Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
File: rysOIXo1FoOSIGvac85hlTWgLzU.mft (raw, json)
Hash identifier: kiRWJ4S4ipFEmJ5BtN2kRqlqCiDk7iASWUDJTEpAN5U=
Subject key identifier: 0A:1A:3A:FB:DE:CC:44:EB:76:EB:55:B3:49:F4:64:45:54:9A:8B:E9
Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35
Certificate serial: 0199FB45ABC30058B30CC67DE3FA98325A05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
Manifest number: 0B89
Signing time: Sun 19 Oct 2025 07:01:11 +0000
Manifest this update: Sun 19 Oct 2025 07:01:11 +0000
Manifest next update: Mon 20 Oct 2025 07:01:11 +0000
Files and hashes: 1: rysOIXo1FoOSIGvac85hlTWgLzU.crl (hash: gK3Iq8VOnSA6m57f24Y4x+0X4eOFvKZmylFqznWKE84=)
2: tKwKl17jXwIeAtAZEyALLLwTexA.roa (hash: E9CmZ9NzF2HrbXjpDzFF0Gs0klh/PHaYx1PKsYvWrwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:ab:c3:00:58:b3:0c:c6:7d:e3:fa:98:32:5a:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35
Validity
Not Before: Oct 19 07:01:11 2025 GMT
Not After : Oct 20 07:01:11 2025 GMT
Subject: CN=0a1a3afbdecc44eb76eb55b349f46445549a8be9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6f:ba:b3:14:49:e9:ef:64:70:0a:a3:3b:fd:
3d:c4:a8:e3:70:2a:24:95:09:60:05:72:73:31:22:
78:f9:ed:e4:11:eb:c5:ff:b6:1a:85:1d:ba:f2:3b:
40:61:16:f7:c9:bb:d2:81:57:0c:df:3d:6f:7b:84:
01:ef:9b:3d:4d:a2:8d:61:19:ff:83:df:af:2e:38:
e1:cf:c2:db:b9:96:87:a1:a4:26:99:0f:32:09:a7:
f3:00:c4:50:63:9c:5d:cd:da:be:91:c5:be:d2:71:
6f:12:b6:b1:b2:1a:5a:ed:3e:dd:16:55:5b:6d:b0:
13:66:e2:c6:8b:3d:17:a9:b0:00:aa:85:82:ac:a8:
90:4b:16:2b:28:06:6a:be:78:64:b9:44:a7:d2:ca:
38:f6:a1:60:63:b3:46:3f:d1:4a:e2:78:ec:8b:b1:
0f:6d:be:5a:85:90:14:b8:5d:60:cc:a1:96:a8:83:
21:9e:83:76:ea:6b:93:bf:e6:ca:ce:81:4f:73:2b:
e9:6c:4d:b2:c8:9c:e4:ac:fc:73:20:50:fa:1f:21:
ad:1a:52:89:40:51:21:2a:86:cc:f1:df:64:6d:7b:
16:47:ec:58:f2:ea:a0:ff:2a:40:8b:d8:e4:37:ad:
4b:57:e7:2b:fd:5f:49:0c:a1:0d:90:63:ca:cd:32:
34:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:1A:3A:FB:DE:CC:44:EB:76:EB:55:B3:49:F4:64:45:54:9A:8B:E9
X509v3 Authority Key Identifier:
keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:47:b7:08:23:81:7d:c7:ec:2b:ab:f6:01:46:e8:20:98:33:
21:69:81:55:75:e8:9a:3b:bf:74:92:b6:4c:da:f8:f2:2a:91:
db:b1:d4:9f:b6:30:e3:0e:15:a3:39:5a:d1:af:96:e1:66:d9:
19:8c:ea:fc:18:d4:ac:2a:c1:6d:98:a0:4c:db:68:0b:80:4a:
be:62:8a:2c:a2:c4:07:18:e7:94:dd:ae:42:b6:fa:86:5d:a3:
fc:ca:d1:d5:ae:eb:18:62:cc:21:48:67:bb:75:27:d5:61:b2:
a7:2e:15:e1:be:2b:fd:5b:51:5c:06:eb:dc:71:14:3c:47:e2:
d0:46:95:42:1a:76:30:7b:0f:a4:08:c7:0d:dd:e2:b4:da:32:
19:3c:0c:b6:59:aa:b7:42:21:db:54:ee:ab:45:1a:c8:03:22:
08:65:52:f9:4c:d2:1b:c8:32:39:e0:03:f1:c0:e2:1a:5f:c6:
fb:48:cb:60:ca:2a:db:fc:20:db:86:fb:6b:92:29:96:23:49:
47:a4:21:70:76:b9:f8:2a:b7:05:11:67:30:8c:fe:11:a6:1d:
c5:e2:2c:52:83:b4:2b:19:bb:86:4e:71:c5:92:43:24:13:37:
14:1c:58:0d:19:6b:bb:3d:a8:83:29:40:d1:2e:cb:e0:9f:87:
35:4f:99:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:10:55 2025 by rpki-client