Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
File: R1oGyte9DD25-KOB8euc1sdaqyg.mft (raw, json)
Hash identifier: yq+b36GrJhfSTh+wlq9L/LJx8g8jIzYBs/RA2b08waA=
Subject key identifier: FA:4D:71:BE:CA:05:B5:19:90:83:CC:D3:E5:19:06:60:16:8B:CE:DC
Authority key identifier: 47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
Certificate issuer: /CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Certificate serial: 019A71B8778989D16E571C2E0743839858CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
Manifest number: 02DA
Signing time: Tue 11 Nov 2025 07:01:45 +0000
Manifest this update: Tue 11 Nov 2025 07:01:45 +0000
Manifest next update: Wed 12 Nov 2025 07:01:45 +0000
Files and hashes: 1: P26izWnWykundEbYZ5JEBhpU0uU.roa (hash: cWV+pN/zcAshvYcQxK5v+o4IGsyjFJQg91I3ipirKBI=)
2: R1oGyte9DD25-KOB8euc1sdaqyg.crl (hash: 4uK1b04jn8q3qP4svseYQzIcKTjsyGgf947/7uuE3nk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:77:89:89:d1:6e:57:1c:2e:07:43:83:98:58:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Validity
Not Before: Nov 11 07:01:45 2025 GMT
Not After : Nov 12 07:01:45 2025 GMT
Subject: CN=fa4d71beca05b5199083ccd3e5190660168bcedc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:3c:d4:96:10:d7:3c:13:a9:07:c1:b3:0e:18:
a9:89:c7:e3:63:f1:70:ca:b5:1f:07:8a:68:81:d4:
8c:99:2d:06:d8:af:df:72:6b:bf:74:83:74:71:db:
0c:7e:bb:44:f5:43:82:2e:e6:54:1f:98:25:22:51:
a9:99:a0:da:56:07:85:e4:96:71:89:b9:dc:b4:bd:
f5:ac:27:a6:09:ee:2c:36:23:99:c3:bc:82:02:49:
ce:62:c0:cd:b2:ba:12:19:4c:a4:ec:4b:23:3b:65:
49:cc:02:c6:47:ce:be:b4:67:8b:3a:60:66:4d:b3:
3e:24:92:2e:fc:80:e2:c8:b9:04:d4:b1:a9:9b:29:
3d:85:57:87:f4:17:7d:53:42:92:a8:1b:5b:8f:c6:
a2:56:aa:f5:f4:23:0a:5d:99:f6:96:1c:01:a4:e9:
94:f0:1e:31:16:1a:d9:74:e0:9d:a3:bd:df:62:11:
75:5a:c5:5b:bd:a2:55:d4:e9:84:89:49:ce:23:eb:
c6:1a:19:0e:e2:e3:7a:c4:6b:a5:f3:1b:ed:26:74:
f4:39:11:ba:88:ef:5f:55:8b:da:27:90:bf:0f:6a:
0d:13:7a:48:6c:a4:7d:61:e5:a0:dc:fd:c7:1f:89:
ac:7d:4f:f0:ea:80:e9:08:07:59:4a:f7:f3:13:aa:
5e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:4D:71:BE:CA:05:B5:19:90:83:CC:D3:E5:19:06:60:16:8B:CE:DC
X509v3 Authority Key Identifier:
keyid:47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:71:1e:16:1b:1c:43:3d:1d:5b:46:8c:c5:26:74:ed:fb:7d:
8a:27:8e:83:74:e9:a8:2a:fa:47:40:29:3a:10:c9:93:0a:29:
87:9c:05:4d:19:a9:c1:43:40:59:92:f2:81:c7:c4:77:7f:98:
d2:a8:18:1a:a5:f1:12:a8:9c:9c:0d:7e:86:aa:aa:e6:f8:fa:
ca:33:34:31:a6:a6:37:3c:23:bc:67:bc:d6:bd:ed:da:a4:c5:
9a:d7:5b:28:7c:2e:c6:08:e2:d3:ff:30:16:bd:a7:c1:fb:56:
1a:e7:1e:54:69:c0:7b:7c:bd:7e:a8:55:ce:f9:c6:7a:a3:e8:
23:88:ff:43:ba:e4:6a:3e:ec:b3:50:d2:38:9a:30:e3:cc:58:
79:e9:ee:4d:cf:42:4f:d0:1e:31:02:4a:06:6d:03:3a:9d:9b:
2a:49:5d:19:38:07:2a:e2:6a:a3:d0:73:7f:78:07:cc:29:9e:
8f:a5:dd:a2:92:5f:1a:42:f0:49:24:d7:9b:e8:96:e8:7f:8f:
db:3f:3b:96:6c:92:14:7f:11:18:c6:8a:25:37:ae:01:2d:98:
66:c8:e3:0b:cd:d8:1d:32:e6:5a:1d:9f:83:f5:a4:61:f0:5c:
4c:c6:ce:3c:2c:59:24:14:f0:31:fc:e5:46:2f:3a:33:76:8f:
f5:e2:2c:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:58:39 2025 by rpki-client