Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
File: rtyPMnpGGWTAqHqceAlAHFfIbUE.mft (raw, json)
Hash identifier: IewnE6HBHOtFyfk1dv2vMD+J5ZcG9uWzNUxpnZ8vWJc=
Subject key identifier: 40:AF:0B:0A:B4:F4:20:B9:FF:6C:77:7C:B4:6D:A0:C3:78:68:59:69
Authority key identifier: AE:DC:8F:32:7A:46:19:64:C0:A8:7A:9C:78:09:40:1C:57:C8:6D:41
Certificate issuer: /CN=aedc8f327a461964c0a87a9c7809401c57c86d41
Certificate serial: 019A4E8690D3249A7E1652FF10132DE924CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
Manifest number: 170C
Signing time: Tue 04 Nov 2025 11:00:32 +0000
Manifest this update: Tue 04 Nov 2025 11:00:32 +0000
Manifest next update: Wed 05 Nov 2025 11:00:32 +0000
Files and hashes: 1: 2r5V-jLaZB51UHtAh-bFMsh9deI.roa (hash: MKCPJpuTtJZg9qISSN6i7GBsMIxb/Qe56YUG3zY4d1Q=)
2: rtyPMnpGGWTAqHqceAlAHFfIbUE.crl (hash: 3HzrXLrIbIV53UineDjkq3eYqYcPiogp/owNRmEuhdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:90:d3:24:9a:7e:16:52:ff:10:13:2d:e9:24:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aedc8f327a461964c0a87a9c7809401c57c86d41
Validity
Not Before: Nov 4 11:00:32 2025 GMT
Not After : Nov 5 11:00:32 2025 GMT
Subject: CN=40af0b0ab4f420b9ff6c777cb46da0c378685969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:1e:bd:02:54:a6:cc:9c:d8:e7:54:a2:f3:d2:
a3:36:f2:b2:27:4e:38:7b:87:41:d1:de:2b:57:a1:
99:d0:c5:69:81:81:8a:4e:21:1d:5f:de:2e:a6:91:
00:dd:01:03:7d:d3:78:66:8e:7c:2e:1d:8a:f0:e3:
9c:d1:25:19:34:53:61:46:2b:39:7e:c2:a7:f5:f4:
d4:4e:a2:24:d3:5c:3f:70:ec:b8:16:ed:57:18:d9:
b1:5c:75:db:37:90:05:3d:1c:2e:c7:d7:20:96:7b:
7f:0b:df:af:73:35:c3:4f:ad:ad:e8:47:cd:e6:c1:
3c:ae:b6:f7:4b:f9:eb:d5:af:db:ad:02:b7:07:62:
7b:e3:23:e8:ba:e1:cd:2a:df:e0:07:81:9d:e3:f2:
16:97:b4:b4:3f:fb:01:6c:03:e5:24:ed:b4:ff:e3:
c8:98:e4:b2:3c:a0:8e:7a:af:21:4d:6d:9b:8a:c3:
30:d1:a0:9f:57:dc:84:8c:49:5e:55:ea:0d:dc:4e:
e3:5a:2d:f0:3a:90:12:e7:6b:28:d1:a2:37:5a:ef:
cb:27:3b:bc:c3:21:ee:c8:59:44:3b:2f:d2:a8:cf:
7e:a2:d7:50:93:70:67:a4:00:05:33:c6:60:77:09:
34:27:a6:4f:a0:0b:9d:dc:7e:81:8e:a1:1f:64:2c:
78:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AF:0B:0A:B4:F4:20:B9:FF:6C:77:7C:B4:6D:A0:C3:78:68:59:69
X509v3 Authority Key Identifier:
keyid:AE:DC:8F:32:7A:46:19:64:C0:A8:7A:9C:78:09:40:1C:57:C8:6D:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:74:ac:cd:1f:2b:d2:d9:8b:64:3a:b6:7a:d2:ba:b0:21:24:
8e:52:dc:ea:d9:98:42:ee:53:a1:69:64:63:d7:9e:13:ef:fc:
3e:b3:f3:a2:d9:94:99:c2:40:99:cd:e0:25:8a:68:90:9c:83:
fd:e1:ea:50:dc:33:49:e5:8e:93:a8:d2:8e:c7:53:14:ad:ad:
cc:07:8f:37:bc:44:05:42:73:3b:2b:5d:f4:d4:7a:fb:55:ae:
78:27:12:22:7b:7a:19:2b:5b:f9:aa:54:da:c6:7b:bc:bd:97:
41:c1:b8:b9:ce:bc:86:dc:25:ce:b5:34:32:84:ab:c4:df:2e:
d1:df:41:05:7d:b7:8f:fe:ea:38:81:8f:5f:5f:4d:93:f2:b2:
00:b5:39:d0:cd:e6:12:f5:65:45:e2:f1:74:10:64:1e:35:b9:
40:ff:8c:19:f8:aa:d2:c2:5f:35:76:ba:7b:46:57:7e:6c:1b:
d9:8e:e2:aa:1a:38:a4:df:d9:2e:81:1f:b9:69:20:08:74:85:
88:e3:ae:8a:af:e4:a0:bb:d0:29:c8:99:db:08:e8:e8:4f:44:
2c:6b:de:45:b4:64:fa:39:8c:67:9c:22:e8:1c:75:1e:5f:79:
ef:6b:ec:fe:b3:2a:43:11:69:47:97:e5:ae:15:34:79:1d:43:
a0:67:fc:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:01:33 2025 by rpki-client