Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
File: su7525PeEaAlPVqoxT7Mrg-cPTM.mft (raw, json)
Hash identifier: tZOyCI9HUmRhx1dR/ykBJmLTo4Uaj/jk0qm2P83pKcQ=
Subject key identifier: 8B:EA:B1:98:58:9A:9E:FA:2E:C9:8B:FA:0D:73:F1:D9:02:D2:E9:7D
Authority key identifier: B2:EE:F9:DB:93:DE:11:A0:25:3D:5A:A8:C5:3E:CC:AE:0F:9C:3D:33
Certificate issuer: /CN=b2eef9db93de11a0253d5aa8c53eccae0f9c3d33
Certificate serial: 019A4F2B6E6A7E5FD55D7816F62400B0B0CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/su7525PeEaAlPVqoxT7Mrg-cPTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
Manifest number: 0A7F
Signing time: Tue 04 Nov 2025 14:00:37 +0000
Manifest this update: Tue 04 Nov 2025 14:00:37 +0000
Manifest next update: Wed 05 Nov 2025 14:00:37 +0000
Files and hashes: 1: HmEXSyMzNsE6ZXWyBUFqSz_-J_I.roa (hash: QHoycNdEbZMja0gAvjEgeC3E4wx2OI9vc9S4Y873m1w=)
2: su7525PeEaAlPVqoxT7Mrg-cPTM.crl (hash: mhP+4oYSv+dINlhHFjfShEOOqPaiop2gJrlZkkVlMoc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/su7525PeEaAlPVqoxT7Mrg-cPTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 14:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:6e:6a:7e:5f:d5:5d:78:16:f6:24:00:b0:b0:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2eef9db93de11a0253d5aa8c53eccae0f9c3d33
Validity
Not Before: Nov 4 14:00:37 2025 GMT
Not After : Nov 5 14:00:37 2025 GMT
Subject: CN=8beab198589a9efa2ec98bfa0d73f1d902d2e97d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:bb:7f:23:18:b3:b8:58:74:ed:cc:9e:4d:c9:
8c:51:44:7e:a8:f2:d3:47:b0:2f:35:11:33:c9:c8:
6a:4c:f0:ba:dc:8b:69:bf:a5:b6:2c:97:cc:ad:64:
1a:a6:0d:f1:b0:98:c3:78:8a:1f:7a:7c:bb:55:50:
79:a5:31:67:94:8e:a5:f6:0d:f3:52:b6:23:be:07:
f4:79:d6:70:dc:e3:0e:11:36:57:22:a1:28:10:bd:
90:4a:ec:c6:22:59:3e:e4:44:6f:37:8d:b5:a4:2c:
4f:8e:45:19:2e:43:ef:52:08:80:60:73:85:13:cc:
14:78:18:6a:12:4b:5e:0b:26:d7:cd:37:99:07:c6:
72:9e:19:e2:d5:96:f9:fb:51:e8:3c:8a:9d:18:6c:
32:cf:a1:4c:0d:59:9e:30:1e:22:20:30:ed:f2:f1:
88:72:a3:01:8b:77:1b:5d:f1:72:a1:a7:3c:51:24:
d3:22:a2:72:ec:77:ed:c4:de:b5:01:16:74:20:1b:
65:bb:fb:c1:a5:8c:9a:a9:c7:a9:32:bb:1b:d7:72:
42:a6:17:e5:35:03:f9:e1:4f:22:da:c7:f6:f5:15:
03:e4:d8:07:d0:b7:f1:2d:c2:50:68:e8:23:ce:d5:
5c:ff:f1:58:01:4d:09:58:4a:e6:8d:c7:9e:75:16:
d3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:EA:B1:98:58:9A:9E:FA:2E:C9:8B:FA:0D:73:F1:D9:02:D2:E9:7D
X509v3 Authority Key Identifier:
keyid:B2:EE:F9:DB:93:DE:11:A0:25:3D:5A:A8:C5:3E:CC:AE:0F:9C:3D:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/su7525PeEaAlPVqoxT7Mrg-cPTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:ec:96:1f:3e:99:9a:c3:2f:30:60:95:95:28:10:57:74:f8:
72:c1:7a:8e:0d:5b:da:0e:04:ad:f5:0b:0d:92:60:b9:4d:96:
44:e9:a3:37:c5:40:1d:d1:ab:dd:a7:35:d4:d6:b4:4f:c4:75:
5d:dc:47:d8:82:55:6d:12:aa:b3:7b:e2:94:ff:c3:fe:cd:70:
d4:87:ea:b2:b0:6d:94:bb:ab:7b:f4:87:fd:6d:11:fd:08:e1:
01:66:45:85:eb:5b:a7:0f:e5:20:0f:07:c3:04:cd:ca:38:98:
7d:10:21:89:5b:f2:c5:17:ca:b8:52:df:a0:50:29:7e:08:7b:
7f:62:df:01:16:82:4e:b6:22:b3:77:e5:db:84:1b:73:22:91:
a6:52:42:40:cc:84:3b:bc:d7:c7:d4:32:49:4b:58:95:4d:1f:
ca:c9:b1:50:be:c9:06:34:dd:97:93:54:de:a7:f0:ab:a6:8c:
71:d0:b7:ea:d7:53:ed:37:b3:f4:22:db:a9:2f:17:bb:c9:53:
32:87:2b:11:63:20:42:6f:cf:26:9d:41:c1:d0:98:8e:18:6b:
b8:0d:3c:64:2f:63:3d:7c:2e:00:25:34:57:53:c4:6c:06:99:
f8:98:9b:4a:d2:57:b4:8f:1e:dc:e2:7d:c7:77:d6:29:30:58:
0a:39:bb:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 00:10:42 2025 by rpki-client