Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
File: 0xryhyw_VQMHOGbf_vSItxeD2rY.mft (raw, json)
Hash identifier: EjddybJRVYh6Feo1zzUSg/rN7qd91D1QzwFrhl0LDGU=
Subject key identifier: 26:64:43:50:AE:D0:A2:62:97:84:D0:7D:81:1D:E7:ED:24:37:20:AB
Authority key identifier: D3:1A:F2:87:2C:3F:55:03:07:38:66:DF:FE:F4:88:B7:17:83:DA:B6
Certificate issuer: /CN=d31af2872c3f5503073866dffef488b71783dab6
Certificate serial: 0199FF23134DF2185FAF95B2EFDD7FEECB80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
Manifest number: 13E3
Signing time: Mon 20 Oct 2025 01:01:52 +0000
Manifest this update: Mon 20 Oct 2025 01:01:52 +0000
Manifest next update: Tue 21 Oct 2025 01:01:52 +0000
Files and hashes: 1: 0xryhyw_VQMHOGbf_vSItxeD2rY.crl (hash: hF73TbEVuBePnnraLImQX1BlVW85buxyPLWdmiCWc8k=)
2: Vr2MHbk4BkpwijegPw7svFXxpY8.roa (hash: J4FlYQ16tBtXCX4bdbpdB9oishsKJVSj1Pc1U4pte9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:23:13:4d:f2:18:5f:af:95:b2:ef:dd:7f:ee:cb:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d31af2872c3f5503073866dffef488b71783dab6
Validity
Not Before: Oct 20 01:01:52 2025 GMT
Not After : Oct 21 01:01:52 2025 GMT
Subject: CN=26644350aed0a2629784d07d811de7ed243720ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e0:25:15:5b:48:86:9b:9d:66:9c:ef:67:d3:
91:c1:74:0c:77:38:76:72:56:1a:21:38:d6:de:3d:
79:fb:f7:33:6b:ef:a6:82:cf:1a:db:a8:fc:dd:73:
50:31:24:84:78:32:73:75:e9:0b:42:07:07:46:a0:
79:79:50:69:7f:a5:c5:fe:02:f2:b7:9a:47:87:f8:
7b:08:90:22:ad:d6:fb:08:0d:cb:22:0d:2d:4b:1c:
f5:2a:b9:b9:2c:16:fc:35:a9:cc:9f:d8:96:b4:d4:
2a:fb:3f:ae:3a:66:50:0e:01:22:7c:29:65:6e:6a:
f3:69:52:03:91:c1:e2:bc:c6:2c:22:e1:0c:0d:4f:
ea:e4:42:47:19:af:f2:ba:b4:89:b2:d9:57:2c:eb:
82:8c:05:2a:df:b1:10:46:de:e7:3c:32:d8:92:79:
c4:6a:3a:36:22:48:b3:c7:e7:3c:0e:13:36:74:d1:
eb:43:9a:09:47:3a:96:da:1c:b6:b4:af:26:32:d3:
00:3a:eb:19:0c:bd:55:fe:48:95:e9:09:66:36:25:
4e:19:7a:3c:53:1a:9b:d7:30:89:fd:ab:0f:7d:8b:
72:47:67:c3:f8:0d:fe:28:50:56:66:b3:32:36:0e:
ab:3a:ad:0b:f5:ad:cd:b1:0c:a7:53:5a:14:1f:07:
e8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:64:43:50:AE:D0:A2:62:97:84:D0:7D:81:1D:E7:ED:24:37:20:AB
X509v3 Authority Key Identifier:
keyid:D3:1A:F2:87:2C:3F:55:03:07:38:66:DF:FE:F4:88:B7:17:83:DA:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:e8:bc:29:d7:eb:75:93:af:67:2a:63:19:8d:8e:f9:03:1b:
09:06:64:d8:1f:ec:9c:00:3a:72:59:ac:2e:79:76:ae:e1:d9:
c3:d3:01:a7:3c:a9:c6:5b:43:b8:4e:d0:68:14:37:b7:d0:01:
e5:6d:94:06:45:38:01:4f:35:6f:f7:84:1e:6e:31:18:83:8f:
02:b1:ba:85:07:e4:40:ba:53:b0:ed:74:9d:26:16:99:84:95:
99:0f:04:03:df:b7:34:bf:9b:4d:a9:fe:c9:5f:b1:4a:e4:b4:
a1:24:84:e0:23:9a:3d:4f:67:ef:06:87:01:a9:e4:aa:cd:24:
8f:fc:5e:7c:05:9b:c9:e4:97:0a:60:72:33:3a:41:74:25:17:
2a:4d:08:b6:73:c3:a7:e1:03:b3:3f:32:87:28:7c:de:bf:d9:
42:3a:25:74:6a:f5:ad:a1:74:d3:67:7a:21:08:47:44:40:2f:
59:fd:1c:60:9a:36:46:8c:ff:55:41:f1:3a:bf:ea:5c:55:d3:
0f:de:62:4b:46:c1:a7:cb:af:75:2b:03:1e:62:21:6f:78:5e:
37:c9:eb:04:df:e6:42:9f:c3:1b:38:0f:db:b3:18:0a:16:e8:
90:8c:4d:2d:d8:a4:fa:d1:e5:0b:fd:c0:6e:8a:5b:21:a7:e6:
f1:a1:3e:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 06:30:41 2025 by rpki-client