Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
File: tYUi2sa83oxIEzNZkTKhYgDmpb4.mft (raw, json)
Hash identifier: T9yx3dYaJp0cfZTIwGg9+q+puvGd7IvquPIl+/ga4ZE=
Subject key identifier: E6:7B:7E:58:9A:DD:61:10:B9:88:FA:43:F9:75:34:7D:81:DF:B9:25
Authority key identifier: B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
Certificate issuer: /CN=b58522dac6bcde8c481333599132a16200e6a5be
Certificate serial: 019A718085EACD1F1C0AC35AA64F7C257F85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
Manifest number: 0A79
Signing time: Tue 11 Nov 2025 06:00:39 +0000
Manifest this update: Tue 11 Nov 2025 06:00:39 +0000
Manifest next update: Wed 12 Nov 2025 06:00:39 +0000
Files and hashes: 1: 5moGvKAoN95-3rdirRXOwCahhvs.roa (hash: SkhAzMm5Jb5vcIiM14h4SYz3DQTRyqaR2eF+qq4Rdl0=)
2: RuuQV8FVAOprAh_8jcQjyKszeBc.roa (hash: kX89cdA0JPKtfSqgIarOumMCZ1cTxgD0uR8aSG1ObUs=)
3: tYUi2sa83oxIEzNZkTKhYgDmpb4.crl (hash: hRoJVNqV4g6m7N/5NLdCklXN8S9WFh8LwQ5iTgy7KYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 06:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:80:85:ea:cd:1f:1c:0a:c3:5a:a6:4f:7c:25:7f:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b58522dac6bcde8c481333599132a16200e6a5be
Validity
Not Before: Nov 11 06:00:39 2025 GMT
Not After : Nov 12 06:00:39 2025 GMT
Subject: CN=e67b7e589add6110b988fa43f975347d81dfb925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:13:16:16:8e:39:f4:f3:0a:87:4b:9c:af:c9:
5f:77:ec:6a:10:98:d9:51:35:82:58:c6:09:92:fe:
f2:9a:26:b7:d6:fd:28:6e:54:24:39:a0:b6:4f:14:
e1:fe:36:11:74:d1:b3:ad:3b:56:a0:f4:1d:64:f7:
97:23:7f:7c:34:85:56:72:0d:8f:78:b9:6e:3e:15:
d6:30:d6:84:81:87:b5:b7:35:76:cb:91:f3:8f:ec:
cc:8a:6d:4b:8a:9e:a7:04:d5:9e:03:72:97:93:8a:
45:3e:9f:a8:2b:99:36:ae:35:d9:71:17:97:b0:33:
bf:6f:77:41:50:fc:56:3a:08:90:f1:d0:fe:eb:56:
f4:b7:46:f9:82:6d:1c:20:8b:f8:2f:c1:61:37:73:
e5:ba:ad:41:ee:26:a0:d0:fb:d1:55:68:fc:14:d4:
bb:79:e8:53:04:6a:d0:c0:57:09:cb:ac:db:2a:6e:
73:e1:b2:f8:1a:c3:8d:c2:ac:c0:c7:7b:68:90:f9:
3f:ec:e1:f7:ef:08:95:ba:84:68:20:7a:88:3a:22:
b6:62:97:d7:d3:75:58:1f:e2:d2:88:a8:28:66:15:
1c:69:3b:b2:30:4c:b0:2d:a2:18:bd:1e:e3:f4:6c:
5d:1d:46:02:33:e9:33:0f:93:99:72:40:d8:06:53:
e0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:7B:7E:58:9A:DD:61:10:B9:88:FA:43:F9:75:34:7D:81:DF:B9:25
X509v3 Authority Key Identifier:
keyid:B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:eb:b9:9d:5a:a9:0e:69:1d:2b:df:9d:d5:ba:5d:89:f6:1f:
cd:2d:de:79:93:64:04:d7:b7:76:0e:da:4a:24:d7:89:f8:2d:
88:cf:3a:d1:0b:bf:01:a0:28:d6:51:ee:50:a7:55:9a:3b:ab:
03:43:32:19:90:f2:94:2b:28:1f:f4:c4:d6:2d:e9:a7:ae:f9:
70:4f:6c:e0:23:6a:96:83:a3:55:d3:f0:5b:b7:94:ae:f8:c0:
8b:42:5e:d1:5d:40:b1:9b:32:9c:4a:0e:ef:19:66:85:55:53:
a4:78:79:23:45:79:39:8b:33:36:ac:c3:75:95:b9:c9:b8:d1:
7b:0a:28:10:be:49:1d:5b:da:ee:d7:5f:f7:aa:37:8a:ce:d5:
32:43:66:0f:0e:c3:f6:bc:82:a3:3c:52:c5:a7:6d:78:9c:bd:
b3:84:28:13:1d:1d:b0:37:69:81:0a:57:87:12:17:81:c2:4e:
e5:7c:ab:d2:22:51:dd:dc:fe:e9:d5:56:fe:26:bf:36:e1:3d:
cf:03:46:1f:84:78:c0:a6:4a:64:fa:ca:68:cb:e1:0a:3c:37:
ca:e0:10:ce:a1:e6:a2:c5:98:cb:37:58:ef:1b:be:e0:a2:e2:
15:a6:6b:9d:a0:ea:83:ff:62:0f:e6:9f:fa:ce:c8:a1:ff:c5:
80:fc:ed:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:22 2025 by rpki-client