Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
File: AYZ9mLBSF68a-spyJrvWEzcHSfA.mft (raw, json)
Hash identifier: IcQURELtYi7hquvP7PDm/1LpKwkfnM4F0d13feWbvt4=
Subject key identifier: 5C:8C:08:E4:4A:A0:5A:EC:6F:88:B8:66:7C:01:3F:9C:86:16:9C:A4
Authority key identifier: 01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
Certificate issuer: /CN=01867d98b05217af1afaca7226bbd613370749f0
Certificate serial: 019A52D11B8220C12EC918A19395CB16A9F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
Manifest number: 03F5
Signing time: Wed 05 Nov 2025 07:00:27 +0000
Manifest this update: Wed 05 Nov 2025 07:00:27 +0000
Manifest next update: Thu 06 Nov 2025 07:00:27 +0000
Files and hashes: 1: 1ENw1gcCvt1Pmax0p8zhB7SKAEg.roa (hash: 1qhYf9E0Pe4/V/O+LSKzrT8cldjvFnxKyFJ5/QtS500=)
2: AYZ9mLBSF68a-spyJrvWEzcHSfA.crl (hash: 8wSt7z0cdisGkM7fB98gA3pkOM55waX71VRlzGWtB5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d1:1b:82:20:c1:2e:c9:18:a1:93:95:cb:16:a9:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01867d98b05217af1afaca7226bbd613370749f0
Validity
Not Before: Nov 5 07:00:27 2025 GMT
Not After : Nov 6 07:00:27 2025 GMT
Subject: CN=5c8c08e44aa05aec6f88b8667c013f9c86169ca4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:93:5c:c6:9d:29:ac:cd:1b:85:eb:fa:33:d7:
32:c4:fd:f3:7c:5a:67:e3:15:6b:f1:06:5b:f9:ca:
8e:ef:be:06:5a:88:a8:89:f7:8a:94:96:37:2f:db:
43:fe:2e:e9:5e:9d:97:bc:dd:39:22:0f:d7:f6:2a:
e5:a4:1d:6c:c6:03:81:21:4d:78:c3:db:05:aa:61:
53:3b:50:bd:53:c3:d7:df:e9:e9:c8:60:c0:35:3e:
b1:19:88:48:1d:11:1f:fd:84:e7:30:7d:36:a8:35:
71:ef:f7:ec:0c:32:49:e7:21:50:75:03:e7:7a:af:
a8:97:da:3f:47:04:fb:61:14:ec:06:f3:83:b7:1e:
e5:0d:67:bf:97:95:20:9c:58:e2:a4:ad:d0:ea:20:
6d:a6:8d:8b:97:05:04:37:11:c9:8c:8d:1b:6a:5b:
eb:90:a5:d1:8e:1f:c1:33:68:84:55:7d:97:1e:d7:
ca:06:82:08:5a:40:c0:cd:ec:17:4c:18:25:09:8c:
3f:29:07:c8:20:25:43:77:d9:a8:38:84:d5:89:d9:
5c:35:62:a4:c5:3a:21:b4:e1:87:c1:8e:15:62:8d:
56:64:70:d1:fb:f1:ef:63:90:b3:79:46:ad:dd:47:
18:ff:0b:c0:e7:75:5a:83:12:d3:18:10:7a:6a:c6:
94:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:8C:08:E4:4A:A0:5A:EC:6F:88:B8:66:7C:01:3F:9C:86:16:9C:A4
X509v3 Authority Key Identifier:
keyid:01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:19:82:24:03:36:d7:da:8a:fa:59:68:cf:2b:34:0e:3a:e5:
d6:47:bb:dd:10:1f:c5:8e:3e:af:de:6c:2d:9a:66:0f:bf:99:
08:d5:4d:38:9c:4f:37:86:f4:0d:e3:d2:c6:87:80:b7:c0:ae:
f9:ee:9c:3d:34:91:3f:4f:42:f5:98:36:db:0d:4e:f3:3d:36:
94:a5:22:ef:ec:bd:69:0d:6e:15:8f:1a:74:68:66:66:f5:e3:
d4:6a:7f:c7:d6:2f:f3:46:5a:cf:55:09:4c:0d:ef:d2:c6:a8:
ff:c1:b4:85:c7:8d:4c:0e:ac:5d:0d:2a:86:5c:66:70:86:be:
08:db:6f:80:64:fa:b5:eb:50:4f:88:ff:7a:d5:af:75:5a:4a:
5c:a4:24:c6:ba:cf:85:1b:2c:f3:8d:81:83:c5:f5:aa:4a:17:
e7:83:0b:b5:8e:7a:ca:19:f2:40:4e:ea:f7:5b:5d:f3:ff:c6:
0a:3a:48:96:b5:9a:41:6b:26:48:66:cd:d0:e7:45:3a:8e:ef:
65:fd:f3:f3:a7:3a:03:48:42:4c:6e:29:a4:db:36:31:ba:d3:
b5:44:43:49:61:60:96:66:d0:02:03:74:7a:84:43:ee:76:71:
f1:ab:02:b5:97:a7:89:f0:42:f3:88:22:ce:55:9a:e7:09:1b:
b3:d3:2c:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:38:24 2025 by rpki-client