Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
File: sKT8KvOK9bT1hh4n_QB-YktfmwI.mft (raw, json)
Hash identifier: QBSnVWcIeJTHaxCngSnOznbohM4SPx54BupRhaQilQo=
Subject key identifier: 99:D2:5C:51:AC:CB:56:42:54:E7:33:E2:C4:49:38:9C:1F:A7:80:7B
Authority key identifier: B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
Certificate issuer: /CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Certificate serial: 019A5119E45DEF5BCA6ECBF02BAE034E47F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
Manifest number: 15DE
Signing time: Tue 04 Nov 2025 23:00:42 +0000
Manifest this update: Tue 04 Nov 2025 23:00:42 +0000
Manifest next update: Wed 05 Nov 2025 23:00:42 +0000
Files and hashes: 1: EhMQv2Hd3Y0AB-EaVNPw9A1el2Y.roa (hash: bVKsgWkrvgH7jweX9NZzvJ58rjQAc648XkG11nW0Xqk=)
2: sKT8KvOK9bT1hh4n_QB-YktfmwI.crl (hash: 6+KTBXn98QaJiP1qRfQ74rH1QFcdW7I8pFyNiPD6U/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:19:e4:5d:ef:5b:ca:6e:cb:f0:2b:ae:03:4e:47:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Validity
Not Before: Nov 4 23:00:42 2025 GMT
Not After : Nov 5 23:00:42 2025 GMT
Subject: CN=99d25c51accb564254e733e2c449389c1fa7807b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d2:6e:b8:4f:0a:b3:c4:e1:56:2c:a1:e0:b5:
16:f3:af:a7:7f:7c:7a:57:e8:5b:fb:20:72:be:85:
82:8e:33:30:8b:da:d0:95:0b:97:af:86:fa:02:3f:
6f:87:fc:17:6a:33:64:68:1d:e0:d9:53:be:59:28:
72:c0:ff:17:e7:02:0e:3f:f0:9c:29:c7:52:74:39:
9f:03:05:10:b6:32:57:a2:cc:b3:a0:ca:df:07:04:
01:cc:57:a8:a7:52:73:de:5c:5e:c5:02:c5:46:fb:
7a:6b:c8:8a:39:50:a0:8c:67:11:15:85:59:2a:6a:
dd:71:f2:a7:26:cd:a7:3e:35:12:3a:b8:61:8a:76:
ba:55:ac:88:c7:8d:2a:ec:6b:4f:14:eb:c0:8e:d6:
ad:18:73:f2:b0:49:07:73:57:9a:0e:7d:b8:dd:e4:
74:2b:a9:65:d4:69:c4:77:e2:c3:b3:d3:75:23:7b:
38:72:5a:f9:a8:49:03:dc:61:5d:c1:a9:ba:b1:cf:
6a:bd:c4:a6:d4:4b:10:33:44:ad:ee:50:62:5e:58:
94:d6:3b:b3:e7:f3:cb:3a:b9:7b:02:b9:51:49:3d:
9a:c9:26:b2:59:cd:7a:07:94:e3:c4:1f:d8:4e:bf:
5c:e1:e3:35:f5:be:30:65:9e:73:79:9c:92:35:75:
5d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D2:5C:51:AC:CB:56:42:54:E7:33:E2:C4:49:38:9C:1F:A7:80:7B
X509v3 Authority Key Identifier:
keyid:B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:d4:11:ae:b1:8c:76:82:71:63:6d:5b:30:ec:c5:59:f0:94:
e5:49:ee:ce:a0:b4:32:cc:fc:ed:88:d3:74:05:12:02:20:74:
fe:1b:1d:e3:ef:b0:7c:32:52:2c:02:89:18:b9:66:f5:13:e6:
87:dc:71:2f:5d:8c:02:5c:62:98:67:29:08:82:28:11:b8:74:
21:9b:2a:16:05:30:b7:de:69:e5:e3:2b:06:c3:91:8e:3d:12:
d4:e5:7f:de:e5:f0:cf:20:2d:f6:e5:98:fe:c6:eb:83:c1:0f:
53:76:a2:93:b8:66:08:6f:a9:4c:b1:0f:ed:81:bb:79:67:34:
20:d1:f4:14:e4:97:23:cc:ac:ed:c8:af:1b:c9:c4:75:6b:39:
93:bd:0f:5d:f0:73:7f:38:cf:24:e8:76:22:44:d1:01:ce:a9:
2f:47:61:68:7b:df:06:b5:12:02:55:1b:ea:c4:97:4f:b0:30:
69:2e:91:ee:aa:cd:c4:5d:2e:b2:0a:74:a8:c4:7a:a0:fe:85:
e4:cc:5a:89:b2:af:4e:d2:d5:41:0e:83:eb:bd:f6:a9:52:51:
a7:ff:fc:87:ac:df:8c:3c:b4:0a:21:9a:08:ae:8e:c4:98:49:
09:d5:90:79:87:7c:78:0b:ab:51:f6:27:03:c1:8c:b7:d1:4f:
8a:07:e6:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 04:26:14 2025 by rpki-client