Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
File: t1ELZRv73wnISGqBNiAABb77SX0.mft (raw, json)
Hash identifier: 3imLriOezQCPr7ak6w15WfTxBHPldsSb70fN13zTmp0=
Subject key identifier: C1:95:87:ED:A8:88:D1:D4:7F:C7:64:67:86:0B:B9:C3:49:98:D0:17
Authority key identifier: B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D
Certificate issuer: /CN=b7510b651bfbdf09c8486a8136200005befb497d
Certificate serial: 019A503DBDA6B7B03AD3574818567AEC3830
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
Manifest number: 0D8D
Signing time: Tue 04 Nov 2025 19:00:14 +0000
Manifest this update: Tue 04 Nov 2025 19:00:14 +0000
Manifest next update: Wed 05 Nov 2025 19:00:14 +0000
Files and hashes: 1: Jiow1t-Pk1ZOtI6Aqeh1RaSW3p4.roa (hash: DYR6jlP51Fl43ZL0B6qnJrGHJROyqbTA9KSRORts0Uo=)
2: t1ELZRv73wnISGqBNiAABb77SX0.crl (hash: MWgc4SyZD/iIKagNgaR8UVJ5drRTFdXHt3JQxQRgl1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3d:bd:a6:b7:b0:3a:d3:57:48:18:56:7a:ec:38:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7510b651bfbdf09c8486a8136200005befb497d
Validity
Not Before: Nov 4 19:00:14 2025 GMT
Not After : Nov 5 19:00:14 2025 GMT
Subject: CN=c19587eda888d1d47fc76467860bb9c34998d017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:22:ef:56:cf:40:c2:bf:e1:ab:71:a7:fd:b2:
46:da:c0:24:34:c4:4d:60:f2:49:54:e0:3d:c3:55:
07:92:01:45:b3:05:31:1f:9b:33:d7:b1:eb:a6:1c:
f5:56:8c:1d:23:9f:69:e7:54:ab:dd:45:da:1e:87:
c5:67:cc:92:9e:b1:a3:e9:1c:ea:4d:df:0f:be:c2:
3e:36:3f:d9:1b:37:ef:25:ff:07:47:de:c7:f5:b2:
f2:44:df:c3:4f:69:03:8b:3c:34:0a:d7:4f:60:38:
4a:a4:23:5c:8e:e4:ba:56:bc:3a:ce:5f:e8:15:2a:
e5:28:dc:b9:01:bd:f3:af:39:b1:b7:c8:de:fa:ac:
84:18:1c:5a:8a:c7:3b:f9:05:e0:e8:2f:ad:c7:78:
2c:9f:c3:45:8a:84:88:47:46:17:82:13:80:1d:79:
07:35:99:6f:eb:54:e2:e7:32:cc:2f:88:aa:c0:70:
f9:d9:e8:e7:eb:42:11:85:f1:2b:27:97:a1:e0:57:
e8:77:1a:41:05:25:a8:f2:ad:e4:09:8e:59:26:9e:
4a:48:82:8d:a8:01:a7:5e:b5:1c:e0:8c:61:17:f8:
a8:28:99:d8:f7:86:23:e1:fc:1b:8f:91:a4:65:d1:
a7:e6:e0:9d:97:a0:bf:2e:ce:53:a8:4f:c2:db:6b:
8f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:95:87:ED:A8:88:D1:D4:7F:C7:64:67:86:0B:B9:C3:49:98:D0:17
X509v3 Authority Key Identifier:
keyid:B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:a0:ab:72:24:c5:14:b7:a1:9e:20:71:ed:45:07:c5:72:38:
67:d0:c5:21:87:6e:af:e0:a6:4c:1f:e6:b4:ac:02:00:cc:4c:
5c:12:19:b3:cb:10:e8:1c:c6:2b:70:1d:49:f7:d7:bf:40:fb:
9e:38:3b:95:60:ad:bc:34:cf:9a:3f:ea:e1:ec:e9:9d:b4:26:
fd:36:22:6e:96:05:28:9d:a9:bc:8a:91:b9:56:76:a2:d7:f0:
1b:58:35:85:62:1d:cf:e9:e7:0d:50:80:72:67:b4:80:99:71:
74:b3:6d:a2:ca:53:b2:e4:8c:86:ec:1d:0e:3d:05:54:a8:dd:
40:b0:de:8a:36:dc:3c:3c:2d:15:cb:6e:91:f7:ab:d6:d2:c2:
78:2f:e2:c3:b4:44:1b:00:9b:e7:a2:a7:1e:66:e7:d9:cd:0c:
e2:3e:df:78:1e:85:80:3a:65:85:c8:46:2e:96:44:91:1a:3c:
b3:a6:02:86:1c:47:3a:d0:68:0b:5b:4d:55:7c:ef:0d:c1:48:
3f:7e:cc:e7:ee:2d:3e:62:8d:cb:ed:76:33:9d:c9:b3:7f:32:
6b:2b:33:b9:0d:e1:58:78:67:25:f2:4e:f8:13:09:fb:09:1f:
22:1b:6d:95:6a:26:fe:a8:c2:20:de:1b:17:cd:9e:6c:c5:d8:
1e:24:2d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 01:30:17 2025 by rpki-client