Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
File: 0LYdHx2czatrbY4UUMLJNtOX5nA.mft (raw, json)
Hash identifier: R15FCRRizQHoKp6qR6f1CAyLQOoXP5MRTBOi4a4Q83A=
Subject key identifier: 9C:D8:B7:1F:53:6A:7D:B6:C0:E9:86:B5:74:3A:55:82:C2:04:CB:25
Authority key identifier: D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70
Certificate issuer: /CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670
Certificate serial: 0199FEEC12FA268EC9FECD464ED87EC45539
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
Manifest number: 03C7
Signing time: Mon 20 Oct 2025 00:01:48 +0000
Manifest this update: Mon 20 Oct 2025 00:01:48 +0000
Manifest next update: Tue 21 Oct 2025 00:01:48 +0000
Files and hashes: 1: 0LYdHx2czatrbY4UUMLJNtOX5nA.crl (hash: qwYXQ/4VN2qL2d7zmixUQgqQxrCr8zmfBK/p41WGP9E=)
2: WtuPQAz22oEnCEx3Rc-9J0U0Qbk.roa (hash: LqsVaHB6US9lWput6TNuWvOyM8xnvQFU16n5uBdiSPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:ec:12:fa:26:8e:c9:fe:cd:46:4e:d8:7e:c4:55:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670
Validity
Not Before: Oct 20 00:01:48 2025 GMT
Not After : Oct 21 00:01:48 2025 GMT
Subject: CN=9cd8b71f536a7db6c0e986b5743a5582c204cb25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b5:c7:70:4d:f9:17:95:c3:ae:c2:df:02:c7:
08:1f:0a:17:18:ac:60:37:6e:dc:b2:12:f2:47:95:
7e:34:a4:b2:0e:f7:51:a2:9f:cd:9f:d8:9b:30:cf:
26:06:c4:d8:bd:ab:73:bd:d0:0c:60:3e:a5:53:53:
ec:ba:2b:cc:24:ce:85:33:c0:b0:3a:db:73:ad:87:
d6:99:f4:e8:6a:46:9e:92:86:f8:74:3c:a6:02:f1:
1c:b2:67:7a:50:2e:5c:bc:6d:89:b4:e6:ce:7a:21:
30:ec:ea:60:6f:d7:83:ef:af:6d:1f:69:f3:a9:a0:
73:9b:d0:3c:2e:02:55:89:26:f1:d3:76:b7:7b:9f:
d0:11:fa:61:15:af:fe:ab:8b:ba:7b:4b:ea:f7:16:
89:a9:9b:2e:70:55:55:49:39:36:0d:52:06:eb:24:
42:82:b4:62:15:2b:ae:52:bc:40:7b:ed:c7:53:2a:
d0:32:33:d7:00:b3:8e:90:bd:84:99:b9:cc:11:b4:
3f:27:ff:13:c4:cf:5f:eb:65:87:7d:a0:ca:63:31:
bb:72:a9:51:3a:67:58:14:03:89:01:76:53:a4:f3:
7f:16:d6:b0:df:e2:56:af:7c:4c:68:6b:25:bd:60:
f4:15:36:20:31:64:55:68:91:f3:a9:1b:6c:b8:69:
16:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:D8:B7:1F:53:6A:7D:B6:C0:E9:86:B5:74:3A:55:82:C2:04:CB:25
X509v3 Authority Key Identifier:
keyid:D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:a4:33:52:af:86:5d:77:f6:bb:f0:4c:35:ac:7a:78:95:8b:
03:6b:a1:10:ec:87:68:21:28:16:ec:64:71:4b:00:3d:8d:f6:
d1:9e:fa:18:d8:cc:a0:26:4f:a5:92:f5:2e:65:99:07:89:3d:
26:fc:8c:8d:c3:74:af:81:78:c1:b7:1d:11:bc:5f:1c:bf:5c:
4a:96:d7:00:0e:7b:4d:eb:fe:62:24:f9:5b:1e:86:c4:f4:07:
8e:6a:4d:3f:26:66:7b:79:95:c6:03:0d:b5:35:57:f5:ce:8a:
17:25:f5:9c:2a:d0:48:6d:54:e4:c5:6b:cf:e4:81:b8:c2:68:
49:d9:47:58:7a:f9:31:81:ee:c1:a5:1a:9a:1f:8d:e9:12:45:
52:91:1a:54:e9:5e:1f:cd:fe:e9:d6:3c:11:8a:2b:45:d2:76:
39:6b:7a:e2:1c:8c:f6:81:d5:20:40:d7:84:d4:7c:3a:d5:1d:
aa:ae:7c:93:d6:e0:46:66:64:3c:57:55:c9:93:0d:dc:29:49:
99:8d:df:ad:ce:8e:95:ad:bd:1f:c0:58:78:65:89:d7:8d:dc:
89:51:58:e8:8c:02:7e:4c:a5:34:0e:fa:09:ae:a1:36:29:06:
bc:a8:23:c0:c5:e1:70:99:aa:ce:23:ba:95:f4:67:35:4a:57:
5a:d0:a3:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+7BL6Jo7J/s1GTth+xFU5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwYjYxZDFmMWQ5Y2NkYWI2YjZkOGUxNDUwYzJjOTM2ZDM5
N2U2NzAwHhcNMjUxMDIwMDAwMTQ4WhcNMjUxMDIxMDAwMTQ4WjAzMTEwLwYDVQQD
Eyg5Y2Q4YjcxZjUzNmE3ZGI2YzBlOTg2YjU3NDNhNTU4MmMyMDRjYjI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuLXHcE35F5XDrsLfAscIHwoXGKxg
N27cshLyR5V+NKSyDvdRop/Nn9ibMM8mBsTYvatzvdAMYD6lU1PsuivMJM6FM8Cw
OttzrYfWmfToakaekob4dDymAvEcsmd6UC5cvG2JtObOeiEw7Opgb9eD769tH2nz
qaBzm9A8LgJViSbx03a3e5/QEfphFa/+q4u6e0vq9xaJqZsucFVVSTk2DVIG6yRC
grRiFSuuUrxAe+3HUyrQMjPXALOOkL2EmbnMEbQ/J/8TxM9f62WHfaDKYzG7cqlR
OmdYFAOJAXZTpPN/Ftaw3+JWr3xMaGslvWD0FTYgMWRVaJHzqRtsuGkWAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJzYtx9Tan22wOmGtXQ6VYLCBMslMB8GA1UdIwQY
MBaAFNC2HR8dnM2ra22OFFDCyTbTl+ZwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8zMTc2MzUtYTkwYS00NzA0LTk2NzIt
MTVmNjJjODkwYWY4LzEvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni8zMTc2MzUtYTkwYS00NzA0LTk2NzItMTVmNjJjODkwYWY4
LzEvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVaQzUq+G
XXf2u/BMNax6eJWLA2uhEOyHaCEoFuxkcUsAPY320Z76GNjMoCZPpZL1LmWZB4k9
JvyMjcN0r4F4wbcdEbxfHL9cSpbXAA57Tev+YiT5Wx6GxPQHjmpNPyZme3mVxgMN
tTVX9c6KFyX1nCrQSG1U5MVrz+SBuMJoSdlHWHr5MYHuwaUamh+N6RJFUpEaVOle
H83+6dY8EYorRdJ2OWt64hyM9oHVIEDXhNR8OtUdqq58k9bgRmZkPFdVyZMN3ClJ
mY3frc6Ola29H8BYeGWJ143ciVFY6IwCfkylNA76Ca6hNikGvKgjwMXhcJmqziO6
lfRnNUpXWtCjUQ==
-----END CERTIFICATE-----
Generated at Mon Oct 20 03:58:27 2025 by rpki-client