Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: +jpHoHk3e42R7pSWdwNih9mpluynRQStzaEWw2sWmME=
Subject key identifier: D2:62:14:A2:B4:45:1A:3B:D0:D3:5E:2A:0E:91:37:43:65:26:26:18
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 0199FB0EFBB682435569BE12CB170CC025D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 03FD
Signing time: Sun 19 Oct 2025 06:01:27 +0000
Manifest this update: Sun 19 Oct 2025 06:01:27 +0000
Manifest next update: Mon 20 Oct 2025 06:01:27 +0000
Files and hashes: 1: 9jS2v21J95xARBtQOtdTT0EtYBQ.roa (hash: BeiYvaVP67aUM+eVkzjpflxlaHwkNmiJmUTQZAVqkOQ=)
2: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: 34j2bdeJFwOHrkiMvVUUjS+1yeMWzi7r2enpMyVfAos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:fb:b6:82:43:55:69:be:12:cb:17:0c:c0:25:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: Oct 19 06:01:27 2025 GMT
Not After : Oct 20 06:01:27 2025 GMT
Subject: CN=d26214a2b4451a3bd0d35e2a0e91374365262618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:09:d4:6e:f2:57:05:59:02:3e:f1:73:84:ec:
1b:b1:88:ee:4e:df:d6:07:5b:db:18:48:b3:7e:9d:
d1:16:3a:11:46:4b:81:d9:0f:32:2f:0b:00:14:57:
0f:27:21:b9:d0:26:37:68:a5:4b:d8:ac:25:2c:b1:
e4:a2:7e:93:1a:51:e8:10:c7:77:98:02:d2:3f:c0:
bb:48:33:18:1c:ac:9f:78:cd:78:c7:8e:57:cf:fe:
0b:ba:19:1f:ab:c9:0e:fa:e2:a8:f2:ec:2b:43:2e:
34:2d:2f:80:d4:e2:ed:73:eb:48:6c:ab:41:44:09:
23:2c:88:d7:27:ea:34:8f:a8:2a:af:13:56:99:5f:
68:be:8e:8e:66:77:21:94:e7:2e:7e:69:0f:82:d6:
6f:74:7a:2e:03:8a:e7:f9:9c:05:94:08:9e:75:3a:
12:6b:70:00:5a:da:9e:44:a2:2a:77:8a:59:1a:f4:
1b:ed:05:03:17:59:f6:a9:2f:ea:45:da:c0:4c:6d:
68:ee:4f:59:12:79:20:74:e9:2e:ac:e5:10:ad:55:
a5:30:0b:5c:65:61:d9:82:77:23:20:7c:1a:83:66:
f2:a6:63:64:3a:0b:40:a6:5b:35:89:e9:f2:75:eb:
86:36:5c:69:98:8e:6d:9a:24:f4:66:fd:db:94:d4:
c5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:62:14:A2:B4:45:1A:3B:D0:D3:5E:2A:0E:91:37:43:65:26:26:18
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:6a:07:01:49:ea:05:1f:0e:26:15:7e:a0:6d:cd:d2:e3:7d:
9a:53:83:94:d3:16:dd:13:b4:cf:13:46:99:f1:d7:15:84:55:
c2:f6:b6:82:9a:f7:a4:83:e3:3d:c2:fd:bf:58:3a:43:a2:f2:
85:c1:a1:4a:a4:2d:d3:20:b0:e7:ea:db:5e:7b:47:ee:17:38:
70:c9:49:2f:b4:12:9d:07:45:69:f9:71:1a:14:d6:cf:c3:7d:
e8:24:e1:3a:b8:f8:85:39:13:33:5e:b6:9d:d3:f4:e2:c0:bb:
c8:ce:c0:42:0b:38:97:a1:18:ba:f3:bd:4f:21:73:70:0c:79:
37:07:a6:5e:f2:c8:1c:b7:a8:7e:64:29:45:dc:aa:b3:69:35:
d8:47:0a:8e:4d:31:c7:20:7e:be:15:a3:f3:3b:1e:13:a6:bf:
19:cf:ac:e5:01:4e:cf:96:d1:2a:88:39:cc:9d:4e:f8:bb:d5:
12:62:0e:51:e0:0e:6a:24:0d:26:60:66:86:d2:de:a4:bb:37:
3b:7e:de:f2:ff:40:db:fe:11:c2:4f:ca:3a:bb:81:d5:51:c5:
f2:f1:c9:f7:fd:cf:69:23:df:5f:9b:ef:c0:47:80:48:e4:2c:
1d:f2:9d:de:75:97:6e:d6:43:3d:0e:2e:9d:f5:aa:fc:31:a7:
11:2f:15:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:43:51 2025 by rpki-client