Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
File: iEZAW_zHgGbFGSyz6-csRDxVcog.mft (raw, json)
Hash identifier: xaR2OdXwiYQfFJZ9WeOdaGofQnTQU3FAKWNlKT1P63c=
Subject key identifier: 80:4B:7D:38:E4:33:6B:51:8A:78:54:A1:89:A1:D4:0D:80:F5:6F:91
Authority key identifier: 88:46:40:5B:FC:C7:80:66:C5:19:2C:B3:EB:E7:2C:44:3C:55:72:88
Certificate issuer: /CN=8846405bfcc78066c5192cb3ebe72c443c557288
Certificate serial: 019A7293CEA521FD1DE583E97C839743DB53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iEZAW_zHgGbFGSyz6-csRDxVcog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
Manifest number: 171F
Signing time: Tue 11 Nov 2025 11:01:20 +0000
Manifest this update: Tue 11 Nov 2025 11:01:20 +0000
Manifest next update: Wed 12 Nov 2025 11:01:20 +0000
Files and hashes: 1: 1wukbEM_Z2cOLmS317mkgQWPtlY.roa (hash: mynvXYceF8nnYoZdEmhOk8iYDpjkXUz62HUCHGcK8Wc=)
2: iEZAW_zHgGbFGSyz6-csRDxVcog.crl (hash: UG8afLXSzIG5T/pyAkQjZ6nXxHpS2fV3OvmfR63z9DU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
rsync://rpki.ripe.net/repository/DEFAULT/iEZAW_zHgGbFGSyz6-csRDxVcog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:ce:a5:21:fd:1d:e5:83:e9:7c:83:97:43:db:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8846405bfcc78066c5192cb3ebe72c443c557288
Validity
Not Before: Nov 11 11:01:20 2025 GMT
Not After : Nov 12 11:01:20 2025 GMT
Subject: CN=804b7d38e4336b518a7854a189a1d40d80f56f91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5d:e7:7b:97:ec:d0:65:af:0f:14:e0:c8:1c:
b9:af:88:4d:08:38:3f:bd:03:75:61:cb:53:d3:89:
5a:93:b4:6e:44:6f:1e:79:49:a9:9b:69:27:f7:8e:
4c:e9:0e:36:5e:80:b7:48:09:1e:29:dd:d7:43:d1:
75:31:22:a5:5d:7b:f4:f2:22:60:c7:71:38:35:1e:
80:85:1c:1b:b7:d1:69:c9:21:81:a9:47:94:d3:5a:
ba:e4:3c:93:a8:a9:49:e8:93:0a:45:00:bc:55:9e:
43:7d:fa:5d:41:55:7a:f0:b8:3f:19:4d:4b:a4:a9:
10:6a:39:02:71:29:a2:b8:eb:a0:cb:cd:3d:e0:69:
39:3f:fe:23:2f:dc:39:62:e0:83:88:cf:57:88:90:
47:d2:43:3e:bd:ce:ce:44:9e:dc:c1:6f:16:28:90:
63:19:41:47:09:23:48:60:50:8e:44:a5:32:d4:e2:
38:c2:46:f4:e1:5f:99:bc:89:03:53:4f:f5:e8:a6:
bf:2d:d2:d4:02:ad:67:11:f8:d6:3c:0c:7a:ca:d3:
90:bb:37:a6:90:44:d8:09:61:fb:da:02:9b:77:7e:
18:12:d5:18:36:48:7b:72:35:08:17:fa:c6:27:d8:
13:9c:9a:74:d2:bd:1a:4c:13:f3:96:6f:4e:8e:97:
be:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:4B:7D:38:E4:33:6B:51:8A:78:54:A1:89:A1:D4:0D:80:F5:6F:91
X509v3 Authority Key Identifier:
keyid:88:46:40:5B:FC:C7:80:66:C5:19:2C:B3:EB:E7:2C:44:3C:55:72:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iEZAW_zHgGbFGSyz6-csRDxVcog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:af:df:0e:fe:02:7f:3d:c3:40:63:28:c7:20:be:79:a9:ea:
1d:b3:91:55:20:00:6e:c9:b2:bb:00:73:53:67:d5:84:95:cf:
5a:7d:c2:dc:97:5d:60:d9:4c:f7:a2:0b:81:a0:73:e2:75:91:
62:ac:8a:0a:a5:e5:13:28:90:09:6c:2e:05:51:57:b6:cc:68:
d9:fe:1c:aa:40:25:9d:02:53:c4:96:dd:54:54:e7:bb:ee:3c:
f7:78:fe:c8:b4:8f:de:82:86:61:95:ee:42:92:b5:f0:11:dc:
04:c0:a2:cf:d4:b8:03:b5:60:7f:08:c6:d2:ff:f8:7f:a8:59:
ce:26:86:c0:34:ae:fc:2c:62:46:24:0f:d7:0c:5e:1a:b3:54:
e5:66:0f:ba:12:fa:f5:67:cc:1f:6f:0e:ab:d9:c5:e2:2d:d2:
c2:e4:cf:30:cc:0c:c2:2f:4b:4f:21:7b:9c:5f:16:f7:ee:11:
27:01:ab:98:f9:22:8c:27:aa:03:51:c1:5a:de:56:32:8e:1e:
0d:b2:db:c6:30:5c:aa:ba:26:a2:b6:22:ed:96:d3:09:46:c7:
77:13:d8:b1:7f:02:0b:fb:4a:ab:f0:b6:43:12:25:03:83:14:
1e:a0:2e:7e:88:fc:56:25:9d:86:d6:15:7f:e4:84:65:67:d1:
bd:eb:38:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:08:48 2025 by rpki-client