Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft
File: rUS-GO4-DSdHZwVV6GsACWXoE5s.mft (raw, json)
Hash identifier: DoJDGIQuy6qgB99rvS1szGKlEGiGrelMAVXPLfCiz10=
Subject key identifier: FB:9C:4B:0E:BD:B2:2A:66:37:17:7A:E8:70:BB:8D:CD:06:E3:86:99
Authority key identifier: AD:44:BE:18:EE:3E:0D:27:47:67:05:55:E8:6B:00:09:65:E8:13:9B
Certificate issuer: /CN=ad44be18ee3e0d2747670555e86b000965e8139b
Certificate serial: 019A71B7AACB31E187D60273207EA0DB6F98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUS-GO4-DSdHZwVV6GsACWXoE5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft
Manifest number: 171F
Signing time: Tue 11 Nov 2025 07:00:53 +0000
Manifest this update: Tue 11 Nov 2025 07:00:53 +0000
Manifest next update: Wed 12 Nov 2025 07:00:53 +0000
Files and hashes: 1: kX62bL3xBVpkyK0FphmC5iQUK74.roa (hash: GEBZd8qkO5malJhFWg729yyTB3o+issIVlA3FLkcy9o=)
2: rUS-GO4-DSdHZwVV6GsACWXoE5s.crl (hash: n6d6bMcL6vEhulXDN75XITv7tl3VAZpqQ9UssbCyXug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/rUS-GO4-DSdHZwVV6GsACWXoE5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:aa:cb:31:e1:87:d6:02:73:20:7e:a0:db:6f:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad44be18ee3e0d2747670555e86b000965e8139b
Validity
Not Before: Nov 11 07:00:53 2025 GMT
Not After : Nov 12 07:00:53 2025 GMT
Subject: CN=fb9c4b0ebdb22a6637177ae870bb8dcd06e38699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f2:8f:3a:59:a2:75:e0:90:2c:69:21:28:9f:
4a:69:f4:bc:36:1d:c5:4b:d7:04:d5:cd:55:2f:82:
0b:07:67:71:46:37:ef:01:a0:e3:77:d6:0f:d7:47:
00:72:a4:b6:34:c7:0f:34:4c:f5:ac:83:9c:d9:58:
7e:28:62:ab:b9:08:f4:28:d8:be:46:cc:70:14:7b:
23:dc:4f:c9:4f:2b:17:b5:93:66:28:a0:57:81:24:
4b:ed:09:0e:a1:9b:d6:33:f0:38:e6:b4:84:23:11:
63:f1:4c:50:7d:82:da:ec:0e:8b:42:93:d8:cf:87:
a3:27:f2:9a:4c:57:81:73:a5:9f:b0:06:5f:bc:08:
e0:a2:dd:29:a7:7f:18:9e:ea:1c:5c:2d:f5:c5:12:
5d:d5:d1:a6:17:34:d1:7e:c1:50:fb:0f:68:b8:3f:
4b:78:d2:fd:3a:f7:a6:21:bd:cd:39:24:ad:a2:da:
05:af:0c:84:d2:4f:b4:8e:7b:9e:fe:c4:12:ef:a0:
b0:15:59:4d:bb:9a:eb:04:de:3c:d1:48:23:0a:92:
d2:f5:a4:bf:81:01:e4:e9:07:26:a2:43:05:65:16:
35:c6:22:80:b2:85:08:7a:b0:24:7f:4f:cf:f6:7d:
d1:01:ba:70:7e:d9:79:fd:16:16:b5:26:c2:fc:88:
1e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:9C:4B:0E:BD:B2:2A:66:37:17:7A:E8:70:BB:8D:CD:06:E3:86:99
X509v3 Authority Key Identifier:
keyid:AD:44:BE:18:EE:3E:0D:27:47:67:05:55:E8:6B:00:09:65:E8:13:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUS-GO4-DSdHZwVV6GsACWXoE5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:10:1e:18:64:e1:23:21:3d:5b:f0:0b:7f:14:cd:94:dc:62:
16:1b:e7:8b:02:a2:22:11:31:13:73:29:bb:b5:1b:c9:5a:42:
71:21:a3:0b:d0:ed:ef:b1:33:c5:4b:18:77:bc:80:0b:da:bb:
0f:08:6c:67:aa:69:ea:9c:0d:1c:95:72:68:2a:6c:75:6a:dc:
1a:22:f5:66:e8:23:ed:8c:a1:40:69:32:ee:aa:49:79:77:6a:
6b:68:34:dd:13:c8:98:b6:59:9c:a4:be:4a:a2:11:bd:a8:3c:
f3:dd:b5:f3:48:16:2f:70:31:92:fa:3b:81:97:6b:ef:de:29:
d5:7c:0a:c2:53:6f:3a:5a:0f:33:14:4d:82:b6:ee:9f:c9:d7:
3d:5f:c6:6f:ee:5f:bc:95:a1:7f:5c:40:83:1d:bc:3a:df:22:
73:b5:d7:67:b8:23:de:e4:57:58:ee:61:29:78:83:be:36:0c:
73:46:d1:a5:5d:ad:2d:76:bd:41:85:df:d9:3a:61:a4:8b:4f:
ac:68:e1:57:14:ec:0a:9a:2a:d9:8a:37:9b:01:33:4c:15:a9:
22:fb:01:f8:0e:0c:8f:c8:68:ad:1b:af:96:99:7f:7d:19:b2:
6b:36:9f:57:c2:a3:a5:16:6e:3e:f4:5f:ef:0c:42:0d:98:d3:
c9:24:29:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:04:11 2025 by rpki-client