Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
File: iay4iT6UGAdH7sGXXtVgTE3b4MU.mft (raw, json)
Hash identifier: xt0HLX86QZfpK2lYXOPwvgidD8Fb6daGFj838rBOFWc=
Subject key identifier: 48:FC:2E:02:15:F8:B8:5C:44:4B:F6:F7:D7:58:4F:8F:D1:D0:D6:A5
Authority key identifier: 89:AC:B8:89:3E:94:18:07:47:EE:C1:97:5E:D5:60:4C:4D:DB:E0:C5
Certificate issuer: /CN=89acb8893e94180747eec1975ed5604c4ddbe0c5
Certificate serial: 019A7225AB187CDE932978BD1C03B6543CBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
Manifest number: 171E
Signing time: Tue 11 Nov 2025 09:01:02 +0000
Manifest this update: Tue 11 Nov 2025 09:01:02 +0000
Manifest next update: Wed 12 Nov 2025 09:01:02 +0000
Files and hashes: 1: UoDvXAabOFEhN_Ur6iO6IlEoQNY.roa (hash: C2nYBT6rKIdGBRSYm5JfeMMp+MUUrWzb3x2zB3OMlgE=)
2: iay4iT6UGAdH7sGXXtVgTE3b4MU.crl (hash: 2N2rBEdAoHcaaEpQkeqMlIz8P63KOJT9uP8w0tNljK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:ab:18:7c:de:93:29:78:bd:1c:03:b6:54:3c:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89acb8893e94180747eec1975ed5604c4ddbe0c5
Validity
Not Before: Nov 11 09:01:02 2025 GMT
Not After : Nov 12 09:01:02 2025 GMT
Subject: CN=48fc2e0215f8b85c444bf6f7d7584f8fd1d0d6a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c4:43:4c:3b:d2:43:0e:d1:70:b1:b9:44:fc:
a6:6d:f1:8c:a2:c7:0d:ab:30:0b:4f:64:9b:9a:39:
5e:70:69:13:73:7a:7b:0d:cc:a5:3f:08:03:40:c4:
6a:1f:47:76:6b:e7:07:55:ad:76:aa:86:42:d0:d1:
2b:1e:f6:a8:65:8e:1c:36:cb:6f:ae:7f:c5:ba:ee:
be:5c:ee:d6:12:30:a3:c7:d3:eb:25:9a:87:6e:3d:
c6:f5:59:6f:e5:61:7a:a9:d0:40:f7:9f:98:24:c4:
02:61:8f:29:66:8a:68:de:54:b4:77:2a:46:60:85:
eb:d4:99:51:c7:a7:f5:19:3e:eb:21:3f:a6:a2:7f:
98:90:e2:5d:02:ce:c2:32:78:85:68:74:fd:73:82:
2f:35:66:15:53:c8:9d:5b:e5:86:6f:47:29:12:5f:
18:8c:0c:49:14:10:bc:e1:cf:07:de:3f:ca:06:83:
b9:34:48:69:99:c7:e0:fb:e5:07:52:f2:63:d0:f7:
a1:73:ea:35:df:06:f5:47:e2:19:a4:96:0b:7a:db:
8e:63:b9:36:31:b5:c2:51:63:e0:4d:39:af:67:a8:
19:19:d1:65:0e:e4:05:13:a9:ea:5f:1d:d5:0e:17:
4f:5c:b6:80:f1:78:56:36:9f:f9:44:3f:e3:79:ef:
0f:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:FC:2E:02:15:F8:B8:5C:44:4B:F6:F7:D7:58:4F:8F:D1:D0:D6:A5
X509v3 Authority Key Identifier:
keyid:89:AC:B8:89:3E:94:18:07:47:EE:C1:97:5E:D5:60:4C:4D:DB:E0:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:4e:e5:48:cd:ab:21:9b:a9:1a:da:02:47:ad:4c:bc:81:32:
ab:40:2f:69:21:2c:a4:f7:55:b4:84:fd:1d:2a:5e:9a:0b:4e:
10:11:05:b7:20:46:66:a3:0f:85:c7:ae:31:23:4d:5e:f2:de:
96:d4:30:8a:5a:a5:20:88:08:52:f6:02:97:cc:8a:9f:c8:2e:
34:89:56:82:99:de:ff:ee:23:62:ac:77:33:c3:7e:0b:ac:9c:
e3:72:99:8c:ec:39:02:ee:4f:28:94:35:68:99:d0:7a:a4:2e:
49:c5:2f:5d:34:f7:8d:2b:43:9b:49:af:34:35:cd:2d:16:67:
c2:1f:24:96:5d:0c:36:9f:86:ef:1b:07:0c:7c:8c:a9:28:aa:
4d:6f:e3:3f:a6:a4:2e:63:43:e3:9c:cf:c1:63:df:6f:72:c5:
81:0e:94:fb:a2:cc:e1:98:25:1d:86:40:34:45:12:a0:db:66:
2a:4d:4e:6b:bc:83:a3:84:00:c2:3b:38:e4:6d:ad:86:39:32:
21:1a:13:e1:3f:c4:98:41:c3:66:d5:2c:17:aa:c1:91:a0:03:
ed:3e:3f:a8:00:50:31:77:d2:04:d8:a3:39:b9:c8:9b:05:83:
72:af:7b:57:04:82:3f:18:ab:f5:3e:19:64:b4:35:3b:fd:a3:
8e:c0:c7:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:21 2025 by rpki-client