Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
File: Ty87yZp5UD4JdXR36O9kPhGIbIs.mft (raw, json)
Hash identifier: h9DnGYY2wiPYgB6wstQks+VUYLy/Z9Z7JQLXgGduehk=
Subject key identifier: 98:5C:4A:9C:9D:A3:E9:E9:0A:A9:BD:3B:11:ED:58:F6:AC:1B:0F:49
Authority key identifier: 4F:2F:3B:C9:9A:79:50:3E:09:75:74:77:E8:EF:64:3E:11:88:6C:8B
Certificate issuer: /CN=4f2f3bc99a79503e09757477e8ef643e11886c8b
Certificate serial: 019A4EF525B04B8543B0829F07336280AA1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
Manifest number: 15BE
Signing time: Tue 04 Nov 2025 13:01:20 +0000
Manifest this update: Tue 04 Nov 2025 13:01:20 +0000
Manifest next update: Wed 05 Nov 2025 13:01:20 +0000
Files and hashes: 1: DmY4OlpSGtRwQGNkVI6pwwKmQOM.roa (hash: QsmPHxvFnUbBb8Hdz5mPLnRJfO8cxjGYjuC9mmKC/hY=)
2: Ty87yZp5UD4JdXR36O9kPhGIbIs.crl (hash: fLNzr0LokEaDYwT6uxCsk64HokJJezev0ZnCnJYwFjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:25:b0:4b:85:43:b0:82:9f:07:33:62:80:aa:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f2f3bc99a79503e09757477e8ef643e11886c8b
Validity
Not Before: Nov 4 13:01:20 2025 GMT
Not After : Nov 5 13:01:20 2025 GMT
Subject: CN=985c4a9c9da3e9e90aa9bd3b11ed58f6ac1b0f49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b8:ba:4a:ff:c8:b7:5b:a9:4a:c6:ce:4d:84:
ad:4b:38:2c:58:5c:02:0a:41:05:87:5a:9a:7e:28:
28:c0:78:82:24:a3:9f:2a:bb:60:45:f9:1a:b0:3d:
5d:f0:c3:c0:15:d7:a8:f6:c4:e2:fa:33:13:2c:83:
45:38:aa:64:3f:df:3b:38:64:07:76:b6:33:1e:5b:
a0:07:a1:ae:c9:3f:2f:b0:43:83:7f:91:f7:d9:7e:
01:1a:73:b1:69:f4:99:8a:ea:a5:e0:69:42:81:4f:
36:fa:e9:10:7e:43:47:3e:0c:b1:b1:3a:23:e7:4e:
96:68:ec:3c:9e:78:75:fc:cb:29:10:a9:25:f0:28:
a1:fc:aa:3d:33:cb:2b:23:0e:bc:56:74:02:20:8a:
82:ae:04:91:fb:e6:99:61:18:a4:d0:8b:0e:76:5b:
5b:45:db:fa:c9:ae:5e:ff:2b:a5:ca:b5:af:ff:9f:
d7:37:21:6b:a2:46:fb:25:15:10:db:0a:05:1a:5c:
e9:f9:b5:c3:ce:2a:6a:1b:ab:9d:01:8d:18:e5:f1:
5c:e2:37:44:b8:f6:5b:58:b5:dd:8c:4e:e8:dd:e2:
46:b3:8a:f4:7b:24:3b:69:d9:2f:21:c4:d3:f7:44:
58:c1:3c:ab:16:6e:b2:a4:f2:b7:ae:f3:aa:a1:36:
07:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5C:4A:9C:9D:A3:E9:E9:0A:A9:BD:3B:11:ED:58:F6:AC:1B:0F:49
X509v3 Authority Key Identifier:
keyid:4F:2F:3B:C9:9A:79:50:3E:09:75:74:77:E8:EF:64:3E:11:88:6C:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:c9:15:2e:d4:90:96:8a:c9:64:3b:6b:dc:be:c4:c9:11:67:
0e:1c:79:8e:30:98:8d:05:65:bf:12:9e:32:cf:de:9b:1f:05:
b4:45:bd:3b:18:2c:cf:1f:74:7b:94:09:f8:53:a8:8a:ef:39:
76:50:b7:60:6b:bb:25:b8:9e:c1:7e:09:93:ee:de:75:e3:93:
97:91:99:2e:94:27:75:11:61:a5:8d:14:1a:b7:f8:5e:2b:23:
9b:bf:53:9c:92:a9:28:f7:63:b2:93:0f:ae:99:fd:d2:f3:8f:
38:06:bc:97:c0:1f:b2:9f:52:b0:07:78:d0:81:76:01:86:74:
1d:46:d0:7c:f6:c3:0d:9d:7b:8f:49:4a:0b:2c:d0:8a:5a:70:
37:51:9f:f2:8e:32:5d:0c:63:c2:5d:eb:d1:2d:17:55:f0:32:
dd:cf:aa:a0:b6:6c:47:52:09:4f:b5:2e:b2:b6:a1:59:78:54:
92:1f:a3:f0:d2:e2:21:c0:13:3c:d8:96:25:d5:b1:5b:a8:de:
94:cd:d3:00:ee:e6:d3:ff:b8:23:e0:0b:9c:c2:17:09:88:12:
35:d4:9a:cc:fc:09:cf:44:cf:ac:26:e6:bb:7f:b2:57:58:b1:
a2:81:74:36:97:cd:e5:8d:a1:e5:4d:28:80:ce:14:f7:4d:36:
d7:47:df:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:15:56 2025 by rpki-client