Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
File: so7x9PiCePTfGec-M4HOzXjgacE.mft (raw, json)
Hash identifier: SqVQRLMU8khNtuVT3Ucdz+mzG7xUbhUjr7+HoeFcsik=
Subject key identifier: F2:45:39:C6:5F:9A:1E:2B:88:66:5B:D2:51:78:D4:58:9D:D3:9D:1F
Authority key identifier: B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
Certificate issuer: /CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Certificate serial: 019A4FCFDC9686CF2E99B8F53D0CB395BC00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
Manifest number: 03B6
Signing time: Tue 04 Nov 2025 17:00:13 +0000
Manifest this update: Tue 04 Nov 2025 17:00:13 +0000
Manifest next update: Wed 05 Nov 2025 17:00:13 +0000
Files and hashes: 1: ZWC54UPrMHyZ6gth2IDDnRYsMDY.roa (hash: 4Yk1QA2QugshfW9geeysUTQ4Sub4Aja/bv1m3JJnrLU=)
2: so7x9PiCePTfGec-M4HOzXjgacE.crl (hash: ha3E0r6y/Q0/a+1DpelEksPmoB82QiCfG7h+OodTzZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:cf:dc:96:86:cf:2e:99:b8:f5:3d:0c:b3:95:bc:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Validity
Not Before: Nov 4 17:00:13 2025 GMT
Not After : Nov 5 17:00:13 2025 GMT
Subject: CN=f24539c65f9a1e2b88665bd25178d4589dd39d1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:af:d4:f5:82:99:ed:06:5e:ae:f7:61:e4:1c:
db:7e:b4:ad:73:f3:42:9d:7b:be:c1:a4:a7:8d:f2:
89:30:b8:01:69:0d:c6:6a:1b:a6:ef:c0:7d:20:93:
3d:a7:06:1f:06:7e:30:77:cb:70:61:cb:87:5a:a8:
d0:e2:ed:79:a9:5d:ef:d3:c4:dd:08:3d:c8:1d:93:
46:85:d5:9a:1c:76:79:b6:bf:49:c0:9b:2a:6a:ef:
e8:fb:bc:f8:0d:3c:2b:18:9c:02:32:da:a7:40:8b:
a0:86:41:41:ac:5c:5a:c6:ed:78:03:6f:2e:67:4f:
c0:2b:c9:6f:59:65:80:67:c1:c1:48:81:c1:ef:41:
77:7c:cd:30:2e:2d:76:23:c3:e4:1a:13:ea:4c:d8:
5c:d6:55:7e:5c:55:ac:fc:fb:42:12:54:5d:bf:37:
34:e8:1b:5c:c8:21:10:9e:09:10:c3:54:61:ac:d0:
f5:b6:bd:60:98:de:ae:4b:83:63:84:79:20:ad:51:
97:d8:98:d8:7a:a2:e0:0f:11:45:a4:49:26:cc:36:
1b:e2:ff:fa:70:40:2f:66:b1:5f:de:af:db:06:ef:
86:86:8f:d1:07:43:51:5e:2e:3b:34:cd:22:26:df:
c5:34:87:74:cf:bc:94:92:33:97:a1:96:f0:ac:42:
3a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:45:39:C6:5F:9A:1E:2B:88:66:5B:D2:51:78:D4:58:9D:D3:9D:1F
X509v3 Authority Key Identifier:
keyid:B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:c0:59:4c:98:03:a0:22:ac:d3:dd:41:98:05:93:70:00:83:
36:ae:fc:ba:7e:01:72:91:21:91:da:2a:7f:17:de:3c:09:24:
ae:89:95:7d:a5:f5:d3:64:89:5e:77:57:18:61:b1:1e:d4:70:
b9:01:70:c6:60:9a:6a:ce:e1:b8:ea:79:8b:e8:c9:05:af:07:
38:a1:c2:5a:39:b8:d4:73:80:59:98:a9:34:c8:c3:a3:87:78:
fa:4e:2c:cd:9b:e8:7b:95:5f:fc:b5:e1:8f:e0:9e:c3:64:cb:
51:52:65:55:e1:a4:94:fd:81:cc:a1:d3:65:80:c2:40:d3:1e:
54:89:32:ed:34:1e:35:b4:87:fc:c8:79:c0:e5:49:05:01:cf:
6d:82:36:15:fa:0d:08:6e:20:ab:38:af:4f:5e:d0:0f:a2:4d:
71:a2:d4:1c:df:21:7b:66:21:91:20:99:7b:88:fd:93:a5:bf:
5b:64:90:9f:cb:44:42:0e:c6:4a:91:18:b6:30:75:bc:79:97:
63:0e:2e:16:1c:0e:3f:93:1a:1f:e8:35:a0:87:77:2a:34:85:
f8:5a:31:cb:f3:e6:b9:58:31:15:8c:bb:29:4d:be:c7:b4:a0:
fc:85:af:17:70:60:4b:fb:1c:74:78:52:6b:c6:98:d6:10:6c:
93:3b:38:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:39:12 2025 by rpki-client