Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
File: SFk-QNpaUvMi21oEwg-0htThVQI.mft (raw, json)
Hash identifier: kvpceCMvy+jC8jFDJWbJhllOLT8XFYn1tW5yjQu8Qe8=
Subject key identifier: 5C:94:A6:B6:0F:3D:A5:5D:6C:C0:BA:E9:55:97:82:08:C7:E7:4D:8D
Authority key identifier: 48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
Certificate issuer: /CN=48593e40da5a52f322db5a04c20fb486d4e15502
Certificate serial: 019A4EF5426497D04CA254102D166505A007
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
Manifest number: 13C8
Signing time: Tue 04 Nov 2025 13:01:27 +0000
Manifest this update: Tue 04 Nov 2025 13:01:27 +0000
Manifest next update: Wed 05 Nov 2025 13:01:27 +0000
Files and hashes: 1: SFk-QNpaUvMi21oEwg-0htThVQI.crl (hash: g5Y9b6+K40uPPOA9bvct6IUDE71NsXBdDT1AHkSmo9I=)
2: Xe1gxuRIIOL95lwNFDlJJ4LeD98.roa (hash: E3ThdKoNF/zSVQO/0Rh8O4e1tJqwTsPdKIVV0WmD0l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:42:64:97:d0:4c:a2:54:10:2d:16:65:05:a0:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48593e40da5a52f322db5a04c20fb486d4e15502
Validity
Not Before: Nov 4 13:01:27 2025 GMT
Not After : Nov 5 13:01:27 2025 GMT
Subject: CN=5c94a6b60f3da55d6cc0bae955978208c7e74d8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:61:cf:0c:f1:80:5f:38:e9:4d:73:8f:a0:9b:
8b:a0:85:94:50:b8:bf:bf:6b:a8:1e:95:70:3f:66:
4b:38:35:b0:7b:84:05:ad:9b:dd:54:41:b6:31:e9:
53:43:fc:3e:30:3d:1f:9a:20:7f:43:90:7a:db:92:
df:05:45:ee:02:05:00:49:31:0f:ae:08:e5:c4:eb:
da:c7:97:bc:a8:40:e5:39:b3:72:60:2c:46:46:3e:
8e:da:fc:fb:23:4f:a7:11:a1:03:c6:fa:78:56:88:
8f:7c:9d:a5:76:26:00:be:c6:0e:0f:3d:c8:b0:97:
20:6a:e2:5b:8a:52:7e:76:81:1f:1d:b6:fe:6d:7b:
c1:9f:8a:16:c3:4e:ac:b9:65:55:06:55:0c:8d:a3:
fb:7f:f5:3d:83:27:af:d9:84:81:8f:7f:39:3a:7c:
24:81:fa:ef:b0:72:de:04:8a:c9:61:58:ca:6d:8e:
5a:b8:3b:63:a6:19:c6:6e:23:9b:ae:32:9f:41:da:
6f:bc:1e:22:26:8f:72:ac:bd:58:27:fe:0a:50:44:
fa:5e:f9:f0:44:05:b0:86:ef:80:7e:8b:da:1b:d6:
fe:a7:e5:97:91:a3:ca:8e:a8:d0:94:de:fb:b1:c9:
78:da:2f:da:11:ed:d5:7d:57:18:9d:b5:75:6b:1d:
31:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:94:A6:B6:0F:3D:A5:5D:6C:C0:BA:E9:55:97:82:08:C7:E7:4D:8D
X509v3 Authority Key Identifier:
keyid:48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:c8:c0:0d:ab:09:41:a1:14:6c:59:56:e4:33:9f:56:fe:f6:
4d:cd:1b:64:3f:d5:09:b6:ae:99:09:f2:d9:09:31:4d:ce:ed:
c4:33:fe:1a:68:bd:50:ac:e3:ca:20:bb:76:af:62:b5:58:a4:
3a:18:94:61:48:f2:fb:5c:ce:18:78:e6:85:9d:74:75:a1:50:
3d:da:aa:12:dc:a8:d6:e6:90:84:25:87:2c:3c:57:f4:38:1f:
76:59:9a:67:fc:03:7e:50:b6:9d:6f:0a:79:38:e2:53:f7:26:
20:92:49:1b:98:62:d6:04:ba:36:39:71:52:bf:be:89:4c:21:
16:6e:79:e0:3e:69:c5:6b:f7:e9:34:41:66:20:c2:68:b8:08:
5c:7d:5c:1d:78:97:88:d2:e9:a4:3f:61:d7:36:6e:fb:1c:fe:
f1:bc:2a:a5:7d:8d:3e:5f:9e:b5:c7:a4:5f:8f:cd:d4:75:e1:
5d:83:cd:09:16:b1:e6:4d:f0:5f:67:a9:e8:b4:1f:8c:8a:65:
7d:de:61:4c:a9:99:11:78:36:41:2b:fe:d2:bb:6b:9e:1e:f2:
42:27:6b:95:2e:28:bc:4c:45:a2:de:45:19:0e:70:03:fa:f4:
84:f2:d4:a4:3c:a0:c8:30:11:de:63:19:ca:8b:b3:92:52:02:
e6:78:15:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:34:17 2025 by rpki-client