +0000
Manifest next update: Wed 05 Nov 2025 09:00:28 +0000
Files and hashes: 1: Fio9S4kkM_6MY_PyvY4nnlbZSX0.roa (hash: MLkm/zb7dfsD7k0W1D+pAVDUongRrbvCkAFDtBq/FSI=)
2: d8LYpgGX_HveZPw_rRDrLaT-h3k.crl (hash: 4JeloZHZAz6gC7hiCExZqjXyJxgtfVjcrfXXVk3Z87U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/d8LYpgGX_HveZPw_rRDrLaT-h3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:a1:86:22:64:bf:63:60:a0:12:f9:c3:b1:95:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c2d8a60197fc7bde64fc3fad10eb2da4fe8779
Validity
Not Before: Nov 4 09:00:28 2025 GMT
Not After : Nov 5 09:00:28 2025 GMT
Subject: CN=e00c21b798095497559932db34bdbf6d567d36c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b1:8c:e3:b8:5b:9c:7c:d4:36:de:5d:32:68:
cd:6b:da:9b:80:6e:be:bf:57:97:a1:33:20:d0:57:
61:d9:16:93:2d:28:41:c7:6b:b3:d9:43:03:e2:04:
7a:8b:51:7c:6f:2a:c7:09:a6:e6:a3:cf:8b:a4:fc:
a2:d3:92:f7:3b:67:18:46:3d:39:d1:9b:39:2c:cf:
93:36:9c:df:35:e1:03:3e:71:b4:d5:71:be:2e:f5:
3d:28:b4:cc:fb:6b:e3:c1:77:56:31:e1:39:d2:a2:
ed:18:05:ab:9d:8a:bf:17:81:70:af:0b:ac:41:85:
24:f5:05:53:6d:c7:7a:31:85:48:51:e6:a5:16:83:
05:2f:c0:aa:61:b7:e2:c3:84:a6:00:c2:bc:5f:26:
93:8a:e5:22:b8:d9:9b:af:e2:13:9a:55:74:58:77:
26:a5:f1:43:c2:18:a4:69:a7:dc:64:bd:a2:f8:3a:
da:1d:05:a2:1a:83:e4:c0:a6:1a:7d:bf:0c:67:b7:
ce:1e:dc:f5:e2:1f:65:7e:b8:67:cf:97:cd:eb:55:
2d:ce:4c:f9:11:e2:73:a3:35:0e:53:cb:5a:b7:ea:
92:38:9e:42:8f:3d:95:83:47:e1:41:1f:4a:c8:0e:
93:33:ae:66:87:c9:fe:e0:3b:0f:22:af:d7:f7:6f:
bd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:0C:21:B7:98:09:54:97:55:99:32:DB:34:BD:BF:6D:56:7D:36:C3
X509v3 Authority Key Identifier:
keyid:77:C2:D8:A6:01:97:FC:7B:DE:64:FC:3F:AD:10:EB:2D:A4:FE:87:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8LYpgGX_HveZPw_rRDrLaT-h3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:f5:5b:cc:51:1e:36:1d:dc:6c:14:bc:5e:5a:7d:b6:19:ab:
69:aa:05:93:92:af:f9:66:71:4e:00:38:04:1b:03:0c:82:35:
a0:a0:07:87:0f:b1:be:6d:ef:85:dc:fe:eb:ac:0d:ec:02:e3:
14:aa:2c:f3:4f:6f:a2:86:25:58:86:95:d9:76:55:8f:4b:d0:
6e:18:19:2a:9d:75:b3:fc:d5:f5:f4:d9:79:76:a9:36:5b:62:
5e:54:c9:c9:b6:cf:71:15:37:ad:eb:c4:bf:cd:5f:a4:d0:95:
7f:d0:64:d8:19:20:48:d7:09:11:91:21:19:63:79:bd:bb:4e:
59:e6:b6:e9:04:58:c9:0f:f5:9e:b4:9f:3f:77:72:6f:5b:f2:
6b:25:e2:9c:8b:6d:e0:45:18:f6:c7:28:91:85:88:23:84:f3:
cc:c6:d5:6c:18:dd:cd:a0:11:e7:5f:fb:99:d1:4d:6f:b1:37:
f3:4d:66:7d:9c:26:df:89:2e:e0:81:62:62:9d:dc:46:5f:53:
2f:c5:f3:29:1c:d8:5e:22:74:7d:18:24:40:3f:00:23:0f:25:
d3:c0:9d:de:a4:28:47:20:02:e2:ca:34:80:b4:8f:f6:8e:6b:
7c:03:15:bc:af:44:0e:42:0b:04:43:24:7b:7d:08:a5:3f:1b:
4e:73:ce:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:57:53 2025 by rpki-client