Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft
File: IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft (raw, json)
Hash identifier: IoGu0G8T8HCxQKCTEHs4vjtYDSPHi05D3e33MXCXVac=
Subject key identifier: 4E:B8:87:51:A3:AD:0F:05:B3:A6:42:24:45:DA:31:06:B5:43:1C:EB
Authority key identifier: 21:8A:F2:6F:9A:36:65:3F:4D:99:67:19:D4:A4:10:FE:84:AF:48:61
Certificate issuer: /CN=218af26f9a36653f4d996719d4a410fe84af4861
Certificate serial: 019A72CA1AF506CC51A6AB85F9F89C665406
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft
Manifest number: 05E4
Signing time: Tue 11 Nov 2025 12:00:39 +0000
Manifest this update: Tue 11 Nov 2025 12:00:39 +0000
Manifest next update: Wed 12 Nov 2025 12:00:39 +0000
Files and hashes: 1: 8aRFc9FMZuB39L9ezbDQe4rTWqI.roa (hash: d0kPdTmIfua7sOVHFgh6TKa6BfDr4mbqEziPITcO1vw=)
2: IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.crl (hash: GCn6aUGkbL3csSN6FEXH0hmZZwylKgd35kG+vM2GSwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:1a:f5:06:cc:51:a6:ab:85:f9:f8:9c:66:54:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218af26f9a36653f4d996719d4a410fe84af4861
Validity
Not Before: Nov 11 12:00:39 2025 GMT
Not After : Nov 12 12:00:39 2025 GMT
Subject: CN=4eb88751a3ad0f05b3a6422445da3106b5431ceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ff:3b:dd:da:93:0b:98:7d:59:3a:99:a4:3e:
8f:7d:91:35:27:9f:00:db:66:6e:43:d1:b2:14:7b:
02:55:39:6a:5c:dc:81:a4:c4:93:09:fe:02:9a:23:
58:0b:6c:64:97:6b:41:1e:60:f1:2d:23:97:09:80:
55:e6:9a:ea:9c:28:49:d5:85:69:79:a8:2f:b2:dd:
d8:e7:49:60:35:e9:53:a8:ba:bd:5f:ec:2b:5b:85:
79:54:33:46:94:5f:12:63:e5:11:ce:63:0a:29:cb:
4d:e5:c8:e7:54:1b:aa:7c:ba:b5:e5:e4:e8:13:5c:
09:7e:c7:0e:6e:e7:29:31:aa:df:ce:ad:65:4c:f7:
05:b6:1e:30:61:f2:ae:43:2a:48:0a:22:57:50:32:
c6:06:d9:3d:f7:1d:7e:5f:05:69:a1:6b:1e:85:bd:
d5:b0:9d:08:9c:fb:c5:ab:4f:79:58:39:e6:7d:2f:
3a:16:43:30:e1:fc:53:74:f1:81:0d:c4:a6:61:03:
cd:bc:bb:97:eb:0f:df:89:1d:0f:7f:aa:dc:f3:f8:
72:a0:a4:8c:a4:1f:57:c3:96:32:a7:82:c6:bd:c4:
88:2f:73:63:8e:62:b1:99:c3:39:cd:de:89:2d:89:
eb:12:46:9d:0e:74:b9:be:f5:f9:a6:26:57:85:78:
96:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:B8:87:51:A3:AD:0F:05:B3:A6:42:24:45:DA:31:06:B5:43:1C:EB
X509v3 Authority Key Identifier:
keyid:21:8A:F2:6F:9A:36:65:3F:4D:99:67:19:D4:A4:10:FE:84:AF:48:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:1f:bc:95:8c:5b:49:3b:99:98:77:51:8a:e4:ab:02:ae:12:
6f:92:86:00:c5:34:29:d1:bb:a5:92:f9:1e:9c:02:20:14:c2:
a4:3c:7d:67:24:79:bf:c5:51:90:d4:f4:c5:64:67:a6:2a:f2:
a7:8d:a8:98:31:c9:3a:7d:2a:02:f0:a9:a2:4c:b6:2a:c4:56:
99:9f:72:c6:6d:68:5e:5e:69:94:46:8d:ac:e5:86:c5:fc:2e:
a1:ad:5d:c0:c9:6e:4f:15:b0:77:a2:7d:55:c6:66:40:ea:b2:
72:c5:f2:f0:98:50:b0:6e:06:47:1f:2e:0d:9e:16:0c:66:3b:
38:f0:6b:4f:2b:ef:d2:b5:8c:e3:43:0d:d7:85:ae:b0:23:ac:
d2:46:37:40:46:0f:a5:c4:af:12:69:ea:58:9d:96:f4:7c:85:
e3:6f:56:61:26:f2:ac:86:9a:d8:08:77:99:1d:6f:02:22:01:
84:76:24:31:42:43:45:c6:0e:2c:42:59:cb:c4:e9:d5:31:d9:
3f:91:33:06:c3:80:96:6e:8f:61:01:46:de:09:9f:e9:cd:f7:
63:31:f5:7a:84:e2:9a:74:d6:fe:c2:b5:ca:d8:8c:60:e1:12:
5b:2e:7e:f0:00:58:e8:ff:1b:65:d6:37:60:f0:88:3a:6e:28:
36:a1:18:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:58:45 2025 by rpki-client