Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
File: t3gT9sVnClhoatw9SVV0QpXdFBk.mft (raw, json)
Hash identifier: jlSB0ZCoBrEZUt6xQdYpSvY/8WY5ZwnOSGfrauRi+PQ=
Subject key identifier: B0:F4:64:07:64:04:B8:05:FE:15:C7:52:E8:67:41:28:5F:98:1A:15
Authority key identifier: B7:78:13:F6:C5:67:0A:58:68:6A:DC:3D:49:55:74:42:95:DD:14:19
Certificate issuer: /CN=b77813f6c5670a58686adc3d4955744295dd1419
Certificate serial: 019A4F621D794DDD69F87DADBE26DD6EB3E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
Manifest number: 0FE5
Signing time: Tue 04 Nov 2025 15:00:21 +0000
Manifest this update: Tue 04 Nov 2025 15:00:21 +0000
Manifest next update: Wed 05 Nov 2025 15:00:21 +0000
Files and hashes: 1: t3gT9sVnClhoatw9SVV0QpXdFBk.crl (hash: 2ICpaHf1ZbptKRAjJpc3+V/+sC2oSbm33qekqMX0oKc=)
2: xy0ayvCMPxVGUij5mpyeTNFKRNw.roa (hash: tXbOwwPUAQhZJRCjintnYpclKOHIFWoxy2lUX1RBhtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:1d:79:4d:dd:69:f8:7d:ad:be:26:dd:6e:b3:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b77813f6c5670a58686adc3d4955744295dd1419
Validity
Not Before: Nov 4 15:00:21 2025 GMT
Not After : Nov 5 15:00:21 2025 GMT
Subject: CN=b0f464076404b805fe15c752e86741285f981a15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:41:c0:2b:79:09:15:f9:66:2d:d3:89:a5:7d:
bc:c6:4d:9c:e6:18:c1:a2:98:ce:60:01:93:8d:3c:
ee:cf:42:f8:0f:6b:37:39:53:4d:52:da:53:40:d1:
1c:59:16:80:0f:5e:20:ca:3c:87:ad:b6:09:ec:97:
af:f7:b5:21:9a:30:59:f6:fd:ad:d1:6d:01:d7:ba:
9b:62:46:4c:f6:fa:d6:6a:dc:3f:3c:b5:c8:f8:52:
d3:33:c9:8f:32:38:3d:ee:65:25:aa:df:cc:77:f7:
d1:56:69:72:c8:65:e3:6d:17:3d:e8:fc:a8:9d:53:
d4:68:70:29:7a:87:09:06:f9:9f:8d:f1:bc:35:bb:
82:71:a4:06:31:80:26:c3:06:07:19:29:12:d0:75:
70:63:68:71:64:14:a7:64:4d:fa:5e:03:fe:88:61:
20:d6:8c:3a:5c:c2:02:3d:4d:48:4a:cc:ff:95:b9:
c8:f6:3e:e2:e2:d5:a3:d2:b1:d3:42:d2:a3:fd:f3:
90:39:8e:bd:c0:9f:df:78:d5:6f:5b:ec:67:c9:d7:
8b:20:f0:e8:b3:84:d8:e7:57:32:98:8b:52:72:40:
47:62:73:58:ab:df:63:f9:7e:45:d2:b7:92:13:2a:
a0:f4:cc:5f:5d:6b:1d:8a:dc:f6:a7:d2:90:63:fb:
9a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:F4:64:07:64:04:B8:05:FE:15:C7:52:E8:67:41:28:5F:98:1A:15
X509v3 Authority Key Identifier:
keyid:B7:78:13:F6:C5:67:0A:58:68:6A:DC:3D:49:55:74:42:95:DD:14:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:2e:5d:f9:c0:3c:6b:0e:11:9d:43:5e:e2:b7:2b:39:be:b7:
1d:84:ff:eb:fb:a5:21:2e:14:42:07:ec:b7:b1:70:78:59:26:
99:50:d9:6e:3c:25:35:15:83:21:a4:0f:3b:46:16:4d:d2:71:
98:42:b5:60:07:65:e1:cf:66:df:66:a0:51:28:c1:bf:a4:e8:
a3:f9:ba:5c:e2:45:4a:53:f8:33:f0:53:c1:a1:0b:1d:d7:f9:
82:20:8d:67:75:71:81:31:ba:b8:89:a8:06:16:d6:8e:5e:16:
72:3b:3d:34:61:5c:ee:1c:7c:34:b4:1d:cd:95:48:ce:7c:46:
bb:28:4d:c4:05:8e:16:09:69:76:31:95:2f:56:c8:85:67:d6:
60:49:d8:4e:70:89:52:60:84:bc:a3:87:1e:e0:4d:1d:95:e7:
9b:27:52:f3:44:de:0d:ce:22:fd:98:8e:ae:bc:ec:c2:6e:db:
a0:17:1c:c0:8a:fa:97:72:1e:9a:45:28:a9:6d:7b:ef:34:c6:
5f:da:61:fb:6b:3e:6a:7b:f3:84:ef:e2:f8:3a:af:11:0b:46:
46:e1:b9:64:2d:a4:1b:7e:a7:b4:9f:cb:58:0e:15:b3:03:c3:
7c:23:66:80:2a:93:06:c9:53:22:64:0e:09:9c:fd:b4:32:59:
80:7f:ca:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:20:40 2025 by rpki-client