Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
File: 0-2n3wX226CeOefUvex7rg7_urA.mft (raw, json)
Hash identifier: S0k+4VKHhTLQ/wAXhV6ZXUqMB6iqixhi34LFdFVMv6U=
Subject key identifier: FB:3A:A1:B5:07:AC:73:5B:CA:6B:56:38:69:4E:40:45:D9:CE:D4:6D
Authority key identifier: D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
Certificate issuer: /CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Certificate serial: 019A4DE1818708A73A2AC945FCBEC1112D42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
Manifest number: 0415
Signing time: Tue 04 Nov 2025 08:00:15 +0000
Manifest this update: Tue 04 Nov 2025 08:00:15 +0000
Manifest next update: Wed 05 Nov 2025 08:00:15 +0000
Files and hashes: 1: 0-2n3wX226CeOefUvex7rg7_urA.crl (hash: 9Y1xTk0NMGVyKQ7GeWF8ENatv8WlohpM8Ux0S+I311k=)
2: mFUkKUV2j8Fct1DGbVQJTzcA0ig.roa (hash: bNr/zF64vk+SVTrKPbIdCfqu6Sowa5lS9V4LG/Ns2g0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:81:87:08:a7:3a:2a:c9:45:fc:be:c1:11:2d:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Validity
Not Before: Nov 4 08:00:15 2025 GMT
Not After : Nov 5 08:00:15 2025 GMT
Subject: CN=fb3aa1b507ac735bca6b5638694e4045d9ced46d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:44:20:10:f9:7e:0a:2a:65:02:d2:e7:12:4a:
07:31:0d:b1:39:7b:b5:15:1b:a7:78:9d:c9:f9:9f:
7a:7c:6b:59:8a:e6:7e:bf:51:67:db:5e:2b:a8:b3:
24:70:fb:26:90:ba:3e:18:ea:7e:e9:b6:19:ba:bc:
7e:34:06:27:64:5c:92:32:75:82:24:c2:62:93:85:
3f:25:27:a0:a9:ad:e5:ad:b0:fd:10:1e:84:92:98:
ae:c6:6d:3e:fe:99:06:45:59:68:d2:7d:18:8b:0f:
21:d0:b1:e7:3c:bc:87:09:23:a4:53:55:10:35:52:
63:59:05:27:f4:d1:f3:43:bc:ab:4d:a6:03:19:27:
f7:d7:75:2e:f0:7e:aa:b2:86:b9:43:e9:97:50:b1:
1b:3a:b8:38:cf:f1:f4:c5:6d:2f:d6:47:72:ed:ad:
6f:07:97:8d:78:e7:15:42:75:48:5d:4e:37:f6:2f:
dd:d1:bf:05:83:9c:87:a1:93:8e:9c:18:43:82:ce:
ad:f9:16:30:3d:ac:c4:2f:d5:a4:b5:67:fc:f7:34:
f4:37:f2:57:09:0c:2f:49:ef:5f:a7:ed:a2:bb:22:
c0:12:24:f8:ae:42:a8:00:05:af:1b:67:f5:bf:0f:
6f:96:e4:a6:ed:e5:86:64:43:6a:0a:4a:ee:f4:ac:
81:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:3A:A1:B5:07:AC:73:5B:CA:6B:56:38:69:4E:40:45:D9:CE:D4:6D
X509v3 Authority Key Identifier:
keyid:D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:4b:fc:41:bf:ed:ed:c2:29:d0:3c:81:0a:6d:45:dd:5c:4f:
a1:80:0d:79:e8:9f:ac:7b:3f:65:5a:60:42:49:fc:92:f5:a3:
2b:74:ae:77:df:20:94:8c:e8:ae:95:1a:96:77:6f:68:4b:09:
d5:70:fb:c5:fc:73:06:66:97:fc:c0:bc:6f:2a:b7:66:7c:d0:
0a:94:dd:71:03:12:24:99:6b:b9:53:25:37:ca:26:6d:ed:17:
4f:6c:d8:e2:e7:79:c5:b2:b4:79:f1:19:8c:ca:97:a9:18:a0:
4b:1a:48:ec:fb:97:ed:98:65:df:7d:06:1e:8e:77:a7:a7:9c:
5d:c8:ea:cf:0c:cd:43:58:4d:91:b7:7a:7e:0c:c6:34:bb:2b:
04:28:29:c2:df:f9:23:3c:e0:fb:a0:fe:d8:6a:32:9b:ef:1a:
05:43:3a:65:cf:33:c9:2c:f3:09:99:3f:84:2a:0f:0a:be:62:
42:3c:9b:34:09:28:53:2c:3b:9f:48:43:df:ce:fc:ae:6a:03:
4a:88:cc:12:7b:25:12:8a:86:c9:1a:e0:b4:a1:dd:4a:3e:af:
c5:d0:fa:5c:45:24:65:72:33:a8:fd:7c:28:9f:24:76:6c:00:
07:af:4c:b0:fc:73:12:69:9b:76:f1:ff:f8:21:ed:b5:53:4d:
0d:c9:b0:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:47:54 2025 by rpki-client