Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
File: 0YZHAF-osG5H7i77_e3Jegx3Vfg.mft (raw, json)
Hash identifier: FWjb/XsDnTz5QsNp8qSn8gJg8mNtOOvmXObPtKdiHCc=
Subject key identifier: 15:6C:1F:CE:E6:28:DA:0C:07:A3:81:09:0A:61:5A:F2:41:06:9E:45
Authority key identifier: D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
Certificate issuer: /CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Certificate serial: 019A71B8DB6C98EAB72C30AC96259FB91FC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
Manifest number: 171F
Signing time: Tue 11 Nov 2025 07:02:11 +0000
Manifest this update: Tue 11 Nov 2025 07:02:11 +0000
Manifest next update: Wed 12 Nov 2025 07:02:11 +0000
Files and hashes: 1: 0YZHAF-osG5H7i77_e3Jegx3Vfg.crl (hash: /r2bB+7vKdbZRr5gikJJlE0y0tcF5+vqYLe2aairUFA=)
2: ZyIu060SPaMWxMQNL4CIeyP46Zk.roa (hash: GVU/SWZQhKij7yAFfd4z7w9wi6LHgd9IcJaXLlSPbVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:db:6c:98:ea:b7:2c:30:ac:96:25:9f:b9:1f:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Validity
Not Before: Nov 11 07:02:11 2025 GMT
Not After : Nov 12 07:02:11 2025 GMT
Subject: CN=156c1fcee628da0c07a381090a615af241069e45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:15:13:8f:58:a1:59:9b:6d:b2:ac:18:94:9c:
6b:7f:3e:96:e3:6b:f2:46:c9:df:a6:61:21:ae:3c:
61:7b:80:1e:7d:99:bb:37:d0:15:7f:fa:ef:80:e8:
95:ed:67:62:98:35:51:74:75:ed:15:66:1c:ed:cd:
ed:df:cb:a5:51:45:1e:96:1e:c5:5e:7c:98:4e:65:
0b:84:6e:16:04:88:9e:69:5e:ba:f3:5b:b5:87:00:
a5:45:32:27:ff:80:8c:7a:86:b4:b8:61:88:6a:6c:
ba:73:8f:69:c9:72:60:94:af:9a:d9:43:f9:1f:00:
b9:c9:5f:d2:3b:32:de:98:eb:d9:d3:2c:80:6d:3d:
85:94:71:72:ab:b9:63:46:50:03:5d:83:4c:c5:51:
45:59:6a:38:0f:07:fe:49:d1:f2:e4:2b:ff:fa:44:
59:f6:2f:04:b6:9d:77:89:db:30:2a:43:bc:06:86:
c2:c1:cb:be:c9:bf:7e:b8:c6:90:9e:f6:84:a2:6a:
fe:0f:72:c4:14:df:f3:fe:f2:17:f6:77:3e:ae:29:
8b:34:56:2d:cd:fa:db:b5:d2:43:e3:ae:34:ba:49:
58:79:a9:b2:0b:77:03:df:e1:1c:bc:15:34:1b:32:
77:79:e3:5d:cf:97:52:66:66:7c:5b:33:0d:75:ff:
ca:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:6C:1F:CE:E6:28:DA:0C:07:A3:81:09:0A:61:5A:F2:41:06:9E:45
X509v3 Authority Key Identifier:
keyid:D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:89:f3:7e:70:ae:28:7e:d2:bb:b5:cd:57:9f:03:a6:2c:1d:
4d:68:6f:e2:3f:99:5e:e1:3e:2a:37:ad:ad:ed:ad:ad:74:fb:
fe:ea:5f:ae:1d:a4:2d:22:03:33:98:78:40:bb:3b:db:fc:40:
a8:f7:01:b3:34:65:9b:05:55:0d:3b:3c:37:1e:ea:ec:1b:23:
21:01:bf:07:55:86:81:a9:67:b3:9e:f2:21:39:15:44:c7:58:
9d:84:57:f0:08:03:3e:e4:b7:76:39:f7:40:c6:7f:8d:7a:0e:
13:83:6c:f3:11:02:bc:30:a7:e1:4d:05:07:1a:c3:a4:91:2f:
f1:19:4d:91:67:23:a5:4e:7d:39:c2:c7:00:26:8d:86:d9:18:
66:24:b8:f8:32:bf:4c:c8:bc:93:68:be:65:6b:15:fb:86:0d:
bb:1b:8d:50:14:e8:8e:78:2b:69:f9:e4:e3:b2:c1:94:3d:b3:
5d:b6:14:a2:c5:e5:dd:7d:50:10:8b:ec:ca:51:65:ee:82:03:
d3:5b:3a:d2:f9:6b:41:f1:a5:01:79:b3:19:5e:d9:9e:9c:98:
3e:1b:36:0c:3c:57:70:7b:d1:9c:70:86:e7:39:06:2c:02:85:
ec:bd:98:2a:5e:7f:05:fd:c9:8b:21:93:af:c7:73:81:a8:2a:
3f:ee:f4:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:46:06 2025 by rpki-client