Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
File: skTScYj-UmvXJjZzgZXR639gYzU.mft (raw, json)
Hash identifier: AXUZcJ6tCt19t6Wrqirg/6bYSs6G1X0sPtRVo6Pvqrs=
Subject key identifier: F5:B4:98:15:41:EC:47:C2:59:72:77:A9:3F:3C:28:31:83:C3:FA:8A
Authority key identifier: B2:44:D2:71:88:FE:52:6B:D7:26:36:73:81:95:D1:EB:7F:60:63:35
Certificate issuer: /CN=b244d27188fe526bd72636738195d1eb7f606335
Certificate serial: 019A50E2F264E79E0950B073872AD46219E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 22:00:41 +0000
Manifest this update: Tue 04 Nov 2025 22:00:41 +0000
Manifest next update: Wed 05 Nov 2025 22:00:41 +0000
Files and hashes: 1: i9ojhRN5HPqLEONrX8zwsFoi9sk.roa (hash: MIYLI6ZlVjLLI/2sB5M12T0X1D0wb0+Le0eSAFyUiKg=)
2: skTScYj-UmvXJjZzgZXR639gYzU.crl (hash: +cnBtGei1ZqT8ia/ewjwNS9gb5evbIJ1nAxPgrG8OqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e2:f2:64:e7:9e:09:50:b0:73:87:2a:d4:62:19:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b244d27188fe526bd72636738195d1eb7f606335
Validity
Not Before: Nov 4 22:00:41 2025 GMT
Not After : Nov 5 22:00:41 2025 GMT
Subject: CN=f5b4981541ec47c2597277a93f3c283183c3fa8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:74:83:94:d0:57:d2:96:7b:f6:d8:28:c6:ce:
ea:b4:9f:ec:c9:47:fb:75:91:17:9a:29:d5:07:19:
68:70:71:30:12:96:ac:63:a8:e9:fa:3f:b4:e1:c4:
ab:44:e9:0f:59:49:ce:bc:a5:98:32:47:fe:83:25:
63:a4:7f:12:6a:15:2d:dd:89:71:a2:53:b2:1c:a7:
2a:d9:f2:08:63:6e:ff:df:0c:c4:66:05:5f:19:d2:
03:50:2c:63:b1:99:56:db:49:a2:1b:1b:ca:96:3b:
ee:fe:85:a8:ff:5a:5a:fe:2b:b8:5a:fb:db:fc:e1:
fd:c8:f6:9c:74:7b:cb:5e:c8:14:90:53:bc:f4:fe:
27:62:c8:17:a6:68:7a:91:8b:a3:f7:94:68:46:c2:
6f:0f:54:2d:c6:d0:42:d0:12:84:4d:2d:27:bc:d7:
a5:a3:ba:5e:a0:dd:b4:5f:45:db:58:61:9b:f2:91:
2c:7f:74:53:5d:7b:b7:08:8a:14:61:5b:cc:57:51:
8a:03:eb:6f:89:89:cf:04:3c:eb:db:ff:24:17:c7:
d6:65:0e:7c:d9:69:fc:ca:ce:f5:7c:d4:12:35:22:
ec:33:c6:3e:7a:14:c1:cd:3c:6d:69:bc:4b:ed:59:
04:7d:96:a8:03:eb:bb:e1:dc:a9:4f:d4:cb:4b:32:
3e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B4:98:15:41:EC:47:C2:59:72:77:A9:3F:3C:28:31:83:C3:FA:8A
X509v3 Authority Key Identifier:
keyid:B2:44:D2:71:88:FE:52:6B:D7:26:36:73:81:95:D1:EB:7F:60:63:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:bf:29:83:15:15:cc:9f:b1:de:23:62:af:a8:82:9c:63:40:
64:c0:21:29:02:a0:9c:62:79:5e:00:bc:a5:3a:21:f1:fa:f8:
40:52:64:b7:38:d5:33:a7:a3:71:0f:f6:ce:98:8b:43:6f:8a:
44:b8:10:61:84:3d:87:b0:a9:99:5c:cd:e9:38:9a:da:54:c1:
f0:83:15:66:63:79:1c:32:3c:be:02:84:cd:f8:85:2e:da:f6:
08:82:93:71:c3:4b:9b:e3:91:66:26:37:93:69:fb:a4:51:12:
41:96:dd:31:2e:43:33:40:5d:15:6f:25:6a:cd:e6:97:5b:a0:
73:30:d3:69:90:ca:94:fd:ba:4e:f0:37:30:86:f5:6d:c3:fa:
37:4d:46:1a:57:b1:8e:d6:7e:01:98:9b:06:a2:5c:ed:50:eb:
f0:b5:07:c1:b3:69:7b:e5:1b:6b:12:1b:ed:22:a6:6b:cd:76:
63:9b:0d:9f:a8:b7:1a:fa:bb:33:38:f2:ec:31:fe:2c:a8:7f:
2d:09:31:a3:4a:77:35:da:7c:0c:07:91:d8:cd:48:b7:38:7d:
55:d1:0a:3d:91:50:8b:f3:c1:72:57:d7:3f:5e:f7:30:c3:a0:
dd:5c:22:1c:44:4c:55:48:01:50:18:08:fc:7b:50:ff:9c:39:
ba:75:3b:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 06:53:18 2025 by rpki-client