Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d8f845-6250-4df8-90c0-e24b579c9914/1/SS0kreN6IjOTKECddX1H-XlDt6A.mft
File: SS0kreN6IjOTKECddX1H-XlDt6A.mft (raw, json)
Hash identifier: aK8pcDYrS9tRwh3L+h1jsQ9Y65K130px6PG4XhOtR4g=
Subject key identifier: E1:3C:26:4A:EE:0E:13:C6:7E:77:6D:10:1A:5B:EA:1F:15:45:45:BC
Authority key identifier: 49:2D:24:AD:E3:7A:22:33:93:28:40:9D:75:7D:47:F9:79:43:B7:A0
Certificate issuer: /CN=492d24ade37a22339328409d757d47f97943b7a0
Certificate serial: 019A4E1914470D1FC2144FA3A57E8E842633
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SS0kreN6IjOTKECddX1H-XlDt6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d8f845-6250-4df8-90c0-e24b579c9914/1/SS0kreN6IjOTKECddX1H-XlDt6A.mft
Manifest number: 0E08
Signing time: Tue 04 Nov 2025 09:00:57 +0000
Manifest this update: Tue 04 Nov 2025 09:00:57 +0000
Manifest next update: Wed 05 Nov 2025 09:00:57 +0000
Files and hashes: 1: BB5_8BhJDTnxTKWGMNqj5oXCwds.roa (hash: LuNPA32mjFH0EXTfiP4dDNt0mH4g6yoGsaPQD7tGC9s=)
2: SS0kreN6IjOTKECddX1H-XlDt6A.crl (hash: oQt+VC+q3MKICd0sAA577qB2nc8op1Guegt/BrVKS3o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/d8f845-6250-4df8-90c0-e24b579c9914/1/SS0kreN6IjOTKECddX1H-XlDt6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/d8f845-6250-4df8-90c0-e24b579c9914/1/SS0kreN6IjOTKECddX1H-XlDt6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/SS0kreN6IjOTKECddX1H-XlDt6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:19:14:47:0d:1f:c2:14:4f:a3:a5:7e:8e:84:26:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=492d24ade37a22339328409d757d47f97943b7a0
Validity
Not Before: Nov 4 09:00:57 2025 GMT
Not After : Nov 5 09:00:57 2025 GMT
Subject: CN=e13c264aee0e13c67e776d101a5bea1f154545bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:57:06:63:86:38:6a:7b:54:c2:a9:07:d4:44:
61:63:9d:50:47:ab:c5:58:b0:21:83:ab:23:48:14:
44:9c:df:6a:9c:65:00:79:a6:9b:71:4f:af:a3:bb:
23:86:49:f3:21:91:65:33:52:28:a7:82:57:5c:16:
01:91:9e:b3:70:a6:ea:ec:14:68:50:c0:5c:85:21:
6e:2b:4a:d8:20:da:5f:98:1d:44:7a:fd:10:bf:bb:
12:67:13:c1:b1:6d:0f:4c:db:df:34:8c:e2:f9:bb:
28:d8:be:63:ab:30:55:0f:a0:51:bd:0d:ce:68:3f:
56:3a:ae:8b:66:a6:3b:12:9c:33:ae:ce:cc:f7:3c:
99:25:b9:00:12:27:dd:dc:f8:24:66:83:1c:ee:1d:
7e:19:5d:9f:83:6a:a9:c5:5c:70:8d:e3:1f:14:f5:
9b:fb:a7:0b:e0:ff:fe:03:66:77:3f:f9:56:ab:85:
fd:5a:57:2e:70:aa:f5:96:ac:24:09:41:08:03:92:
a3:76:20:ec:e2:44:ea:e9:c5:94:ba:40:f7:e1:ba:
00:e2:e3:10:cd:6f:0d:f5:2b:18:93:df:ce:f8:02:
ef:da:15:44:71:77:37:62:fa:bc:cc:04:f8:a9:9a:
08:0f:19:3e:b6:d6:e8:74:0f:93:de:85:36:59:01:
1e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:3C:26:4A:EE:0E:13:C6:7E:77:6D:10:1A:5B:EA:1F:15:45:45:BC
X509v3 Authority Key Identifier:
keyid:49:2D:24:AD:E3:7A:22:33:93:28:40:9D:75:7D:47:F9:79:43:B7:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SS0kreN6IjOTKECddX1H-XlDt6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d8f845-6250-4df8-90c0-e24b579c9914/1/SS0kreN6IjOTKECddX1H-XlDt6A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d8f845-6250-4df8-90c0-e24b579c9914/1/SS0kreN6IjOTKECddX1H-XlDt6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e8:97:26:b3:e9:e7:78:ca:ed:4e:5c:e9:cd:71:2f:df:4c:2e:
3b:27:12:03:b1:22:d8:3d:bb:cf:fc:96:b8:06:bb:05:42:ca:
c2:66:b6:cb:e8:36:25:4b:e0:91:3b:43:b7:e8:75:76:43:f5:
1e:87:53:3f:9c:f5:99:22:08:ad:d9:5c:6f:24:c8:56:d9:f9:
8a:87:60:e5:69:b1:35:99:bd:f8:7a:94:01:a9:5b:82:ea:36:
24:94:74:6a:3b:7d:41:be:55:f2:a6:15:ff:e9:67:bf:fa:51:
81:68:1e:bf:ff:70:03:78:d0:89:6e:fa:33:de:1b:53:bf:36:
ec:50:5a:a9:cd:49:1b:f3:38:73:a9:5e:69:6e:b1:6d:0d:dc:
96:3f:d9:71:2c:88:a4:da:5e:14:00:87:7c:5d:34:b3:2e:65:
dd:6f:fa:c1:3c:39:6b:86:3f:b2:76:c8:5d:3b:63:bd:27:d1:
47:de:74:5c:37:8d:2d:f6:52:9a:b3:61:55:59:03:3f:fa:a7:
46:5e:eb:00:33:b0:63:00:03:43:0d:a5:de:d0:60:41:a7:2b:
c6:b0:1a:d8:d3:57:64:2c:95:b6:75:91:0b:d7:a8:be:fe:28:
fa:26:cb:80:f0:7e:d6:cd:26:59:b2:a2:9d:81:83:27:ed:75:
e9:c3:e9:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:54:38 2025 by rpki-client