Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
File: d53x3kOsymHuwDTOomi0ZUzBXKw.mft (raw, json)
Hash identifier: VbqoDXIQ0Ewi+ezL7xSyIiEH8TpuvMhUP/eHyReMujE=
Subject key identifier: 4C:51:9B:1D:A3:29:AC:FE:86:7F:43:1F:00:95:31:37:06:39:F4:F6
Authority key identifier: 77:9D:F1:DE:43:AC:CA:61:EE:C0:34:CE:A2:68:B4:65:4C:C1:5C:AC
Certificate issuer: /CN=779df1de43acca61eec034cea268b4654cc15cac
Certificate serial: 0199FB46263CEB6A1CBC0330FFCD3172476E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 07:01:42 +0000
Manifest this update: Sun 19 Oct 2025 07:01:42 +0000
Manifest next update: Mon 20 Oct 2025 07:01:42 +0000
Files and hashes: 1: 0vZUeITqxhjYTZ09-IZPJQyJrFs.roa (hash: XWy8JIsvHPb13TWVq0G62lkPYB9FumkdweR7BRskWwI=)
2: d53x3kOsymHuwDTOomi0ZUzBXKw.crl (hash: IGnH9C+YoM1BnG7ic7BBriFsNqVdMvI7/Q98Cy9RW7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:46:26:3c:eb:6a:1c:bc:03:30:ff:cd:31:72:47:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779df1de43acca61eec034cea268b4654cc15cac
Validity
Not Before: Oct 19 07:01:42 2025 GMT
Not After : Oct 20 07:01:42 2025 GMT
Subject: CN=4c519b1da329acfe867f431f009531370639f4f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f3:b5:d8:b3:3b:26:89:82:1a:08:0a:8b:52:
f3:a3:29:5d:94:8b:ab:44:5a:bb:1b:86:d8:52:31:
48:4a:3f:4c:10:da:12:e1:21:4e:d7:4e:41:c1:a7:
3a:14:16:e8:41:90:dd:ae:67:ab:41:8a:4f:0f:89:
a1:aa:cd:1a:b4:93:40:c8:1f:ab:f6:b0:3e:d5:b8:
2d:0a:ca:64:0b:ef:84:d4:61:99:38:26:b8:9c:95:
d2:09:4d:8a:7a:b8:20:ff:f4:9b:8c:47:ae:bd:36:
cd:05:c6:27:f0:c8:e8:3a:8e:af:dc:98:af:f3:fc:
86:5f:d6:a9:ee:78:d8:ea:b8:2c:b9:d3:01:76:85:
63:eb:1c:b6:83:26:1b:ca:05:a8:49:20:4a:c2:88:
ae:81:d5:2a:59:f6:61:7c:97:ac:cf:b6:a1:91:37:
fb:a3:c7:c9:cd:1f:02:61:27:89:8d:42:fd:91:0a:
b7:20:c2:c8:34:8e:49:3b:9b:aa:0a:64:c0:d2:93:
29:4a:d1:fe:cb:2c:55:1f:8a:ca:e3:3e:80:c4:18:
42:bb:9b:db:95:da:b0:91:bb:ac:ea:bb:fc:00:d0:
cb:8b:5c:87:10:25:c0:10:8b:b8:63:56:b3:d2:ea:
26:c4:b3:fa:e8:76:08:66:46:98:4f:46:66:20:77:
1a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:51:9B:1D:A3:29:AC:FE:86:7F:43:1F:00:95:31:37:06:39:F4:F6
X509v3 Authority Key Identifier:
keyid:77:9D:F1:DE:43:AC:CA:61:EE:C0:34:CE:A2:68:B4:65:4C:C1:5C:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:a3:d2:04:40:4c:0f:53:5c:a0:a6:c6:40:d1:88:0d:b0:d3:
b6:54:bc:78:52:fd:59:7c:a4:99:a3:f0:f6:f8:a8:b9:fd:82:
46:4e:76:66:f3:9c:98:ff:a2:19:67:ef:fc:b1:61:60:67:08:
8a:0a:e5:bc:cb:3b:71:d8:c0:1d:42:0a:e8:e3:db:b2:ea:8d:
99:e1:85:88:28:88:75:7c:f7:ec:27:56:c4:6a:f3:1a:99:0d:
30:60:88:eb:4c:ab:d6:b5:5c:54:f0:d3:4c:df:db:67:d6:6c:
87:7e:54:8a:bb:dc:93:ba:c2:af:29:4a:89:e7:d6:64:24:ff:
93:39:ed:4b:77:9b:dd:d9:8c:e0:59:ce:33:c9:88:9b:8e:4d:
07:f4:fb:0c:b1:ba:03:c9:43:e2:92:0c:94:ad:b5:9e:84:47:
11:5f:37:80:46:e1:61:00:d4:af:8f:c0:c8:8a:44:29:03:c5:
6e:d5:7c:f9:79:ce:ab:90:53:80:e2:77:7e:10:f7:74:51:f5:
6e:f9:fd:bc:d2:4e:7e:36:86:19:78:2a:c8:16:c8:07:ce:c9:
83:3c:41:b3:3a:fa:b2:00:e0:0e:99:a7:eb:a8:6f:32:a0:ca:
8d:fc:c3:71:11:86:b0:55:1f:df:b4:b6:3f:ab:34:13:e7:c8:
fd:15:81:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:56 2025 by rpki-client