Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
File: sdLmgf8j3d89UXhY4cZKHa0phyk.mft (raw, json)
Hash identifier: oY4pRuxxLfyGi70tCru1RPBi+Qy3IfnFnawdLStNNm0=
Subject key identifier: 74:2C:9C:6A:E7:80:EB:B4:6F:39:BC:2C:D6:91:66:A7:BD:38:A7:49
Authority key identifier: B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
Certificate issuer: /CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Certificate serial: 019A4EF53E99FE1B4D64DA2312C183AFD4C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
Manifest number: 155A
Signing time: Tue 04 Nov 2025 13:01:26 +0000
Manifest this update: Tue 04 Nov 2025 13:01:26 +0000
Manifest next update: Wed 05 Nov 2025 13:01:26 +0000
Files and hashes: 1: hDoqXFR8UibPRuqFY2xn-m_-15I.roa (hash: qknu8HOpVZZ1hKraF3WMV/fgLgKt1U80KJN/d09ixdI=)
2: sdLmgf8j3d89UXhY4cZKHa0phyk.crl (hash: 86RxLt6cI00AFIs+2eg/t4UM4fsOtEzwsWWSbIJvVo4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:3e:99:fe:1b:4d:64:da:23:12:c1:83:af:d4:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Validity
Not Before: Nov 4 13:01:26 2025 GMT
Not After : Nov 5 13:01:26 2025 GMT
Subject: CN=742c9c6ae780ebb46f39bc2cd69166a7bd38a749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b0:ef:aa:df:a8:e3:d3:19:14:14:48:56:7b:
46:02:6b:b2:0f:26:87:e0:18:61:1a:52:53:94:66:
b1:29:8d:53:5f:88:f9:68:d6:fa:fc:7f:95:84:b9:
be:20:b5:55:15:41:15:ac:f9:b9:c6:0e:74:d5:00:
5e:e5:3f:8b:2f:3e:a8:6b:97:b8:5e:81:0a:75:02:
91:23:b0:18:f9:17:28:82:6e:55:af:7c:c6:29:2e:
07:73:60:21:09:23:10:9a:10:65:dc:47:ee:fa:c2:
6f:d4:8a:c5:8c:0f:36:71:a5:92:5a:33:ae:fc:d7:
ab:46:38:40:32:e0:00:56:e0:dc:40:e4:72:5d:a7:
5b:67:9b:8b:a6:86:7a:9a:ac:26:a3:37:2f:36:8d:
aa:f3:28:da:42:a1:e6:71:35:05:1d:fd:35:d4:16:
1c:f1:f4:6b:55:55:f1:44:3d:ab:f0:85:0d:e2:57:
9d:d2:60:b1:d0:53:1a:23:f8:5a:b7:e4:29:98:27:
b9:43:17:74:0e:0a:15:c2:ad:9f:bf:1e:98:ff:0f:
5d:2f:90:34:46:f0:c4:1a:e9:2d:30:1c:6c:2c:cb:
21:fb:e2:7a:21:a1:5e:d9:83:72:b0:71:57:a6:a9:
43:c5:36:6a:da:b3:d7:25:5c:c9:fb:2f:59:ba:8e:
df:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:2C:9C:6A:E7:80:EB:B4:6F:39:BC:2C:D6:91:66:A7:BD:38:A7:49
X509v3 Authority Key Identifier:
keyid:B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:5a:f6:4c:18:97:4d:c9:6f:07:86:a5:60:70:f7:52:18:86:
77:af:15:56:e7:7a:ff:be:75:72:63:93:c3:c4:dd:2f:9f:46:
10:5d:47:13:13:cf:b2:a9:9c:7d:b1:52:2b:b8:64:c6:da:10:
91:c7:80:e6:f5:d2:9e:40:ff:be:45:70:f6:32:08:77:e9:fc:
e5:5f:f0:75:eb:8c:bb:0d:97:4a:a0:30:a0:d2:21:62:c5:06:
7c:f6:43:bb:4c:ef:8a:3d:67:ca:0d:a9:b0:bc:4f:08:66:93:
f9:6f:11:e6:44:3f:f9:16:32:53:56:06:b5:04:d9:bb:0d:e2:
31:0e:0f:83:d3:a5:b1:c9:8e:15:d7:61:c4:13:9a:5a:94:2b:
8c:b5:8c:7d:ea:29:8d:e9:9a:ec:38:9e:24:6d:f4:4f:0b:53:
1f:b9:ab:c5:50:97:12:1d:2a:6a:25:80:81:3d:e9:62:69:e4:
f2:af:2a:f9:8e:e5:06:76:61:5a:34:7b:4a:64:66:5c:1b:f0:
b9:10:a5:a6:44:58:3c:94:5f:84:bc:ea:eb:71:65:f0:f3:f3:
f8:9a:49:37:b2:8b:95:e8:88:4c:4e:f5:16:8d:4f:ff:8a:e4:
6a:b0:2f:32:dd:1c:93:b1:09:08:cb:34:d0:00:2a:62:0f:ca:
a0:79:43:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:01:03 2025 by rpki-client