Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
File: s7b1TqmxWovU8zglOGyyd7A0Od0.mft (raw, json)
Hash identifier: 9xKtUVBEGCntlsmcU7rI612Hh368kZzHrHJKCGWqhW8=
Subject key identifier: DA:93:EF:5C:9B:C1:A4:3A:4C:81:28:56:BB:6F:1B:AB:12:70:15:24
Authority key identifier: B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
Certificate issuer: /CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Certificate serial: 019A4E862A576249861BEBFE0BD355189AB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
Manifest number: 1712
Signing time: Tue 04 Nov 2025 11:00:06 +0000
Manifest this update: Tue 04 Nov 2025 11:00:06 +0000
Manifest next update: Wed 05 Nov 2025 11:00:06 +0000
Files and hashes: 1: SpsqNCwISL1D7YWDs8MOUK4XUcQ.roa (hash: VKTdP32emCO1Alc2phplZ6z5V0MT3UL3VXfP0BBA76I=)
2: s7b1TqmxWovU8zglOGyyd7A0Od0.crl (hash: BTu/203oA/Z8seTTTb9X9b+sTmpZm0HHls6i4rw6cbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:2a:57:62:49:86:1b:eb:fe:0b:d3:55:18:9a:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Validity
Not Before: Nov 4 11:00:06 2025 GMT
Not After : Nov 5 11:00:06 2025 GMT
Subject: CN=da93ef5c9bc1a43a4c812856bb6f1bab12701524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:1c:69:7c:95:0e:23:49:b3:8d:bd:87:50:75:
2f:6a:95:7f:04:9a:ed:a8:bf:e6:f8:93:a3:b6:44:
ca:7a:8d:dd:b5:13:c6:64:2f:d5:3a:e0:34:18:c3:
9a:79:2a:9a:5e:6d:d4:7f:4c:56:a1:a6:0b:44:91:
bf:19:bb:c3:8e:14:56:ec:73:e8:14:7e:0e:e3:72:
df:a7:8a:82:10:ac:cd:0e:72:8f:f0:7c:31:19:2f:
f6:e5:b9:34:0b:a0:04:ab:d5:7f:be:9a:fd:fa:47:
a4:de:a1:50:f9:c7:45:52:1f:15:76:27:4f:a6:38:
12:ba:05:db:35:e4:c7:f1:26:bd:88:12:45:71:23:
69:41:eb:7d:a7:d6:5a:09:57:9e:2e:6a:b8:3f:a8:
5c:d1:c3:31:7d:28:fe:42:05:f6:fb:70:88:1b:45:
5e:44:47:c2:ee:67:63:ba:f3:51:1f:2a:46:5e:5e:
45:ae:dc:ae:d6:bb:dd:b4:ed:ee:ca:0d:3c:e4:af:
0e:d6:3f:4a:f3:51:6e:bb:f6:88:76:fd:4f:f0:f9:
5e:94:f0:2e:84:8a:1c:dc:ee:5f:cf:05:60:27:73:
04:49:63:8a:b9:8b:0c:c2:ee:05:f2:90:2c:f4:03:
e8:11:09:ba:2f:7e:51:23:b7:00:3d:e2:21:ea:ca:
8c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:93:EF:5C:9B:C1:A4:3A:4C:81:28:56:BB:6F:1B:AB:12:70:15:24
X509v3 Authority Key Identifier:
keyid:B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:0e:27:b7:2c:e2:4c:c4:e2:98:2a:e7:a9:6c:1d:38:94:e2:
7b:49:8a:60:4a:04:f7:c4:3a:05:88:b2:3c:1b:c7:d5:fc:8d:
0b:78:84:c9:f1:86:6c:8e:d0:74:7a:7d:9f:4b:a6:38:79:9e:
9f:8c:79:90:75:22:03:b5:fc:25:0f:13:6b:4c:b8:ab:20:31:
b3:08:4f:2e:b3:f8:cb:20:5b:ce:2d:c6:2c:14:42:72:b3:c5:
8e:54:8e:85:d3:94:59:89:c8:c3:3e:0e:ce:b3:be:a1:1c:63:
4f:e4:aa:3f:42:4e:f1:bb:ff:93:91:cc:9b:8f:ee:ef:9d:4f:
a2:a3:af:73:89:c3:1c:19:b0:eb:55:d0:e5:22:84:99:07:9c:
1a:29:75:12:5e:54:b9:9b:54:7c:72:f0:c8:0e:5d:db:2a:5a:
55:fe:cc:d7:c0:e3:c1:42:c0:f4:5c:ee:a1:37:12:dd:59:0d:
12:17:03:73:c5:8f:9b:dd:99:e8:1f:b5:61:8a:c0:74:9b:f5:
09:30:08:a4:07:17:73:3a:6e:4c:78:de:72:82:9a:66:2c:52:
31:d2:10:b7:e5:dc:ab:a1:af:eb:bf:16:76:2e:f0:65:ae:dc:
d2:90:5c:29:17:8a:e6:87:8f:89:39:16:42:24:f4:bc:32:5b:
e2:5f:ae:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:50:43 2025 by rpki-client