Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft
File: 1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft (raw, json)
Hash identifier: E6gjf2WYZHD1CWi2F+CP/LeRsFSgPWM/50cbBYtPyCU=
Subject key identifier: A1:3A:D0:BB:B7:6F:09:A9:E4:1D:5F:99:F8:CF:35:D2:51:2E:CF:69
Authority key identifier: D5:58:5A:2E:08:FE:44:3C:E7:FD:0C:BF:40:6F:7B:9A:DA:2A:7C:C5
Certificate issuer: /CN=d5585a2e08fe443ce7fd0cbf406f7b9ada2a7cc5
Certificate serial: 019A6D6D0222B244420B8BBEFE1BF2D847A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1VhaLgj-RDzn_Qy_QG97mtoqfMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft
Manifest number: 0217
Signing time: Mon 10 Nov 2025 11:00:51 +0000
Manifest this update: Mon 10 Nov 2025 11:00:51 +0000
Manifest next update: Tue 11 Nov 2025 11:00:51 +0000
Files and hashes: 1: 1VhaLgj-RDzn_Qy_QG97mtoqfMU.crl (hash: 8cknGmwrnxrZNWwl4kuigJezofbdkWefCzbbr8w7Eww=)
2: BcelUhdXxacAQU97XkdcwjtJzVg.roa (hash: XXQpfHpkHgSaCtL3AHunwK9n34HNeTtzIRJIEYTmJHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1VhaLgj-RDzn_Qy_QG97mtoqfMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 11 Nov 2025 08:56:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:6d:6d:02:22:b2:44:42:0b:8b:be:fe:1b:f2:d8:47:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5585a2e08fe443ce7fd0cbf406f7b9ada2a7cc5
Validity
Not Before: Nov 10 11:00:51 2025 GMT
Not After : Nov 11 11:00:51 2025 GMT
Subject: CN=a13ad0bbb76f09a9e41d5f99f8cf35d2512ecf69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:24:89:8e:18:dd:a4:a7:b7:12:bc:ff:43:c7:
71:ba:c0:ea:1b:dc:46:a0:73:11:22:a3:e2:2c:fd:
7a:c0:3d:8b:38:6e:c6:cf:1c:ca:6a:b1:cb:16:6b:
3b:31:f8:f1:7e:ec:49:45:32:bc:77:65:c7:ec:1c:
a5:38:b2:a7:c2:9c:6b:d0:cf:96:57:9f:75:40:3c:
98:cf:d7:4f:05:b7:c9:c3:77:02:e1:53:21:19:17:
8f:cf:ff:93:40:2d:23:5a:50:07:52:79:b1:b4:18:
42:4b:8b:b7:af:60:44:bd:de:5e:1e:cd:93:fe:11:
34:41:f2:b6:9e:a0:91:98:4f:3e:8c:d9:2f:d8:3e:
de:8f:7a:6f:83:a8:4e:92:16:f1:84:92:7a:b4:d8:
92:28:5e:98:4a:ec:bd:1f:9a:c3:f0:16:54:cb:eb:
58:1a:96:fe:eb:27:86:57:aa:b6:1e:68:79:04:e2:
ba:07:81:6a:59:47:4c:5e:47:f4:55:a1:de:ba:bd:
a8:5e:2c:70:98:d9:02:00:04:eb:05:7c:4f:b5:a1:
c7:85:2d:d5:32:71:0b:c4:51:cd:81:c1:20:f0:3e:
2c:11:49:e8:0c:32:fd:66:66:db:86:a6:50:2f:04:
bd:09:a4:9d:82:de:6f:90:11:fc:6b:fb:e8:a0:ae:
5e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:3A:D0:BB:B7:6F:09:A9:E4:1D:5F:99:F8:CF:35:D2:51:2E:CF:69
X509v3 Authority Key Identifier:
keyid:D5:58:5A:2E:08:FE:44:3C:E7:FD:0C:BF:40:6F:7B:9A:DA:2A:7C:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1VhaLgj-RDzn_Qy_QG97mtoqfMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:e6:e7:00:7c:24:a2:82:57:e9:24:be:1c:c2:bf:2d:62:1c:
0d:59:ff:87:23:d2:8c:81:5e:d8:12:a8:97:de:8f:c3:fa:24:
8a:65:15:5c:4e:8e:a5:ca:c5:6b:e2:c1:9c:0e:d7:4c:8a:b9:
d8:7f:7f:9c:45:ec:db:6e:99:c4:bb:a4:fc:e7:a7:d4:94:b5:
8a:b8:33:14:6c:85:a3:ff:8f:4b:ad:72:54:c9:e1:fd:c2:e8:
bd:91:66:b3:47:20:93:db:97:4a:f9:03:79:8e:b3:71:dc:74:
16:9d:48:fc:0c:73:3c:aa:1b:b0:1b:86:ff:c1:32:52:e9:38:
5a:49:ba:48:c6:49:29:c6:92:ff:6a:22:65:9b:a0:92:5d:32:
96:6d:8c:64:e4:a1:0f:ec:35:95:9c:97:ea:ad:f4:fd:7b:7c:
6d:17:b2:3d:6f:ba:2e:2f:29:1b:ec:e1:41:19:8c:e6:81:36:
36:7f:00:1d:dd:3d:05:b0:e5:df:8d:b6:eb:47:b0:71:4d:e6:
8f:51:c5:77:2f:eb:4f:66:45:f9:6d:ce:23:2f:94:93:72:8f:
2c:16:07:5f:7f:8e:2a:9a:22:19:36:ae:5a:97:05:5f:49:d5:
19:ab:dd:ef:94:56:b2:e3:05:cf:b8:51:c3:9f:15:f2:3e:02:
88:1e:60:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 10 16:03:53 2025 by rpki-client