Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
File: 4ygMY1Kgv7t50knIh17RhuzOioY.mft (raw, json)
Hash identifier: VdWiD7Kr4jYxELK4c83wRG2KVZmL5ZHak+C3DBsJ96g=
Subject key identifier: 8E:43:C0:81:79:9F:BA:D4:0A:00:4B:4E:77:49:D6:36:D7:C6:75:00
Authority key identifier: E3:28:0C:63:52:A0:BF:BB:79:D2:49:C8:87:5E:D1:86:EC:CE:8A:86
Certificate issuer: /CN=e3280c6352a0bfbb79d249c8875ed186ecce8a86
Certificate serial: 019A7112D8FADCBDA35083D72508193871C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
Manifest number: 1725
Signing time: Tue 11 Nov 2025 04:00:51 +0000
Manifest this update: Tue 11 Nov 2025 04:00:51 +0000
Manifest next update: Wed 12 Nov 2025 04:00:51 +0000
Files and hashes: 1: 4ygMY1Kgv7t50knIh17RhuzOioY.crl (hash: fB8yaiSRiHstVhhcM3VBX1aCIyFZEBz/TMLI2zgbx1w=)
2: LKQwgiepoVu5_u8taIAcRutuJ-s.roa (hash: g/2UuKpKO1KSqMbVUrFxetjbdTbJKbXQ9uje0qgEhYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:d8:fa:dc:bd:a3:50:83:d7:25:08:19:38:71:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3280c6352a0bfbb79d249c8875ed186ecce8a86
Validity
Not Before: Nov 11 04:00:51 2025 GMT
Not After : Nov 12 04:00:51 2025 GMT
Subject: CN=8e43c081799fbad40a004b4e7749d636d7c67500
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:54:e6:bd:e7:81:bf:37:d2:89:8d:e8:ef:2b:
95:b7:e8:96:96:01:76:af:f8:5f:10:3c:ef:ac:ca:
bd:85:61:10:d3:cc:9e:df:4b:f0:58:55:d7:91:79:
6b:d4:e8:49:2c:69:fe:ab:80:80:1a:00:c4:a3:14:
bf:e0:4e:79:19:23:b1:b2:5f:10:e6:ea:f5:ac:de:
80:73:3f:ad:0f:32:0b:3b:52:3d:b7:ba:fd:16:93:
85:81:85:13:c0:6d:52:e7:ee:56:d6:87:5c:3c:19:
f8:13:6a:b3:71:ac:23:27:a4:1b:56:53:75:d0:3b:
7d:cd:25:25:ee:ed:2b:9b:5e:71:83:dc:fa:92:87:
a2:56:05:42:ad:41:8b:88:6e:aa:fb:c1:3a:b3:c1:
77:b5:b2:b3:05:b8:90:b0:23:11:a7:ea:29:fe:e6:
fd:c2:c3:0a:b1:f2:5c:2a:c4:ac:8f:98:be:c7:04:
06:dc:f6:24:e7:3b:c6:9a:99:b9:28:c1:38:02:7e:
ad:5e:91:3b:08:61:d8:53:c7:09:08:b7:7d:e9:20:
5b:56:6b:75:89:90:29:b2:76:0a:02:a9:98:2c:4d:
8f:e6:aa:7b:77:0e:b2:51:a4:67:d4:7b:66:f9:e6:
d8:05:5b:8c:ef:5d:82:5e:3e:7a:0e:53:41:21:15:
00:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:43:C0:81:79:9F:BA:D4:0A:00:4B:4E:77:49:D6:36:D7:C6:75:00
X509v3 Authority Key Identifier:
keyid:E3:28:0C:63:52:A0:BF:BB:79:D2:49:C8:87:5E:D1:86:EC:CE:8A:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:ad:96:fb:a2:0b:f8:8e:6c:db:90:74:f7:5e:09:80:8b:37:
85:6e:3c:ce:f2:c4:fe:de:a6:31:2c:4d:b1:9d:7f:80:86:0d:
77:0c:ed:18:49:1d:89:c8:73:e5:36:97:32:90:c5:5b:9a:8c:
4c:2d:a7:19:98:48:68:74:c3:1f:a0:f0:bb:69:e7:44:1e:c5:
0e:d9:ac:8a:d6:c0:21:43:df:82:57:e2:63:87:3c:52:e0:c6:
5a:ff:9c:0f:1c:12:5f:e4:0d:e3:5d:10:71:00:68:3c:84:11:
84:f7:c4:7a:e5:49:49:f0:d5:2c:e1:2c:b5:88:42:fe:ca:01:
d2:1d:5c:63:ee:75:e2:58:92:ff:ad:0d:b0:98:bb:62:33:9f:
a2:fb:79:cd:02:df:ff:81:88:67:21:06:c6:aa:46:56:0e:2f:
cb:57:5f:4e:5b:e4:94:5e:08:d8:1a:09:1d:bf:4a:83:02:42:
60:c5:da:5e:d4:e3:cc:ab:9f:a0:68:ec:5a:a8:c2:42:05:aa:
e5:fc:5d:a5:26:bd:68:71:a0:3b:23:01:8e:a7:1e:4e:af:5c:
2f:05:00:8a:6d:3b:d7:23:1d:ee:9d:5b:6c:e1:11:c0:e4:90:
59:a5:59:ee:f4:01:85:6e:eb:7b:25:61:cc:99:fc:c4:86:80:
7c:6b:fc:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:01:43 2025 by rpki-client