Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
File: I5Vy3fyrYpHmQQzNToYO42AA5mg.mft (raw, json)
Hash identifier: 4o2Q3PhJMZEtgairwNJAaZnL/oTHA/O9MEaIS/dcIac=
Subject key identifier: 67:2F:EA:C2:F8:B3:FA:63:FD:15:CB:D2:1F:B6:1A:8E:D9:23:4A:74
Authority key identifier: 23:95:72:DD:FC:AB:62:91:E6:41:0C:CD:4E:86:0E:E3:60:00:E6:68
Certificate issuer: /CN=239572ddfcab6291e6410ccd4e860ee36000e668
Certificate serial: 019A71B8C3B480E4E0A52C45291E8C211A74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
Manifest number: 1721
Signing time: Tue 11 Nov 2025 07:02:05 +0000
Manifest this update: Tue 11 Nov 2025 07:02:05 +0000
Manifest next update: Wed 12 Nov 2025 07:02:05 +0000
Files and hashes: 1: I5Vy3fyrYpHmQQzNToYO42AA5mg.crl (hash: QLDMS8LZMsGrOYug/B3zGJrxsAHO6H7sFGEbsEC05dg=)
2: cEnlNHZ35kSVNo2T27Ex45pap18.roa (hash: q/g4pWJ8XYH4irxAQK7i5w/oElgLduGOhld/VI56BOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:c3:b4:80:e4:e0:a5:2c:45:29:1e:8c:21:1a:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=239572ddfcab6291e6410ccd4e860ee36000e668
Validity
Not Before: Nov 11 07:02:05 2025 GMT
Not After : Nov 12 07:02:05 2025 GMT
Subject: CN=672feac2f8b3fa63fd15cbd21fb61a8ed9234a74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9b:d4:fd:c8:99:8e:60:52:bd:63:ce:fd:4f:
4c:88:3a:89:cb:15:64:01:76:e8:d2:e5:0b:12:39:
b8:e5:88:fe:da:70:ff:54:d5:03:3f:69:d9:b4:ad:
bf:b4:e7:d3:43:31:cb:ee:9b:07:25:44:72:44:7c:
e6:a2:3f:dc:43:28:93:62:90:87:df:05:2e:c9:16:
1a:cc:3b:5a:78:c3:45:40:74:8d:3a:83:18:ea:61:
8f:5b:fe:62:43:da:13:ac:94:12:17:2a:9d:7f:bd:
14:07:08:43:94:2a:17:e2:03:5f:16:41:57:72:bc:
aa:15:a2:17:76:5c:e4:3c:59:e2:26:00:7b:84:67:
e9:82:d7:2b:f6:48:1b:fe:57:0d:b1:99:06:fc:0a:
13:61:e0:e4:ed:61:9b:dd:a7:36:5a:e8:85:6c:65:
61:c3:04:a8:4a:fb:be:f7:62:f9:c6:dd:16:d5:41:
d6:ac:d4:63:0d:15:69:e4:9a:d2:76:f4:59:04:69:
88:37:9d:81:c2:43:f1:13:b1:d5:ca:a7:ec:5f:88:
f1:c3:2e:6a:41:59:32:06:4f:78:df:a4:19:a2:d1:
15:5d:2c:1e:1b:97:e2:c2:44:e7:76:d3:66:b1:88:
5a:13:9f:4c:7d:87:7b:c6:a6:45:d7:06:2e:b1:0b:
4a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:2F:EA:C2:F8:B3:FA:63:FD:15:CB:D2:1F:B6:1A:8E:D9:23:4A:74
X509v3 Authority Key Identifier:
keyid:23:95:72:DD:FC:AB:62:91:E6:41:0C:CD:4E:86:0E:E3:60:00:E6:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:93:bc:a9:cd:39:88:f6:43:2e:a8:be:09:a6:46:df:8b:75:
4b:cc:60:fc:ea:c1:0b:67:cd:ed:7e:b4:66:53:c2:10:40:d7:
6d:a1:7f:2d:2e:ec:ac:06:21:55:b5:37:3a:81:5d:12:b2:93:
99:97:de:04:96:73:a8:78:cb:01:d1:75:36:e6:a5:d2:c4:ac:
d9:94:3c:84:e0:86:08:b7:e7:f4:87:dc:4d:f4:3b:3f:ed:ed:
01:0a:43:e4:4f:d0:70:d6:00:96:08:4a:bd:bc:d8:ae:97:e7:
9d:98:0c:bf:e3:07:55:9e:05:00:ae:8e:65:ab:41:c7:81:33:
67:52:06:b5:1c:64:ae:1b:98:11:87:aa:7a:f6:22:ce:b9:14:
d6:59:cb:70:af:9d:a0:1d:c7:f2:90:af:b3:a1:27:46:27:5e:
c0:7c:ac:d5:03:d4:ab:b9:05:b8:80:f4:d3:ad:61:24:fd:89:
fc:17:67:ee:a6:f6:19:cc:fb:c7:60:27:83:ff:84:78:72:41:
02:51:10:5f:19:ec:e5:12:96:7b:a7:b2:45:d0:db:17:3e:16:
44:bf:c8:0d:a3:70:78:fa:4b:c7:a2:53:d8:e5:5b:6e:77:ee:
28:b8:ee:7b:69:f4:ac:d1:35:c8:27:b9:99:49:b7:70:db:7c:
ad:38:19:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:02:37 2025 by rpki-client