Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
File: ryfUX8GLqRerHomhfvC2NgmEgiQ.mft (raw, json)
Hash identifier: tt6Nf4wvy0d7H6bYJ1WX/NBeaS3p1Fw+D0m6bPp7BP4=
Subject key identifier: 89:2F:44:E9:0D:ED:48:92:66:28:0E:14:2D:A1:16:3F:0F:03:E3:1D
Authority key identifier: AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
Certificate issuer: /CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Certificate serial: 0199FCC609DBBD0EB228D9F1AC6C36CA43D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
Manifest number: 138B
Signing time: Sun 19 Oct 2025 14:01:01 +0000
Manifest this update: Sun 19 Oct 2025 14:01:01 +0000
Manifest next update: Mon 20 Oct 2025 14:01:01 +0000
Files and hashes: 1: ryfUX8GLqRerHomhfvC2NgmEgiQ.crl (hash: kpjvX65dmW9Ql2wZ9itN56dFXBpJM/2RFFFa6uJaFRc=)
2: zl8vYnMSKo50V7tHcL3U74d2LS4.roa (hash: cxI3XYqo0XKxXcEnFf9KagnCReAfMGFWl39LE0K//l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 14:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:09:db:bd:0e:b2:28:d9:f1:ac:6c:36:ca:43:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Validity
Not Before: Oct 19 14:01:01 2025 GMT
Not After : Oct 20 14:01:01 2025 GMT
Subject: CN=892f44e90ded489266280e142da1163f0f03e31d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:91:f9:e4:e7:9d:63:3e:55:c3:54:55:fd:e3:
86:c2:5a:b4:3e:f9:d1:3f:5f:30:4a:05:74:c0:58:
36:50:55:7b:dc:1c:76:97:b9:d2:c5:c8:39:53:6b:
9a:24:79:c0:d3:a1:c6:d1:8e:d8:8b:91:16:67:af:
4b:0e:8e:bb:ab:f5:4b:0f:2e:db:5f:2d:56:fd:9e:
70:0f:19:f2:bb:19:48:4b:3d:8d:bd:66:22:13:d7:
aa:b0:28:82:a4:08:be:0f:15:be:9f:4c:73:3e:4c:
19:13:e9:92:7f:72:11:4f:3c:65:7a:b5:ce:19:af:
e6:56:d0:12:e8:33:a8:cb:03:87:13:75:8e:8d:16:
fe:b6:59:e8:f5:d3:04:ff:26:ba:79:be:59:fc:24:
f4:e8:1a:d9:48:25:9e:ee:72:fc:50:40:62:79:d7:
e4:0e:eb:2f:a0:67:88:0b:a1:d5:8e:cf:c0:d5:fb:
a1:b2:2b:87:60:ef:65:2d:39:48:49:26:2a:bb:dc:
21:29:dd:23:2c:ee:25:6a:bc:d0:d2:94:d7:9b:8a:
d0:4d:ca:cd:48:47:21:13:68:f7:0e:69:61:aa:27:
de:72:6a:d1:96:1c:df:fc:59:15:e8:b2:14:a9:08:
dd:2c:ba:4e:c2:be:b2:a5:21:29:29:60:f0:49:11:
eb:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:2F:44:E9:0D:ED:48:92:66:28:0E:14:2D:A1:16:3F:0F:03:E3:1D
X509v3 Authority Key Identifier:
keyid:AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:fc:da:fc:ad:cd:ec:4d:78:95:ef:9d:0c:ec:30:32:02:ed:
a0:45:ca:8d:8b:63:b4:68:c3:21:af:95:1f:6f:29:c1:82:6c:
67:90:1c:65:f8:24:d4:31:5c:a9:c3:77:80:0f:92:15:f4:69:
2c:30:0c:74:8c:38:a6:ba:95:ed:99:6e:93:42:dc:e4:4a:92:
90:32:d9:37:60:1a:0e:f6:e5:1e:86:8e:72:d7:fd:0d:9f:52:
0d:5c:f9:22:d5:bf:af:f1:17:3b:0d:8b:51:76:9d:1a:a6:8c:
fd:20:59:d6:f5:e3:32:a9:c7:d4:0d:80:38:70:e4:f9:86:6f:
3c:b5:dd:7b:30:86:dd:b8:aa:3e:93:e9:aa:fd:bf:71:de:a2:
00:23:3b:3d:77:af:bb:3c:57:50:25:10:81:cc:9f:52:e4:2e:
4b:89:50:a4:86:3a:b8:9d:58:3b:fa:26:84:69:c3:cd:72:67:
02:cb:44:02:f1:9d:30:7e:a3:43:a6:ac:03:45:b6:e3:70:96:
f2:11:84:16:4a:53:28:f5:d1:83:6a:a2:51:ee:3e:5c:2f:ed:
a6:52:ae:c2:0a:0a:7d:ea:d2:a1:62:2f:d9:b6:de:f8:c4:74:
31:32:f6:70:0b:56:99:9e:a8:99:90:95:bb:61:f1:5b:10:43:
15:21:0f:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:06:33 2025 by rpki-client