Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
File: U170D69INDOz4zaY5NHulfPJS-w.mft (raw, json)
Hash identifier: JovOZAQdZnytKbh08eVfcoIgbPy1WuDhCeAU2Hpuw6I=
Subject key identifier: 61:AD:2D:19:44:84:0C:46:A9:F8:37:5C:67:54:4A:A2:03:8E:61:BA
Authority key identifier: 53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
Certificate issuer: /CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Certificate serial: 019A52D28D88B6B6B589237D452C24100305
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
Manifest number: 170E
Signing time: Wed 05 Nov 2025 07:02:01 +0000
Manifest this update: Wed 05 Nov 2025 07:02:01 +0000
Manifest next update: Thu 06 Nov 2025 07:02:01 +0000
Files and hashes: 1: U170D69INDOz4zaY5NHulfPJS-w.crl (hash: IucXtFbRSJrPQkXdj/+FsdZTZjAjZJqfok2SHD1PmCQ=)
2: a9R4a72Ce3HtrFyUZj2Jrpn9DLE.roa (hash: lEQCssDpqykyZtTNm3b2/t+M2Xlx2R2hbaDbanTEKE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d2:8d:88:b6:b6:b5:89:23:7d:45:2c:24:10:03:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Validity
Not Before: Nov 5 07:02:01 2025 GMT
Not After : Nov 6 07:02:01 2025 GMT
Subject: CN=61ad2d1944840c46a9f8375c67544aa2038e61ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:45:2d:b7:b9:77:5e:4f:6a:49:c4:84:ca:87:
6f:a2:c8:87:76:b6:ef:df:77:65:f7:13:86:43:c1:
e7:67:91:85:38:5c:6c:7d:70:49:c3:a5:25:d5:a1:
b6:5c:63:a1:44:96:8d:4f:26:39:03:81:e3:cd:3c:
ea:d0:8f:97:c8:1e:0f:9d:f2:df:df:ed:64:cf:60:
90:f0:81:c0:33:33:7f:b3:a9:24:7e:e9:d4:4e:1e:
ee:c0:84:e3:98:75:9a:27:45:66:2a:8e:9a:78:df:
23:6a:bc:00:de:34:47:23:32:84:35:be:03:25:d6:
cf:8d:35:ca:89:74:d5:83:3b:d9:53:57:a6:5b:d3:
1a:ae:e5:55:f7:54:04:ee:40:86:ff:21:97:8a:e7:
53:ca:9b:47:3e:7b:62:51:6e:16:59:9e:f8:5d:b9:
84:6e:cb:80:aa:a1:b5:50:dc:be:9f:de:dd:8f:dc:
45:6a:91:e9:48:f6:d6:12:a5:71:02:02:f3:10:62:
ad:d9:d4:18:4f:75:3d:c1:af:d9:8c:f4:5a:0a:1c:
8e:ad:86:a2:71:44:1d:29:d0:12:0b:6a:7d:fb:dc:
47:ca:26:02:bd:15:d9:a3:6e:cb:26:1c:3b:5a:b6:
32:20:b0:5a:e9:9b:a9:ef:8e:7a:5e:1e:0e:86:cd:
4d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:AD:2D:19:44:84:0C:46:A9:F8:37:5C:67:54:4A:A2:03:8E:61:BA
X509v3 Authority Key Identifier:
keyid:53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:06:87:23:9e:c4:9b:63:6e:50:2b:62:89:40:8d:c6:6c:b5:
dd:83:e8:da:e4:44:e6:c6:9d:a8:f5:9d:0e:c8:4b:f7:4e:29:
3f:21:f4:00:ce:6b:b8:84:00:4a:d2:df:c2:f9:6a:0a:8e:25:
1e:73:a0:63:39:12:97:62:cf:55:a8:2c:63:f6:62:bc:b7:51:
1a:d8:52:9c:ff:18:3a:6f:71:52:40:69:f5:f8:c9:0a:52:da:
35:98:99:90:8a:ac:b4:23:ef:0e:62:76:5a:46:28:53:80:a7:
e2:e7:c6:c1:be:f3:09:4a:f0:e7:fe:dc:9a:25:85:e5:5d:a5:
48:76:c2:ca:84:17:00:89:e1:5c:a8:83:ae:56:34:02:92:27:
7b:b7:e2:9f:65:a4:8e:b7:88:c4:ff:55:18:4b:77:3d:01:c4:
7d:96:08:af:60:cb:bd:ac:57:b9:01:03:f8:1d:82:a9:04:72:
ae:1a:58:f6:ec:b0:32:d2:97:f3:2d:c9:e6:1e:eb:79:7b:77:
70:89:00:fa:00:98:b5:1c:f3:b4:d8:67:8b:48:e4:0f:41:f9:
51:ef:16:f2:26:13:dc:a9:22:01:82:77:e7:57:37:37:f1:4c:
b4:4d:cd:67:b1:46:17:12:b9:a6:2b:b6:33:4c:c1:2b:53:b1:
1a:0e:37:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 12:55:06 2025 by rpki-client