Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
File: RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft (raw, json)
Hash identifier: tECtHwfKJHHISHIXhRgiNVRXQwdjoAeRD/4ydMvv0Ms=
Subject key identifier: F2:E1:91:FF:00:7C:61:06:E8:2B:DA:5F:15:19:C0:B4:0B:4E:2A:5D
Authority key identifier: 44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
Certificate issuer: /CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Certificate serial: 0199FE473284F8D418CC124ACC1368AA53C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 21:01:42 +0000
Manifest this update: Sun 19 Oct 2025 21:01:42 +0000
Manifest next update: Mon 20 Oct 2025 21:01:42 +0000
Files and hashes: 1: RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl (hash: 6HuZsMbTOdX6I4dmCMeDBP7yMazfAdXjn4z5ZO2Rtfc=)
2: ZmJk3i0UqR_uJ_XLaSjGUe2aH00.roa (hash: BCwdh7j1ZUyJ+mVEfLtfrzwX+n9rg9YN807VJjPHsUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:47:32:84:f8:d4:18:cc:12:4a:cc:13:68:aa:53:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Validity
Not Before: Oct 19 21:01:42 2025 GMT
Not After : Oct 20 21:01:42 2025 GMT
Subject: CN=f2e191ff007c6106e82bda5f1519c0b40b4e2a5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:72:5c:30:b1:a0:8a:ab:e0:6f:49:4c:6a:24:
c2:ee:f4:18:c6:c6:d9:36:34:57:f6:12:2c:41:41:
b9:87:8c:cd:71:b0:c3:60:fd:57:9c:3c:55:c8:ec:
42:fa:50:d6:6a:ef:43:ca:8f:38:38:73:16:0b:12:
81:26:e5:d3:c5:16:78:73:aa:83:fd:28:1f:6d:9d:
cd:e1:2f:40:4c:19:40:77:91:8f:cb:fa:32:2f:e2:
d7:17:ae:c9:5a:2a:32:f9:52:0f:b0:96:d6:d0:3e:
99:c8:13:69:13:00:6a:d6:1e:a0:17:bd:98:6d:b5:
4b:7c:43:88:65:c7:fe:dd:f2:f2:72:5f:f9:cf:30:
4b:8c:ee:dc:15:2d:1c:bb:76:47:a2:01:35:2a:c8:
20:28:cc:85:da:04:7e:89:c9:47:bd:20:3d:65:fd:
94:78:bd:59:9d:98:ac:53:94:23:a0:60:18:e3:46:
3d:1c:8c:c5:9d:65:c7:69:27:56:a0:be:81:c8:fd:
ea:3c:96:7e:4c:99:d4:4b:77:f1:07:18:07:02:29:
c1:12:fb:24:62:12:19:2f:ec:e7:d0:31:95:e5:2e:
55:2c:13:38:65:af:53:e9:d7:19:28:4d:dc:db:0d:
86:3e:e1:a4:94:65:0d:85:b5:58:ee:84:75:5a:6b:
74:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E1:91:FF:00:7C:61:06:E8:2B:DA:5F:15:19:C0:B4:0B:4E:2A:5D
X509v3 Authority Key Identifier:
keyid:44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:46:dc:ef:d3:62:e7:d1:58:bc:33:14:98:ca:70:3a:f9:7c:
61:b5:0c:22:a9:87:90:d5:db:6d:cb:e2:6a:f5:41:25:41:bf:
ed:a8:01:55:88:cc:bf:66:4c:d8:a7:fb:ce:dc:4d:0b:ed:ca:
77:1d:65:9f:cc:30:29:d4:31:79:f4:32:09:80:90:e0:54:01:
dc:1a:e0:48:b9:94:f9:68:62:cc:e3:72:04:a2:bd:17:71:e6:
cc:3c:0e:68:f5:1c:88:99:c6:52:f7:ca:67:4d:51:fa:80:46:
8b:dd:46:84:4e:40:8e:8b:db:4c:bf:16:78:ff:a1:9f:d2:52:
72:82:7c:0e:59:29:18:f7:19:60:9f:02:95:ff:0f:29:3f:21:
1a:30:ba:28:3f:a2:15:a0:b1:4a:40:46:05:50:19:3f:b5:69:
9b:22:4e:42:4e:be:0b:38:91:0f:03:a4:d6:ba:ad:7a:e1:8c:
8c:86:bc:cf:ec:26:dc:79:6b:bd:ca:60:d5:29:15:ad:dc:79:
8f:76:79:87:9d:3e:14:46:a1:af:1a:2f:0f:03:37:44:99:7c:
10:2c:b3:8e:82:b1:c5:b7:58:3f:3f:e5:9b:6f:67:0d:5e:38:
0b:32:fd:bb:53:c8:9f:22:43:23:40:ae:94:e0:72:fc:50:e6:
c0:80:e5:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:11:22 2025 by rpki-client