Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
File: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft (raw, json)
Hash identifier: C+LgRdFY5kukLZgpY1VzeAQwXYF6I8dZ56JutEO0AnU=
Subject key identifier: 56:52:92:3A:23:BB:40:FF:EA:D0:4F:96:83:D2:5A:42:8D:34:09:EC
Authority key identifier: F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
Certificate issuer: /CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Certificate serial: 019A714A281638202E9FE715ACB1F3E22704
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
Manifest number: 0385
Signing time: Tue 11 Nov 2025 05:01:16 +0000
Manifest this update: Tue 11 Nov 2025 05:01:16 +0000
Manifest next update: Wed 12 Nov 2025 05:01:16 +0000
Files and hashes: 1: 1-PJ8uFT3vIGcdh8Ryvstj5V11gs.roa (hash: flh68N5wBml9poaLXGZmGeNQ/HSV3CHvsWwwddNW1dc=)
2: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl (hash: D3/5BbWVAwiAw34Rdm1f/OuXZA0kr/AVZYazeUUwik8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:28:16:38:20:2e:9f:e7:15:ac:b1:f3:e2:27:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Validity
Not Before: Nov 11 05:01:16 2025 GMT
Not After : Nov 12 05:01:16 2025 GMT
Subject: CN=5652923a23bb40ffead04f9683d25a428d3409ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d0:bb:b2:26:77:71:f6:63:5f:93:92:d5:b2:
eb:b0:a3:4c:d5:06:3d:25:ed:f5:3d:72:44:f6:2a:
85:b4:4d:4e:ce:92:d8:c6:ff:a7:40:47:72:5f:6f:
e1:19:b8:42:34:e7:d1:d1:6d:b8:ec:50:da:30:da:
3d:d1:63:13:b7:9b:a1:82:cd:0b:19:6f:23:a8:9a:
87:f5:1a:0e:3e:c7:6c:1e:2c:11:81:31:22:83:d1:
9e:44:cb:86:56:f2:71:13:83:d5:a3:7b:f5:ad:cf:
c8:0c:2a:47:3b:f9:e8:ba:d0:c6:40:5f:8d:09:e6:
37:c4:b9:54:a2:5e:cd:4e:52:d2:62:1e:78:e3:6e:
45:61:46:b8:10:55:41:e8:ff:6e:17:ae:43:c8:f0:
c1:65:8d:4e:ba:e6:ce:8a:b6:98:0d:43:d5:97:f6:
e8:2b:ae:83:e7:08:fd:5d:9b:3f:e3:8a:32:88:50:
e6:1e:f4:d9:04:15:31:c4:7c:40:cf:89:02:dd:ef:
61:ed:71:63:8c:b4:87:55:91:7f:1d:c8:b6:f4:3a:
d9:ad:8e:0a:96:40:61:4d:77:57:5e:80:bb:fb:82:
44:0a:bc:a8:c1:15:d5:b2:b1:a5:76:b8:9d:39:00:
93:1f:eb:cd:21:87:dd:de:44:8d:c1:a1:40:40:ef:
5b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:52:92:3A:23:BB:40:FF:EA:D0:4F:96:83:D2:5A:42:8D:34:09:EC
X509v3 Authority Key Identifier:
keyid:F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:92:5b:24:b2:91:cc:cb:e1:d0:db:04:cc:e5:20:03:53:67:
32:1a:6b:f7:82:39:0b:96:1f:e8:e5:e7:64:15:27:5c:8c:47:
41:18:87:a9:20:23:13:ec:51:99:2d:a7:ad:55:17:56:37:42:
56:d9:60:ad:36:91:c9:16:a9:72:c6:1f:66:e9:10:c8:8c:00:
78:46:bd:d7:6c:17:7d:d9:85:27:54:df:5a:39:01:53:84:89:
28:0e:4a:ec:1b:8f:a6:3a:93:07:e9:9f:a4:8c:fb:9a:a2:81:
16:b1:61:f5:21:36:68:57:cf:aa:f0:62:bf:f6:1d:76:83:93:
4d:15:2c:1f:91:49:34:7e:6f:da:3a:05:c7:85:20:fd:eb:f9:
84:ac:fa:eb:9d:c3:48:aa:9c:07:fa:fc:47:04:27:80:3b:fe:
20:63:a5:0b:dd:c1:51:53:21:1e:8d:4d:a3:c1:62:0a:b0:11:
e2:8c:46:84:22:31:ea:d3:28:41:40:3b:7a:6b:66:94:a5:38:
33:c7:37:8a:b9:d0:47:d7:47:4b:03:28:f9:0f:c5:16:e6:0f:
9a:04:bc:a5:e6:20:50:50:02:bc:16:c6:13:42:1d:51:00:b6:
82:41:ee:a8:b7:7d:f1:f2:7b:8c:cc:c5:14:b0:da:23:c6:47:
47:d2:02:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:15:23 2025 by rpki-client