Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
File: sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft (raw, json)
Hash identifier: uNKMMomfAvBXX9elKCRgmixHGfUIHlJplxhQF/crOh0=
Subject key identifier: 15:02:CB:09:DF:65:07:36:54:80:8E:C0:2F:C8:01:6F:74:30:C9:8A
Authority key identifier: B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
Certificate issuer: /CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Certificate serial: 019A5187B30352FFDEE343EFDAE402BAAB27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
Manifest number: 0407
Signing time: Wed 05 Nov 2025 01:00:38 +0000
Manifest this update: Wed 05 Nov 2025 01:00:38 +0000
Manifest next update: Thu 06 Nov 2025 01:00:38 +0000
Files and hashes: 1: cutf0Yk4GqOLANVUSKcxrSdUxug.roa (hash: Q8Q4U3gD48zecWRmDv6Pw0MZwpRvb60BHrR0/Xs/Hmo=)
2: sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl (hash: msvo2jIfm0t5j0CvIUROl/MVVi0p0LptHimLKX+hPJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 01:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:b3:03:52:ff:de:e3:43:ef:da:e4:02:ba:ab:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Validity
Not Before: Nov 5 01:00:38 2025 GMT
Not After : Nov 6 01:00:38 2025 GMT
Subject: CN=1502cb09df65073654808ec02fc8016f7430c98a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7a:ef:74:05:93:d2:74:ed:6a:4b:70:c0:90:
19:c4:af:c1:86:97:a4:34:3b:0a:3e:61:09:74:f6:
aa:a3:28:28:53:fa:ce:57:7f:04:bc:2c:11:40:a4:
f4:a2:cf:20:e9:8a:ce:f2:5f:d7:bf:b7:70:a2:75:
ee:74:4b:87:ca:31:01:bf:5d:1b:f4:37:77:d6:63:
70:91:97:4e:c6:59:06:d1:0d:d3:09:d9:ef:dd:22:
b8:a7:12:f7:35:a1:6b:0d:5b:4c:11:e1:43:84:8a:
7d:2e:69:af:8b:8f:73:63:2e:c3:5b:91:3f:1e:d8:
63:39:f9:6b:c3:cc:bf:86:04:9a:a5:e8:68:f4:a3:
16:12:78:9b:28:25:16:d1:7b:83:cb:de:ef:ce:27:
e0:89:f8:db:84:3b:a1:5d:01:b2:e1:72:34:1b:39:
d1:b3:ee:88:4f:c9:8e:de:c4:42:b7:5f:b2:aa:11:
18:ba:e9:94:ba:8d:1c:10:64:42:8e:ab:1d:02:4e:
c8:5a:0d:41:d3:cf:01:fc:58:17:c0:a5:51:9e:e2:
63:e5:23:9f:2f:53:c3:88:45:87:60:fa:79:7f:ad:
f8:cd:70:81:92:30:f2:ad:c1:68:a3:7f:9f:cc:20:
83:ad:e4:12:aa:f8:85:57:54:c0:fc:4a:66:9f:42:
69:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:02:CB:09:DF:65:07:36:54:80:8E:C0:2F:C8:01:6F:74:30:C9:8A
X509v3 Authority Key Identifier:
keyid:B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:e5:3d:3a:3e:37:35:f7:d3:cb:9d:72:e9:c1:81:cd:e4:da:
e2:9d:49:ef:8e:57:7b:3a:a3:45:67:c7:32:27:ff:1d:46:c3:
68:8a:47:df:a6:d6:24:eb:d9:07:1d:5e:8e:2e:0b:86:83:5c:
d5:88:35:72:ca:7b:22:2a:eb:94:e4:d5:ba:97:bd:ab:09:60:
79:cc:c3:c5:ce:50:45:e1:84:8a:5c:f0:c7:c3:15:f0:a2:9e:
24:51:a1:61:48:cb:41:91:d7:fa:35:ab:b2:1c:07:09:25:9d:
d2:91:e5:32:c1:90:ca:10:3d:ed:7f:43:45:01:4c:d0:7d:e0:
49:2f:42:58:74:a1:40:09:9b:06:3b:f6:4a:f6:84:70:12:e6:
9a:88:2d:09:b4:54:96:ac:a9:b7:c5:95:60:8c:58:22:ca:b0:
ea:79:af:5b:e5:05:e4:b3:99:53:13:94:b1:1c:b4:bf:03:eb:
9c:02:cd:0e:c4:ec:06:bc:cb:ae:58:26:b9:78:78:a7:af:87:
7a:a0:41:57:bc:65:76:2c:df:05:86:bb:0c:8b:8f:10:27:0c:
92:1f:a7:41:c6:e2:5d:50:5b:17:ac:4c:dc:df:90:e5:d7:8c:
41:47:b4:aa:e1:40:c0:3c:19:2f:b4:b0:98:83:aa:ae:a4:1f:
3b:6d:96:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:28:42 2025 by rpki-client