Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft
File: B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft (raw, json)
Hash identifier: it3Xd+GWrUJa32/xYpAQc41MzT+Kr1LCvsFxgoO9GJU=
Subject key identifier: 9A:D9:61:AD:85:33:7E:F6:75:3F:93:C2:2F:0E:F0:96:EB:25:B2:06
Authority key identifier: 07:81:EE:86:9D:2E:1C:20:0F:F8:C6:97:E2:D3:7E:AA:42:94:0A:36
Certificate issuer: /CN=0781ee869d2e1c200ff8c697e2d37eaa42940a36
Certificate serial: 019A4E861C0CECD617492D3FFF3CBC2B1C1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B4Huhp0uHCAP-MaX4tN-qkKUCjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft
Manifest number: 120B
Signing time: Tue 04 Nov 2025 11:00:03 +0000
Manifest this update: Tue 04 Nov 2025 11:00:03 +0000
Manifest next update: Wed 05 Nov 2025 11:00:03 +0000
Files and hashes: 1: B4Huhp0uHCAP-MaX4tN-qkKUCjY.crl (hash: sFiaGkdT3ju68Cj/kb54fZSSaXebTszrf+EvdffdY6s=)
2: jIFgf1lBNqu6NES_hhmJCRkx6WU.roa (hash: b4SkMZ2qfegq/aAVSnzcin5lHV5SoqB7AozMTZpTRfs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/B4Huhp0uHCAP-MaX4tN-qkKUCjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:1c:0c:ec:d6:17:49:2d:3f:ff:3c:bc:2b:1c:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0781ee869d2e1c200ff8c697e2d37eaa42940a36
Validity
Not Before: Nov 4 11:00:03 2025 GMT
Not After : Nov 5 11:00:03 2025 GMT
Subject: CN=9ad961ad85337ef6753f93c22f0ef096eb25b206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3e:1c:ac:36:d0:54:be:ed:10:43:71:e5:62:
60:01:60:40:24:6d:f1:f1:ff:9c:0c:64:8a:15:5d:
e6:ef:e6:20:21:bd:72:91:f9:ea:2d:6c:4e:04:3f:
c0:dd:05:00:b1:8b:f1:bd:95:2e:e0:8c:58:60:c6:
a0:12:c9:ba:35:79:ad:a6:8f:27:43:00:ac:e8:b2:
a4:93:c1:de:f0:15:65:70:68:17:89:ea:de:50:f7:
90:d9:30:9a:83:0c:68:29:e5:a8:72:2c:3e:75:fa:
e6:6e:82:f2:bb:e9:61:41:89:6d:cd:00:e0:ed:39:
ef:20:48:99:18:76:26:bd:49:fc:50:3f:c2:98:ee:
c0:14:ac:fd:87:45:fd:06:c3:0e:f8:02:4c:d4:83:
d8:c4:00:d6:03:ea:f7:f3:9b:0d:51:26:07:1f:17:
65:2f:2f:7e:09:b0:3e:6c:74:e6:c1:c5:4c:c4:2d:
a1:55:f3:b5:f3:56:f6:1f:8d:71:f6:43:af:34:3f:
2b:45:56:a1:a2:0d:c4:89:ba:3e:b8:41:ad:e6:38:
27:b1:d2:b4:68:e1:c0:da:23:77:26:ad:da:bd:f0:
84:ba:19:7c:b1:d4:c9:fb:c3:fe:66:4e:11:e8:75:
b4:fd:dd:34:b6:2c:93:1f:c9:ff:10:e6:13:e7:b6:
14:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D9:61:AD:85:33:7E:F6:75:3F:93:C2:2F:0E:F0:96:EB:25:B2:06
X509v3 Authority Key Identifier:
keyid:07:81:EE:86:9D:2E:1C:20:0F:F8:C6:97:E2:D3:7E:AA:42:94:0A:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B4Huhp0uHCAP-MaX4tN-qkKUCjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:64:46:93:f2:b7:b2:e3:28:ec:45:a4:29:d8:a0:0b:0f:7d:
f7:95:7e:da:e8:b8:c8:fc:c1:57:62:78:b4:1b:85:96:7a:75:
6b:ca:ae:d2:5f:08:28:16:34:d4:fc:f9:7a:e9:ed:23:fb:cf:
b2:6c:20:dd:c4:0d:e7:c7:a4:9b:12:3b:98:74:ec:62:01:2e:
18:1f:5e:a5:b7:98:68:87:99:54:a1:8d:04:ce:4c:cd:06:b6:
12:b7:5c:85:b0:5a:0e:c9:77:c8:cf:9b:88:61:12:4d:ee:90:
39:f4:78:c7:c2:d8:b9:6d:2b:cb:04:ce:98:dc:1f:f8:31:f3:
40:30:3e:83:24:07:e9:f8:63:a1:9c:05:8e:8b:55:51:c4:8c:
28:3b:78:96:ec:1a:4d:a6:4b:33:27:53:d6:51:7a:33:48:7c:
d6:aa:c5:b3:f7:45:52:a1:db:a9:5f:16:ff:5e:3a:14:ab:e6:
4c:23:64:e4:c7:ca:5d:1f:e2:9f:11:cb:60:3b:0a:db:79:66:
37:2d:bf:36:85:40:41:37:9b:93:14:ac:dc:99:ca:e8:db:1c:
11:a3:8b:41:9a:be:16:d6:7b:60:e1:df:c0:ee:3c:41:a3:a7:
e2:3e:6f:55:61:fb:c9:f5:34:67:51:b1:79:55:56:f9:c4:9b:
94:fd:7d:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:10:02 2025 by rpki-client