Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
File: goZyzXNrV-Hj38fdc2872KYWuoE.mft (raw, json)
Hash identifier: DARuP36ssLwwOvFNEA9sdpJgZM7cvH0RMdWYf/NbXvU=
Subject key identifier: 9D:16:A3:23:2A:67:E3:7D:F8:9C:A5:B1:F2:34:01:9C:57:B2:57:9F
Authority key identifier: 82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
Certificate issuer: /CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Certificate serial: 019A70DBF0DC5E2A798EF09E22E0EABE4D9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
Manifest number: 171E
Signing time: Tue 11 Nov 2025 03:00:53 +0000
Manifest this update: Tue 11 Nov 2025 03:00:53 +0000
Manifest next update: Wed 12 Nov 2025 03:00:53 +0000
Files and hashes: 1: f-v99B7kzDMwcYPXZ1yHUB7PuHk.roa (hash: PLEFeVBVmPy00pfwBVn43bz19/5DH4Ktxjb7rCdDKxc=)
2: goZyzXNrV-Hj38fdc2872KYWuoE.crl (hash: PPWwffYbHllqnGTneamEaEj5OIn97ZCQA158cZKgZSs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:db:f0:dc:5e:2a:79:8e:f0:9e:22:e0:ea:be:4d:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Validity
Not Before: Nov 11 03:00:53 2025 GMT
Not After : Nov 12 03:00:53 2025 GMT
Subject: CN=9d16a3232a67e37df89ca5b1f234019c57b2579f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d4:96:b0:33:6f:fc:e5:53:f0:f8:58:17:c3:
bc:ce:67:bf:f3:63:66:82:a2:40:58:89:f2:a5:69:
bc:57:13:ab:62:31:08:7d:59:52:c3:01:fd:71:a9:
06:d2:43:49:bc:2e:46:56:ee:79:cb:39:3d:f0:cd:
32:79:6f:75:2b:25:b2:f4:de:49:d3:9e:24:79:e5:
70:17:54:09:dc:f0:e1:dc:53:50:1b:64:ec:a9:ea:
c0:c9:61:66:58:7e:e5:0a:2c:40:b7:49:ec:5e:75:
1a:4d:ec:1d:a4:d2:62:66:e9:9e:56:f4:56:54:ac:
a3:60:be:a1:0d:ad:15:91:78:b5:6c:64:fd:55:c1:
e8:4a:40:8c:f1:72:07:9e:e0:2b:fc:91:e3:4b:92:
64:95:35:0d:a8:4f:97:d0:e5:eb:68:46:0e:00:e2:
72:6c:47:51:f5:4c:6b:c4:4d:bb:ae:d5:4f:00:81:
88:1a:7c:49:1d:b4:03:b3:27:6a:d7:fe:4f:5b:77:
01:c5:c3:4e:c1:12:13:09:07:aa:33:de:47:10:94:
6f:fd:8b:74:c6:b5:c2:79:4e:dd:82:a5:64:a3:77:
49:85:ce:ea:e2:49:fb:6e:31:87:64:9e:13:a4:21:
be:2f:b3:b6:1c:32:80:bb:c7:6e:a0:f0:58:44:1b:
23:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:16:A3:23:2A:67:E3:7D:F8:9C:A5:B1:F2:34:01:9C:57:B2:57:9F
X509v3 Authority Key Identifier:
keyid:82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:b8:9c:68:cf:41:a2:25:7e:f6:63:d4:62:99:60:df:7e:e4:
51:6d:d2:37:50:8c:71:55:b0:1f:6d:5c:2f:34:03:5c:98:1a:
ce:65:ef:a4:6d:05:5c:e1:67:42:d1:94:21:0f:96:a6:2f:82:
ef:88:f5:f5:3b:56:09:c6:40:e6:64:fd:ba:6b:2b:81:7e:21:
85:84:6a:59:d5:8a:41:8d:bb:1a:fa:0c:35:69:93:8d:1f:92:
44:34:45:23:fd:1c:df:60:e4:34:b2:1d:30:9b:2d:36:05:ab:
41:f8:a7:4f:59:ea:49:85:69:9d:1a:e2:23:96:55:47:d4:5c:
ec:dd:2a:74:75:25:7a:d2:71:7f:92:3f:d2:ef:f6:a5:34:41:
4d:0e:55:e9:66:45:cc:1d:2c:9c:d9:ab:6a:8b:01:89:c6:25:
44:25:72:d0:65:fc:08:ba:3c:c2:30:7e:c1:07:ca:69:5f:8d:
7f:6c:83:d9:02:4f:f2:f5:65:68:90:71:68:1f:3c:73:84:f9:
77:5f:50:22:6c:46:ef:45:f4:12:9f:da:71:d3:a4:23:e7:a7:
90:7e:61:66:27:08:32:f9:35:84:60:39:6b:5a:c3:48:79:0b:
e3:26:12:f4:68:41:9e:44:57:ed:15:8d:3a:bb:97:3f:6c:d8:
30:ca:0c:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpw2/DcXip5jvCeIuDqvk2fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyODY3MmNkNzM2YjU3ZTFlM2RmYzdkZDczNmYzYmQ4YTYx
NmJhODEwHhcNMjUxMTExMDMwMDUzWhcNMjUxMTEyMDMwMDUzWjAzMTEwLwYDVQQD
Eyg5ZDE2YTMyMzJhNjdlMzdkZjg5Y2E1YjFmMjM0MDE5YzU3YjI1NzlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNSWsDNv/OVT8PhYF8O8zme/82Nm
gqJAWInypWm8VxOrYjEIfVlSwwH9cakG0kNJvC5GVu55yzk98M0yeW91KyWy9N5J
054keeVwF1QJ3PDh3FNQG2TsqerAyWFmWH7lCixAt0nsXnUaTewdpNJiZumeVvRW
VKyjYL6hDa0VkXi1bGT9VcHoSkCM8XIHnuAr/JHjS5JklTUNqE+X0OXraEYOAOJy
bEdR9UxrxE27rtVPAIGIGnxJHbQDsydq1/5PW3cBxcNOwRITCQeqM95HEJRv/Yt0
xrXCeU7dgqVko3dJhc7q4kn7bjGHZJ4TpCG+L7O2HDKAu8duoPBYRBsj+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ0WoyMqZ+N9+JylsfI0AZxXslefMB8GA1UdIwQY
MBaAFIKGcs1za1fh49/H3XNvO9imFrqBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ29aeXpYTnJWLUhqMzhmZGMyODcyS1lXdW9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC81NGJiNTAtMDFiZS00ZWM2LTk0MTgt
ZWVlN2ZhZTVjMDM3LzEvZ29aeXpYTnJWLUhqMzhmZGMyODcyS1lXdW9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC81NGJiNTAtMDFiZS00ZWM2LTk0MTgtZWVlN2ZhZTVjMDM3
LzEvZ29aeXpYTnJWLUhqMzhmZGMyODcyS1lXdW9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUricaM9B
oiV+9mPUYplg337kUW3SN1CMcVWwH21cLzQDXJgazmXvpG0FXOFnQtGUIQ+Wpi+C
74j19TtWCcZA5mT9umsrgX4hhYRqWdWKQY27GvoMNWmTjR+SRDRFI/0c32DkNLId
MJstNgWrQfinT1nqSYVpnRriI5ZVR9Rc7N0qdHUletJxf5I/0u/2pTRBTQ5V6WZF
zB0snNmraosBicYlRCVy0GX8CLo8wjB+wQfKaV+Nf2yD2QJP8vVlaJBxaB88c4T5
d19QImxG70X0Ep/acdOkI+enkH5hZicIMvk1hGA5a1rDSHkL4yYS9GhBnkRX7RWN
OruXP2zYMMoMDw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:55 2025 by rpki-client