Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
File: SiHJG2O7vaiASnSfPWEOiyF_m3M.mft (raw, json)
Hash identifier: UYIFk5KgogO/jjCATUW4IJJrcXKOXnE/yQPtFIO9Gew=
Subject key identifier: 92:1F:E5:4B:19:1B:0D:A6:51:2F:11:B1:88:19:38:1F:96:5E:40:EB
Authority key identifier: 4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
Certificate issuer: /CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Certificate serial: 019A4F992993005839CAE613AEC8918C4732
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
Manifest number: 130B
Signing time: Tue 04 Nov 2025 16:00:28 +0000
Manifest this update: Tue 04 Nov 2025 16:00:28 +0000
Manifest next update: Wed 05 Nov 2025 16:00:28 +0000
Files and hashes: 1: 1Z1yWNgRSnqR3pt5WlApDelQe4o.roa (hash: 7G52qXZFDFq0XDjJ+/lW8m4SCa70rkFS2r1Ec1zORA4=)
2: SiHJG2O7vaiASnSfPWEOiyF_m3M.crl (hash: pTsGPkNyafng2rjVZbk1cui1x99VrvDSqt1pK47ZV7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:29:93:00:58:39:ca:e6:13:ae:c8:91:8c:47:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Validity
Not Before: Nov 4 16:00:28 2025 GMT
Not After : Nov 5 16:00:28 2025 GMT
Subject: CN=921fe54b191b0da6512f11b18819381f965e40eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:06:d1:bb:00:8a:23:59:b0:7a:bb:7b:49:f6:
a7:9c:3b:00:4d:63:6a:b2:87:31:9e:fd:d3:79:9d:
e3:7c:15:48:bd:a9:d4:b6:f3:7d:2d:c5:45:e6:01:
84:1a:74:e4:82:7c:db:5d:a7:cd:b2:55:d1:3c:b7:
8c:51:87:7d:7e:c4:72:be:3f:d8:bb:72:7e:52:7b:
86:f0:df:71:ff:d1:c1:4c:81:a4:c6:7e:01:a0:8c:
96:3c:29:da:b9:26:4b:bb:e9:13:79:37:c3:e5:64:
cc:3c:dd:fc:46:c2:b5:42:e1:05:6a:c2:82:15:3c:
54:0b:d5:2c:83:eb:a4:8c:e1:0b:f9:2e:98:fd:3a:
0b:77:78:9a:40:24:29:88:c9:8e:c7:01:e4:ba:c5:
5d:04:2b:08:e8:83:ec:82:c4:09:e9:5c:60:0f:22:
23:2b:e5:8a:bb:1d:06:74:97:46:46:b0:2f:46:76:
20:ba:6e:98:59:ec:f9:94:dc:f1:a8:5d:1d:3a:97:
0c:a3:68:c0:f3:59:74:f9:43:58:03:3e:a1:84:46:
1f:a9:80:b9:f7:02:91:fc:da:fa:4a:55:a9:67:1c:
f8:df:c4:96:9b:11:ad:14:c4:fa:6f:7f:e6:07:fb:
a4:51:a1:c3:0b:c2:d5:4c:60:3c:d5:3f:37:18:cd:
22:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:1F:E5:4B:19:1B:0D:A6:51:2F:11:B1:88:19:38:1F:96:5E:40:EB
X509v3 Authority Key Identifier:
keyid:4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:1f:cd:09:7a:d3:6e:57:ed:b0:e2:93:f9:31:9e:f0:18:e2:
22:20:9a:b7:f8:4d:a3:5a:62:51:36:ad:0f:cd:65:48:04:c4:
af:9c:50:c5:37:b3:6e:06:dd:01:05:ad:3b:c4:cc:75:a8:75:
b1:b9:44:e8:db:b6:9f:fc:16:c7:32:34:e3:ca:10:87:f7:6f:
eb:73:67:70:c7:dc:db:ba:69:6b:85:e5:b1:8d:bc:19:d5:8c:
0b:c1:12:be:42:70:2b:31:96:cf:50:14:c5:32:f4:6c:8a:c1:
6d:36:8a:c9:ee:d1:fe:71:28:28:91:15:e6:d7:a4:1d:20:5c:
71:ca:5c:56:42:41:31:41:f6:90:82:cb:a3:02:06:e4:ca:d7:
f1:ac:10:dd:11:91:73:6f:71:ed:99:88:d1:d1:03:38:7c:a0:
6c:87:9e:eb:fb:1e:fe:c3:ce:71:53:74:04:cc:81:e1:1c:09:
88:ad:a7:ac:fd:85:6c:d3:20:c9:dc:cd:05:c9:e5:7a:8d:e5:
76:26:f0:af:39:57:1d:af:e2:13:0d:3e:5f:c9:22:b6:1b:96:
29:63:04:f6:29:35:4c:57:a0:0d:85:f6:99:fa:71:c5:49:9f:
a2:5d:a9:b8:4c:a8:da:a8:39:20:89:a7:2a:ba:81:2e:5d:16:
08:c9:7f:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:52:55 2025 by rpki-client