Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
File: s_sdIFBvVM-5oflFH6EKiP87L2Q.mft (raw, json)
Hash identifier: ZjJpxqfb330xswep5nUcLZieD9+i2q8UtMLLYG4xFfc=
Subject key identifier: 3B:68:45:2F:C6:5F:23:85:4F:2F:A8:96:28:44:BD:8A:98:11:71:28
Authority key identifier: B3:FB:1D:20:50:6F:54:CF:B9:A1:F9:45:1F:A1:0A:88:FF:3B:2F:64
Certificate issuer: /CN=b3fb1d20506f54cfb9a1f9451fa10a88ff3b2f64
Certificate serial: 019A4F624A552001A261429A65758FA1BF30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
Manifest number: 0DB2
Signing time: Tue 04 Nov 2025 15:00:32 +0000
Manifest this update: Tue 04 Nov 2025 15:00:32 +0000
Manifest next update: Wed 05 Nov 2025 15:00:32 +0000
Files and hashes: 1: s_sdIFBvVM-5oflFH6EKiP87L2Q.crl (hash: dAlmmvP4DN44ZLVmXPtknq6c+Dbl0phQHP2Nu3MRmFA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:4a:55:20:01:a2:61:42:9a:65:75:8f:a1:bf:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3fb1d20506f54cfb9a1f9451fa10a88ff3b2f64
Validity
Not Before: Nov 4 15:00:32 2025 GMT
Not After : Nov 5 15:00:32 2025 GMT
Subject: CN=3b68452fc65f23854f2fa8962844bd8a98117128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:58:a3:48:39:ca:95:65:43:e8:2c:29:0e:61:
95:0f:5e:90:03:bc:07:48:8f:4a:d5:9a:fe:8d:4e:
38:89:7b:c7:d7:ef:a0:2f:18:68:78:1e:c0:4b:60:
a5:9c:17:70:66:d9:17:d1:8a:c0:5a:73:c0:71:22:
4d:33:f0:b4:be:cf:f1:7b:8e:27:28:68:86:c6:7d:
b6:19:65:f5:78:2b:93:41:7f:a6:97:09:cb:33:61:
71:fa:b1:ad:de:23:cb:93:73:c3:11:1a:4e:81:03:
b4:3b:51:24:50:8c:6b:ef:8f:aa:c4:07:39:ea:1f:
29:8d:8a:02:56:64:b6:98:fe:ab:c2:c3:b7:a9:75:
e2:12:f8:2e:55:c0:61:d7:af:fe:3e:e1:55:ac:05:
fe:29:95:ce:51:e6:b2:34:96:52:58:f4:02:77:f6:
dd:13:19:e4:79:57:cc:e5:a3:dc:70:aa:07:b1:11:
f8:5b:13:97:0b:12:85:31:f3:9d:43:b1:5c:1e:d8:
58:a9:20:a7:48:a3:59:47:9a:1c:f6:6f:e3:52:c5:
a6:77:03:0d:7f:89:05:3d:71:02:99:25:91:3d:4e:
2d:a7:3f:88:ad:3c:a0:da:de:18:0b:06:6b:ac:24:
63:33:19:fd:69:c6:35:fb:86:28:6e:30:db:06:15:
b6:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:68:45:2F:C6:5F:23:85:4F:2F:A8:96:28:44:BD:8A:98:11:71:28
X509v3 Authority Key Identifier:
keyid:B3:FB:1D:20:50:6F:54:CF:B9:A1:F9:45:1F:A1:0A:88:FF:3B:2F:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:d4:83:58:bb:56:48:95:6a:f6:b5:f4:b2:bf:cd:1a:bb:78:
34:32:8a:74:2b:a7:22:3a:86:d6:0b:b1:2d:d2:ca:75:d6:23:
6c:79:d5:1d:99:c5:bd:65:15:6d:dd:e7:4f:24:f6:50:a2:85:
a8:31:f7:e7:2d:08:85:0a:3a:1e:df:47:a3:c2:1b:3a:97:28:
22:e3:65:e6:c3:95:5f:70:27:40:fb:13:53:f4:c5:4d:70:ef:
26:69:dc:a1:ef:82:9c:45:71:09:5d:07:dc:9f:50:fa:03:59:
d5:96:e4:0a:28:55:87:41:b9:81:d0:f9:79:84:18:38:58:b9:
f0:3d:bc:26:f4:d2:d6:fa:ca:31:84:72:e4:07:54:6f:f7:cd:
17:a8:82:27:61:e1:45:7b:39:0b:48:6d:f6:dc:e4:3d:df:bc:
13:6f:a1:33:2a:a3:2b:7c:bb:fc:98:2b:7b:5c:1e:a7:56:c5:
ee:19:09:d3:0e:e2:0f:e7:2f:fa:9c:53:fc:0b:94:be:fb:18:
fe:25:c2:30:a7:72:39:89:74:43:ae:c4:6a:5c:f2:39:32:4d:
1f:0a:fd:62:1b:40:73:59:b3:49:c8:7b:86:f4:8d:8f:a5:bc:
88:e4:2e:f4:1c:e4:df:e0:c4:21:90:71:4f:24:03:f1:25:ba:
da:21:41:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:43:35 2025 by rpki-client