Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.mft
File: rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.mft (raw, json)
Hash identifier: X3RXAGFS3orMCgMZMufdYN4RXhDQo59piECICvfJtWI=
Subject key identifier: 9B:19:D1:7B:EE:09:1E:C2:39:B4:58:96:59:80:8A:B0:3C:27:4C:1C
Authority key identifier: AD:8F:54:38:07:3A:62:1A:EA:77:2F:5C:B7:A4:EF:D5:8C:6B:77:4C
Certificate issuer: /CN=ad8f5438073a621aea772f5cb7a4efd58c6b774c
Certificate serial: 019A4FD01A04082009E398FE9829FA916BAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.mft
Manifest number: 1714
Signing time: Tue 04 Nov 2025 17:00:29 +0000
Manifest this update: Tue 04 Nov 2025 17:00:29 +0000
Manifest next update: Wed 05 Nov 2025 17:00:29 +0000
Files and hashes: 1: G67im2f6_ZhJBmi9qes0fIWNsWo.roa (hash: rcGVW1BtLRG5wqd17uLZEGASDvopWpXiN4N5Gl4c/9Y=)
2: rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.crl (hash: IgpNzNnvIChStFC2SNZIwvNgTOOMvk18rUqqLvE9ZHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.mft
rsync://rpki.ripe.net/repository/DEFAULT/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:d0:1a:04:08:20:09:e3:98:fe:98:29:fa:91:6b:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad8f5438073a621aea772f5cb7a4efd58c6b774c
Validity
Not Before: Nov 4 17:00:29 2025 GMT
Not After : Nov 5 17:00:29 2025 GMT
Subject: CN=9b19d17bee091ec239b4589659808ab03c274c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:50:56:7f:7b:d3:1d:10:74:5e:e7:11:07:dc:
10:6e:a1:6d:58:1b:18:46:e4:a5:63:82:a5:90:a9:
7c:ea:fb:53:7f:e4:c4:81:e4:a3:a2:f0:9c:3e:ad:
4d:31:00:5c:56:ba:d8:58:58:ca:69:9e:ad:1b:bc:
b5:e7:8f:48:73:cf:90:14:a9:e8:4d:19:f4:b9:2a:
bf:97:33:4f:f6:d5:61:4d:f6:08:0f:0f:e3:6c:20:
11:cf:d0:8c:df:9d:26:a9:d7:85:20:db:79:13:23:
f0:f6:48:21:6d:10:1e:08:3a:2d:05:2e:a5:56:cd:
16:a6:5a:6f:c6:ca:f4:b5:43:7f:5d:bd:41:f5:91:
a4:13:f1:64:7e:09:f1:0a:ae:01:e1:4e:61:68:2c:
47:49:e9:5d:84:e3:33:d7:2f:f6:e4:c2:df:0d:c9:
c1:7a:0f:a9:f7:f9:f0:c8:87:18:15:9a:9e:32:61:
66:41:4b:23:fb:3b:c4:f1:c3:07:61:6d:6f:d9:7f:
dd:f1:3c:a0:b4:fb:52:cb:62:17:67:89:b6:c1:d3:
b4:b1:96:a8:76:75:db:88:d7:49:d6:ed:b5:5d:f0:
99:81:40:d0:aa:c7:dc:7f:90:d4:45:26:4c:20:13:
b6:ab:dc:6f:aa:e6:12:38:ab:c1:09:4d:13:b8:a7:
a5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:19:D1:7B:EE:09:1E:C2:39:B4:58:96:59:80:8A:B0:3C:27:4C:1C
X509v3 Authority Key Identifier:
keyid:AD:8F:54:38:07:3A:62:1A:EA:77:2F:5C:B7:A4:EF:D5:8C:6B:77:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:f4:62:b6:ac:7f:5f:e0:66:5c:7c:fa:f1:48:63:c7:08:74:
94:d4:cc:0e:69:49:e3:3b:41:c5:db:b8:1f:fa:25:03:c8:9a:
bf:5e:f2:da:ec:25:80:63:cc:a1:af:46:41:be:a1:57:6d:39:
88:1e:2b:90:a4:11:5b:89:a9:e2:9f:9f:94:3f:93:e7:5c:db:
2e:3f:76:25:2d:75:21:8f:05:b2:1e:77:32:97:f3:f8:b7:4c:
02:54:c1:cc:0f:b4:2e:46:78:41:57:36:e9:44:27:78:f2:b6:
46:b8:ab:50:3c:41:ff:0c:00:79:4c:4b:da:49:bf:84:c6:18:
07:a8:9c:6c:68:66:9b:e8:36:09:3f:e4:69:fb:ba:10:79:f4:
c6:9b:a3:3a:c7:2b:78:fe:e0:13:24:87:bb:21:38:3e:85:f9:
e2:59:10:d8:83:65:1b:02:d5:4e:ab:15:f8:1c:de:6b:57:87:
42:3b:89:ed:67:cf:24:c4:36:64:dd:0b:df:40:19:64:3a:cb:
60:d0:1f:23:f0:66:81:d3:98:08:40:38:d3:22:13:75:e1:5f:
6c:49:ba:1e:a0:99:43:63:6c:b7:ba:60:8f:11:5c:fa:94:97:
1a:e4:a5:8e:0f:2e:f0:5f:ee:b7:38:37:dc:74:fa:03:6d:28:
d4:59:35:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:21:29 2025 by rpki-client