Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
File: rysOIXo1FoOSIGvac85hlTWgLzU.mft (raw, json)
Hash identifier: qCR7fCQtiGYRDu8LWq25iv50ZpWA4pJKkwB4OnN+y2c=
Subject key identifier: CB:45:CF:3E:D9:3F:A8:6C:35:5F:0A:0A:5E:6A:72:0F:3A:21:D3:8E
Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35
Certificate serial: 019A522CB717CFBD4EF6BAACC746F0F610E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
Manifest number: 0BB6
Signing time: Wed 05 Nov 2025 04:00:53 +0000
Manifest this update: Wed 05 Nov 2025 04:00:53 +0000
Manifest next update: Thu 06 Nov 2025 04:00:53 +0000
Files and hashes: 1: rysOIXo1FoOSIGvac85hlTWgLzU.crl (hash: P4EDq9F1h4akdBjjUUFJTkdKmB2KMD+stIaPia9jxfs=)
2: tKwKl17jXwIeAtAZEyALLLwTexA.roa (hash: E9CmZ9NzF2HrbXjpDzFF0Gs0klh/PHaYx1PKsYvWrwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:2c:b7:17:cf:bd:4e:f6:ba:ac:c7:46:f0:f6:10:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35
Validity
Not Before: Nov 5 04:00:53 2025 GMT
Not After : Nov 6 04:00:53 2025 GMT
Subject: CN=cb45cf3ed93fa86c355f0a0a5e6a720f3a21d38e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d4:a6:c5:06:0d:c0:c3:3c:af:63:5d:c4:5e:
fb:7e:af:c6:cd:1f:17:ad:97:0d:b6:5b:b8:ec:64:
fe:08:42:cc:1c:c9:b2:09:d4:dd:fc:ef:0c:cb:46:
fc:71:38:1b:c2:88:a0:86:83:8a:24:5b:24:1b:19:
26:9c:34:c7:81:9e:79:6d:d8:2b:77:e4:72:4c:45:
48:88:39:12:73:cf:a7:f5:aa:13:d1:f5:ee:07:59:
6c:36:df:e1:87:64:19:6b:6d:32:3d:d4:cb:3e:7b:
0c:1b:47:54:d1:8a:16:98:4e:74:35:7f:1c:4e:13:
b4:52:ee:55:e8:b9:7d:46:9c:5a:a2:01:1e:f3:1c:
19:52:c3:bb:3c:f7:7d:f1:45:5d:35:81:56:0d:7a:
e5:25:2d:16:7c:46:76:78:d4:d1:34:fc:bf:ba:83:
5d:3a:cb:d4:7a:23:33:46:05:3d:b3:ae:2e:64:51:
8e:8e:98:46:c2:42:38:2a:f3:28:ce:de:dc:0f:b1:
e0:b2:83:4a:86:e5:b5:6d:d9:37:66:47:e6:11:c8:
ad:9a:5c:4f:ab:0f:6c:9e:73:1c:97:81:bd:55:83:
0d:dc:f5:45:db:c7:26:10:51:29:61:d7:79:7a:be:
7f:f5:00:7c:8f:c3:11:48:d7:6b:56:60:1e:82:a1:
ba:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:45:CF:3E:D9:3F:A8:6C:35:5F:0A:0A:5E:6A:72:0F:3A:21:D3:8E
X509v3 Authority Key Identifier:
keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:43:2d:7c:84:b4:ef:ad:0f:c5:f0:e3:d8:85:48:ab:25:06:
07:71:1b:4e:61:4b:81:51:5f:e4:64:85:48:89:e6:37:20:ad:
bb:50:7f:24:e7:1a:3a:84:b2:90:c5:86:dd:3a:b4:68:73:9f:
79:0c:36:c4:1e:fa:10:ed:77:ce:f1:5e:e6:85:d4:4d:bf:73:
69:87:88:22:30:dd:3d:77:94:5f:59:17:13:09:95:f6:f4:a6:
f1:97:62:54:a2:d3:f0:a0:e9:e9:42:d8:c0:17:30:a1:04:6a:
bd:7c:06:29:08:f4:6d:b2:c5:d6:59:c1:0a:63:21:1f:68:b1:
d6:45:d6:0f:50:d1:c2:36:f8:ff:5c:9b:45:17:bd:a8:d6:ac:
5b:2a:f7:60:63:f4:e3:80:97:4c:08:29:3f:08:cb:ff:fd:9a:
73:8f:c6:fb:9a:60:7c:98:c2:64:83:bc:8d:3b:de:bf:c0:a5:
2c:b8:f4:8c:12:15:4b:a6:e7:31:04:b3:31:1c:28:3c:17:93:
a4:64:1a:d2:ec:b2:77:95:19:84:67:59:48:98:44:5f:3d:60:
92:ff:87:2d:77:7f:ba:c7:9d:40:23:e0:4d:00:cd:df:f7:43:
65:2c:61:97:91:b4:56:d9:7d:f0:8d:18:b3:be:3f:f1:13:ea:
48:6e:43:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:48:44 2025 by rpki-client