Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
File: s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft (raw, json)
Hash identifier: QaktNxUFjFXWdHVnC8jdDO3tlqYlGx895fdRedIp0ak=
Subject key identifier: 10:FC:F7:B7:DD:C1:33:D6:A9:A9:C5:B7:B6:69:B7:56:04:64:E0:CC
Authority key identifier: B3:93:DF:87:7B:F2:F0:CF:01:A9:71:89:73:EA:EE:E8:7B:06:97:D9
Certificate issuer: /CN=b393df877bf2f0cf01a9718973eaeee87b0697d9
Certificate serial: 019A4DE1A35F8A317470CB1E9EAF9594D2E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
Manifest number: 10E8
Signing time: Tue 04 Nov 2025 08:00:24 +0000
Manifest this update: Tue 04 Nov 2025 08:00:24 +0000
Manifest next update: Wed 05 Nov 2025 08:00:24 +0000
Files and hashes: 1: GhdbZGuzA1z36-UUonZ5zaCX38Q.roa (hash: gEgIQ1ixFSRgI4FI7VMbdhgtgY8jLC1wmNutDGTQS80=)
2: NItMcfmuUtS9SnSR4ZKm4r93TXs.roa (hash: F3sutapYp582NIFvW6vfwf2KF7d5dSaqH83k0FhwJoc=)
3: QCQJObKakvoo4ygnw5Fh20FS0Ts.roa (hash: pr5RHo/glhDEkjitYcq1TogKj+NW5j/LUqIM2EWPEaw=)
4: UVdJ6rkBr4eKgNxEkOLstufV6r8.roa (hash: +gXeK3tudL2I9QvUvgp4q5Jq/oJHp1PYKMtr+laCpNs=)
5: VtsYZXVJAZoFqneDgMrcdY1ZLqo.roa (hash: iydD1kql5GaDH+9KnMFCTe4zA6F46avj8WklVHWfoCY=)
6: YaM_6GNAfAUY1a7EBWWPiZdkY80.roa (hash: imYp4kHblD7OJu3xkBBiybF6gSfL+pAE8EuXrkCO7Ws=)
7: eulbDis-0B0z9GbHcqEo9NdV9rU.roa (hash: r5N8Yg0+954vST6YgvvV4VsOdx/dWOgqxmrlpu8jwtw=)
8: peZQPUG6EREQXk9fJ6XL9FgtEhs.roa (hash: dkv5IIQlSg33elfikzY5ije40KJ3f2E2+53gSCvVzhE=)
9: s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl (hash: RM0yoFWHKkjshybjGYe1pkZgdNARVCYdtDE2nhxbHGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:a3:5f:8a:31:74:70:cb:1e:9e:af:95:94:d2:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b393df877bf2f0cf01a9718973eaeee87b0697d9
Validity
Not Before: Nov 4 08:00:24 2025 GMT
Not After : Nov 5 08:00:24 2025 GMT
Subject: CN=10fcf7b7ddc133d6a9a9c5b7b669b7560464e0cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:bc:3a:d4:8f:29:80:33:e9:c5:ef:2b:e3:e8:
41:2a:cc:b5:0f:29:c6:22:a5:66:c1:7b:1a:d8:d6:
88:35:1c:bd:70:f8:09:a4:5d:da:a2:cf:9f:67:e5:
20:41:68:af:bb:f3:35:65:81:38:f1:28:0e:96:95:
55:a3:99:02:df:9a:b1:fd:c1:95:18:a5:ba:f3:43:
2d:f0:f2:dd:dc:27:83:3b:dc:2f:04:1a:54:f4:76:
73:7b:4d:8f:f8:9b:b2:5e:6b:c4:ab:96:49:b9:45:
d3:b3:a7:65:1a:1b:c5:5d:8d:5c:dd:53:93:67:9d:
81:d2:6a:ee:a4:db:1f:c0:6d:3a:d8:18:99:4f:1d:
29:b0:cf:e4:51:63:55:f3:e1:40:dc:89:b0:c0:9b:
6f:6e:4e:24:76:fd:13:f0:c9:14:c1:21:1b:04:a3:
9b:af:10:e7:e1:59:93:8d:06:91:fd:d4:73:90:e9:
8c:54:df:58:33:b4:88:50:c9:77:9c:6b:ac:ba:0d:
27:cb:27:fc:b8:95:fb:99:dd:4c:79:1b:1c:4c:a1:
fe:b9:5a:6a:23:1b:a9:1b:21:97:9b:6d:0e:c5:9c:
0a:bf:73:4a:33:82:48:78:f5:94:23:6d:9b:2b:04:
a3:80:6d:3c:92:37:07:a7:bd:a1:6e:cf:4b:62:7d:
66:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:FC:F7:B7:DD:C1:33:D6:A9:A9:C5:B7:B6:69:B7:56:04:64:E0:CC
X509v3 Authority Key Identifier:
keyid:B3:93:DF:87:7B:F2:F0:CF:01:A9:71:89:73:EA:EE:E8:7B:06:97:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:a4:b4:ba:f0:fa:a1:54:3f:99:10:b1:83:92:e2:0f:1f:d8:
ea:82:b5:2c:95:2b:bf:e9:cb:d8:9f:09:6b:7c:dc:2d:48:25:
7c:e2:53:0f:15:78:05:f2:42:29:13:f9:c9:bd:2f:dc:6a:e1:
a6:7e:2b:ca:b9:65:cf:8d:f3:b4:ee:13:9f:8d:37:19:34:7b:
da:68:63:be:6e:c4:1a:70:dc:87:7a:06:59:01:1a:d5:6f:32:
ee:27:bd:e3:6b:fe:f8:ff:2a:eb:66:2b:fb:d4:8e:28:74:95:
ad:2f:23:82:29:63:d4:df:c8:11:36:46:7a:df:de:20:15:53:
06:fb:f8:1f:2c:7b:8c:5e:77:6b:aa:e3:a5:34:23:af:e6:c0:
4d:04:50:ab:6f:fd:ba:71:9a:00:ce:d1:40:81:13:43:3d:1a:
be:98:dd:a1:68:0f:89:5a:f6:14:49:f0:3a:93:32:3f:3c:1e:
d6:53:7b:98:79:0f:6d:91:80:80:4b:b8:81:75:5a:72:0e:1c:
da:13:cc:ad:e3:a5:a7:d3:2f:54:6c:8a:71:d0:34:11:88:dd:
be:e2:63:06:d1:cf:49:f3:f3:4b:b7:6e:4d:37:3a:c8:3c:16:
df:00:bc:74:0d:55:30:ce:2c:07:19:a6:9f:dc:c7:68:78:f7:
71:21:ef:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:01:53 2025 by rpki-client