Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
File: ryNYW_zdBhypRuLZ6ouX5FucMdY.mft (raw, json)
Hash identifier: TibjBHQjDmBvIjLrjvoaxLlf5dTQdATN0/1/dwRtphs=
Subject key identifier: E3:29:CE:6E:F9:9D:AE:4E:67:4A:86:FD:4A:9C:25:BC:59:DA:F9:4B
Authority key identifier: AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6
Certificate issuer: /CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6
Certificate serial: 019A30B3403DE401AC1381BE5E4D692E1844
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
Manifest number: 1663
Signing time: Wed 29 Oct 2025 16:00:44 +0000
Manifest this update: Wed 29 Oct 2025 16:00:44 +0000
Manifest next update: Thu 30 Oct 2025 16:00:44 +0000
Files and hashes: 1: SeufauaKg6Zpqe8UY9h9PfD262s.roa (hash: f9EK4NXbDLFnpfyftEzrpn9paJMCGETNbGO1nrHQTYE=)
2: ryNYW_zdBhypRuLZ6ouX5FucMdY.crl (hash: GTLHUtYrGLXAzv+sqKA81N9vv4wG9soC1Wpw/FKuYR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 16:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:30:b3:40:3d:e4:01:ac:13:81:be:5e:4d:69:2e:18:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6
Validity
Not Before: Oct 29 16:00:44 2025 GMT
Not After : Oct 30 16:00:44 2025 GMT
Subject: CN=e329ce6ef99dae4e674a86fd4a9c25bc59daf94b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:80:62:bf:1d:38:0d:72:01:ca:a5:76:56:4c:
4e:2d:88:ac:1c:44:db:55:4a:b4:6b:3c:05:b1:54:
96:e2:ce:d6:e3:e1:fd:fa:bf:b3:24:47:70:39:e8:
68:92:bd:05:81:36:56:bf:8a:f1:27:f3:1e:4a:27:
aa:f9:83:a6:f0:0a:41:2c:ad:a9:83:5e:85:5b:c5:
0e:32:4b:0e:c0:19:04:f0:45:96:f0:5c:57:ad:3b:
2e:28:41:66:59:c7:ee:91:4f:f0:ba:fa:18:34:38:
fa:50:40:b0:21:a5:8c:f4:45:40:a1:c7:d9:de:23:
f7:c7:c5:b3:1d:8d:ee:dc:6b:ed:46:ac:99:2c:f3:
7e:22:67:ec:4e:e5:51:07:8f:a3:e2:84:3f:b8:e3:
96:99:0b:13:38:60:2a:7a:13:42:90:a3:84:00:da:
3c:a0:1b:2a:7b:7d:8d:9c:6c:71:fb:38:59:2b:06:
11:d6:20:68:13:e2:0c:97:2c:3b:b0:45:b6:29:09:
ec:8a:0f:4d:86:2f:f7:c4:60:8d:30:a4:1f:56:59:
d6:ed:de:0d:15:05:a6:98:40:64:0d:96:df:e1:4b:
3d:d0:02:12:3f:da:aa:54:c4:90:a8:57:47:8f:9f:
e0:a0:93:12:39:8b:51:0f:70:96:73:e3:57:6a:8a:
cd:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:29:CE:6E:F9:9D:AE:4E:67:4A:86:FD:4A:9C:25:BC:59:DA:F9:4B
X509v3 Authority Key Identifier:
keyid:AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:13:e8:51:69:21:90:fa:a6:cb:f8:6f:42:b4:52:81:83:c4:
07:ae:5c:d4:a0:d1:5d:c6:34:27:aa:ec:60:b1:ee:a8:86:d7:
1b:52:89:d8:98:57:21:37:a4:2b:76:32:82:99:8e:47:eb:3c:
64:aa:47:84:77:71:32:4a:d6:d4:3c:9a:00:e1:64:35:bd:39:
1d:69:a0:67:72:cb:4c:97:f1:d2:9d:6d:22:d2:b1:50:e2:4d:
63:e3:23:d0:e0:e2:b7:b2:95:1a:bd:07:1e:74:65:de:3f:85:
45:e5:5f:30:05:e7:ba:e3:be:6d:aa:33:11:4e:61:ba:ec:10:
38:7d:48:c1:65:ef:5d:6e:6a:32:24:21:a7:66:73:e8:8b:99:
eb:fd:ab:2a:52:6d:d4:ba:72:b6:f4:5e:ca:73:32:b9:bd:8f:
9d:a2:49:e2:88:35:5f:bd:7f:c5:6e:ae:97:a2:02:50:bf:e9:
27:b3:66:1f:77:8e:11:db:9e:d9:1a:8a:5d:e1:49:38:9c:c8:
69:a7:15:60:91:47:1a:e9:87:9a:65:f3:88:2e:77:17:fe:3d:
c2:5c:f9:90:49:11:90:b8:7b:da:6e:aa:5c:08:e7:20:0c:ee:
d6:14:31:b7:89:f7:bc:28:2c:62:c2:a4:f2:38:d1:15:4c:80:
ec:23:09:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 18:11:46 2025 by rpki-client