Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
File: ryfUX8GLqRerHomhfvC2NgmEgiQ.mft (raw, json)
Hash identifier: B4okGIGYZeKZcvHeyx61cLhs974cNVLBMz25dJ/KPKg=
Subject key identifier: 5F:D5:C8:69:B6:25:6B:49:3D:0B:09:15:61:F5:27:C2:07:91:A2:DD
Authority key identifier: AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
Certificate issuer: /CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Certificate serial: 019A7293A64FDF394DD04C37BC4B95666F4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
Manifest number: 13C8
Signing time: Tue 11 Nov 2025 11:01:10 +0000
Manifest this update: Tue 11 Nov 2025 11:01:10 +0000
Manifest next update: Wed 12 Nov 2025 11:01:10 +0000
Files and hashes: 1: ryfUX8GLqRerHomhfvC2NgmEgiQ.crl (hash: m639ZoxBhNSm6NmV5XarP+vmFnyre8POYNbOsHr4MYk=)
2: zl8vYnMSKo50V7tHcL3U74d2LS4.roa (hash: cxI3XYqo0XKxXcEnFf9KagnCReAfMGFWl39LE0K//l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:a6:4f:df:39:4d:d0:4c:37:bc:4b:95:66:6f:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Validity
Not Before: Nov 11 11:01:10 2025 GMT
Not After : Nov 12 11:01:10 2025 GMT
Subject: CN=5fd5c869b6256b493d0b091561f527c20791a2dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:fe:b1:53:67:ab:5d:9a:57:0c:da:df:a8:54:
61:cb:43:a8:2e:65:b8:41:28:e0:bb:3f:8c:c7:81:
20:d0:25:40:ec:ca:11:47:be:b9:9f:9f:a0:a9:13:
de:ce:76:07:0b:b3:43:7f:e3:5d:87:ba:1b:3c:cd:
1b:79:5f:4a:4a:4e:60:ff:a6:84:e8:19:a4:9e:42:
93:b3:a3:97:19:ad:67:65:74:bd:9c:66:ac:e6:3e:
cc:88:7c:b8:a0:fe:03:e6:4e:76:4a:93:4c:12:40:
ab:39:fa:d3:0c:28:76:d5:57:7b:85:92:d4:d5:80:
9e:ab:45:7a:0d:68:e8:d4:4b:45:27:3e:4d:e8:02:
93:84:79:6b:e2:84:84:3c:b2:b2:8b:ff:a7:c8:a4:
4c:65:05:a3:8d:47:50:7d:10:18:19:48:e3:50:d1:
68:79:73:2c:b2:05:aa:92:78:50:96:67:10:0c:d2:
19:2f:14:c0:b2:22:f1:e0:6d:d2:fa:7a:25:c5:3a:
db:6a:f9:34:57:f9:7f:47:42:82:62:81:76:72:cb:
a1:05:c0:5a:be:19:d8:ea:c3:44:a9:b3:af:3d:8f:
6a:c1:d0:bb:ef:4a:46:72:d5:a3:09:f2:9c:f4:81:
01:0c:20:eb:ac:9f:c9:59:dc:31:64:59:d8:e3:49:
72:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:D5:C8:69:B6:25:6B:49:3D:0B:09:15:61:F5:27:C2:07:91:A2:DD
X509v3 Authority Key Identifier:
keyid:AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:2e:79:b2:c6:3e:5b:8c:73:d8:87:4c:c4:4e:9a:6f:63:44:
64:d3:de:63:47:69:e5:b4:9c:39:f9:e1:06:f5:6a:0a:e9:53:
c2:ad:9e:47:89:7c:94:f2:72:01:7b:ac:93:1b:26:47:01:68:
84:ea:4d:91:6b:c7:ba:08:a1:c1:bb:c2:de:a8:d2:57:b9:8e:
fe:7b:b0:ba:1c:9f:fd:0f:99:ca:10:4c:eb:f3:19:06:52:e7:
45:42:01:56:92:96:68:68:de:51:07:eb:bc:84:f6:ec:71:d8:
33:42:9d:60:ab:b7:85:6c:37:78:9a:ac:09:6a:3e:c1:c6:fd:
50:79:c2:54:d1:b0:01:b0:65:63:ce:b8:d1:cc:e2:d5:33:b7:
9f:42:f0:73:6f:e2:d4:2c:9f:59:c8:62:d7:8f:19:c0:cd:19:
0f:e3:b7:e2:e1:70:95:12:47:eb:7d:2c:a3:7d:69:52:4e:a2:
70:99:48:ab:f9:3e:5d:fd:6c:a6:6f:99:6c:7d:bd:bc:34:d7:
3d:b8:82:f3:75:5f:09:99:89:1a:0d:d0:8e:b9:4f:a8:d5:e1:
a1:bf:b5:1d:97:30:4d:e1:ae:99:51:e6:f3:cd:4d:ff:3d:ab:
96:10:3c:52:42:cc:50:1b:12:f4:de:ef:e4:fb:e6:c8:1c:0e:
8a:8b:67:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:22:04 2025 by rpki-client