Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
File: 0YZHAF-osG5H7i77_e3Jegx3Vfg.mft (raw, json)
Hash identifier: CgQsDHkzszS84oyoA/Babn5R1lf1EVeBDiVnysdyl8M=
Subject key identifier: 4A:10:56:96:D0:C0:86:47:C1:E2:B1:96:2A:CA:1F:6A:41:01:2A:1B
Authority key identifier: D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
Certificate issuer: /CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Certificate serial: 019A4EF5F343B2BECD4D220207BD7A775DAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 13:02:12 +0000
Manifest this update: Tue 04 Nov 2025 13:02:12 +0000
Manifest next update: Wed 05 Nov 2025 13:02:12 +0000
Files and hashes: 1: 0YZHAF-osG5H7i77_e3Jegx3Vfg.crl (hash: kDZjvBzC/Gs17xr5emI51zXL9NnsaVQP0C/5kZGeJ/0=)
2: ZyIu060SPaMWxMQNL4CIeyP46Zk.roa (hash: GVU/SWZQhKij7yAFfd4z7w9wi6LHgd9IcJaXLlSPbVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:f3:43:b2:be:cd:4d:22:02:07:bd:7a:77:5d:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Validity
Not Before: Nov 4 13:02:12 2025 GMT
Not After : Nov 5 13:02:12 2025 GMT
Subject: CN=4a105696d0c08647c1e2b1962aca1f6a41012a1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:25:19:0b:1a:7f:76:be:b5:65:12:13:e6:b9:
fd:ba:4b:8e:cf:eb:f9:cb:b1:8a:a7:0c:b8:4e:34:
74:30:60:85:fe:48:2e:5c:c5:d8:19:80:6f:48:ca:
30:28:d3:2d:90:1a:3a:6c:a9:3e:fe:c7:22:91:6b:
39:d8:6f:cb:db:65:57:d8:de:f3:33:06:11:f1:31:
50:e4:09:50:85:72:9d:2b:e2:95:be:66:2a:6b:be:
72:1c:59:98:42:6f:81:44:cd:99:e2:cd:79:d3:b9:
82:c1:d0:c5:20:eb:a6:01:d1:88:c3:fb:af:10:8d:
df:4f:39:82:24:07:f2:11:aa:89:20:57:df:ea:4f:
ff:03:c1:34:4b:9c:58:ab:f5:a4:ca:a8:5b:68:ad:
bb:c2:3f:b6:1e:4d:24:d5:79:08:72:ed:31:25:11:
53:8e:c7:ec:52:fe:f0:ae:50:8e:80:f3:63:e1:65:
01:f4:d6:5d:0e:12:7e:5f:71:11:a2:5c:88:07:55:
5f:2a:b6:69:ef:95:47:6e:68:a3:9e:4c:c9:d3:97:
50:03:c5:dd:40:4d:e7:87:f2:4f:c3:35:09:b0:6e:
db:fe:8b:f0:14:55:27:17:dc:fc:e2:42:73:03:1e:
f5:52:2b:35:9d:b7:e5:4e:4b:8a:d7:89:43:43:fa:
55:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:10:56:96:D0:C0:86:47:C1:E2:B1:96:2A:CA:1F:6A:41:01:2A:1B
X509v3 Authority Key Identifier:
keyid:D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:44:31:ac:bf:7f:39:79:4d:97:b5:4a:bc:44:77:1a:a6:f9:
b7:66:71:67:ce:bc:63:a3:b7:e7:16:5a:1b:22:1c:11:d5:86:
db:be:d4:19:e9:ba:03:d8:ed:48:c6:6e:ef:7d:fe:76:42:75:
fb:6d:cf:19:e3:73:96:5d:92:29:ed:fc:b7:48:89:79:84:00:
c4:b7:16:c3:b0:b0:22:91:61:02:22:d1:5e:24:04:58:cb:26:
cd:6b:4e:30:92:ba:94:f5:bb:ee:56:10:57:0b:f7:74:81:a1:
93:b4:60:af:5a:ac:45:ea:4c:d4:9a:ed:ee:ed:4c:89:0d:2c:
bf:50:7a:17:2d:71:ca:54:b7:cc:ad:f2:55:e1:b9:37:b4:b7:
7b:2d:1c:1a:0e:4d:ec:39:29:c5:27:12:f6:bc:e2:0a:63:6a:
9f:07:83:50:d3:cc:77:ca:95:14:48:7e:4d:e1:29:6d:aa:f0:
b0:e4:0b:cc:03:9b:49:96:f0:83:35:bb:9c:2e:ed:9e:26:f9:
3b:34:af:8d:5d:20:6f:25:3f:86:3b:46:80:c1:d0:75:48:62:
96:e4:0b:79:f2:f3:25:b6:00:3e:3d:75:8c:55:25:3e:5f:10:
ed:0b:5b:ed:9b:92:7d:00:c3:a1:0b:e0:4b:76:22:01:97:37:
08:f2:f2:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:08:46 2025 by rpki-client