Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
File: pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft (raw, json)
Hash identifier: VjR8VRNbq30eyTAep8lJDcfiq3V8CBi0UMnYAH+pLAM=
Subject key identifier: C0:11:6F:77:F2:2A:3F:14:DA:F2:5A:FF:46:57:E6:41:EB:DD:45:FD
Authority key identifier: A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA
Certificate issuer: /CN=a585e5e15aa34287cae4368cb58e7227fd87ecba
Certificate serial: 019A4EF526C095913EC27EC915E264E5CD67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
Manifest number: 170C
Signing time: Tue 04 Nov 2025 13:01:20 +0000
Manifest this update: Tue 04 Nov 2025 13:01:20 +0000
Manifest next update: Wed 05 Nov 2025 13:01:20 +0000
Files and hashes: 1: BfRloUJHji-lEUaufwMc19LxiqE.roa (hash: 94Vq30eYX4ShhMgHZx9s+4a5DKBY3zN9CTPT6BVaH44=)
2: pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl (hash: HWGSqiKL8eFXtSIZveq4GzNoDrTXX37pNeastAN3/FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:26:c0:95:91:3e:c2:7e:c9:15:e2:64:e5:cd:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a585e5e15aa34287cae4368cb58e7227fd87ecba
Validity
Not Before: Nov 4 13:01:20 2025 GMT
Not After : Nov 5 13:01:20 2025 GMT
Subject: CN=c0116f77f22a3f14daf25aff4657e641ebdd45fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:59:4e:53:b1:bd:b0:99:fe:44:14:4a:9f:6d:
9e:90:1a:44:e2:af:dd:b3:64:7f:26:77:61:5f:00:
9d:6e:72:ab:36:41:a2:3d:d4:f5:94:0f:0e:96:61:
d5:1f:34:09:2c:3c:fb:22:93:2c:a0:03:cd:5b:86:
15:00:23:96:dc:eb:78:e7:0d:6f:4e:04:1f:45:dd:
2a:a4:9e:80:52:3b:60:e3:d7:8a:21:fb:c6:b8:18:
c1:6d:93:76:d0:fa:5e:73:39:41:c1:ad:fb:f7:09:
16:13:db:e6:d2:e4:67:97:ed:07:c9:88:8c:18:99:
49:56:0f:18:f7:e7:37:66:04:d4:9a:ca:5a:e5:be:
5e:f3:c0:ba:33:f5:f1:f1:d2:c0:39:9d:cc:36:7c:
99:d2:94:ba:d5:18:28:23:c7:9d:96:6e:91:c5:e5:
da:59:8f:82:02:e4:8a:61:bc:81:67:6f:eb:4c:65:
6c:36:14:67:63:75:f9:ac:47:3e:9b:6c:40:45:70:
c0:9d:01:dd:b9:02:ea:b5:51:1b:17:5c:1a:79:63:
f0:d9:fe:c0:1a:8a:1c:de:c2:5b:5b:80:7f:eb:24:
bd:cd:12:e0:ff:02:67:77:2a:0e:21:09:20:ff:dc:
37:6e:8b:c8:8f:d0:f4:04:24:21:88:ef:b0:f4:50:
39:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:11:6F:77:F2:2A:3F:14:DA:F2:5A:FF:46:57:E6:41:EB:DD:45:FD
X509v3 Authority Key Identifier:
keyid:A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:ff:4e:2a:0d:6d:1c:d9:22:84:bf:58:d3:e6:a8:0c:07:f0:
57:c5:ef:74:f9:ea:4f:09:6f:db:38:3f:9f:11:0a:ac:45:41:
ff:81:89:49:42:b0:60:fe:b1:7c:78:6d:d0:d7:2c:03:ed:a1:
f3:cd:21:65:b9:f1:8e:4e:9c:cb:cf:f7:74:b5:c0:29:59:c9:
35:14:28:db:30:f0:ef:56:96:b2:59:4a:13:43:f5:e1:10:06:
2e:10:d6:44:01:4b:3a:3f:44:f9:21:8e:3d:8b:ae:ef:5b:20:
6b:72:f1:17:86:49:ae:8b:5a:2d:2e:3e:20:4a:a6:a5:49:11:
0e:c1:44:31:b8:db:cf:6e:33:71:05:fa:e1:f7:67:fd:d9:f9:
88:17:e5:f8:b5:69:59:f8:5d:39:38:33:f2:05:ab:52:95:e8:
1d:28:7a:0f:39:2d:0b:a9:b7:29:08:71:f6:b6:19:22:0a:53:
43:ce:43:1f:81:72:f9:34:a0:07:47:39:33:b5:9c:95:df:e0:
50:40:92:01:06:d5:6b:1b:95:c9:80:ca:43:b3:9f:6b:c0:ab:
60:d1:cc:c6:ae:1b:09:04:ff:7f:60:d6:31:45:5a:41:37:6e:
33:f4:6d:9a:a6:04:5d:2a:25:0a:1e:26:a3:7f:b1:68:0a:7a:
6c:9f:cd:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:54:44 2025 by rpki-client