Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
File: 37H24AFTpJGGEbFLawP2gS7YikM.mft (raw, json)
Hash identifier: jk9M6rm3RvtrVylmFg/446xL7JkmBV2w18xOQV0cpUs=
Subject key identifier: 65:8A:07:A5:F2:31:9F:8A:71:ED:1F:F5:07:1C:91:43:A0:7D:D1:3C
Authority key identifier: DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
Certificate issuer: /CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Certificate serial: 019A4F62E76DB9D73DAE4DF7031A4110FE87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
Manifest number: 1019
Signing time: Tue 04 Nov 2025 15:01:13 +0000
Manifest this update: Tue 04 Nov 2025 15:01:13 +0000
Manifest next update: Wed 05 Nov 2025 15:01:13 +0000
Files and hashes: 1: 37H24AFTpJGGEbFLawP2gS7YikM.crl (hash: uvLSWdq/i3rnUjZCo/5RMJwsQa6GyczplQ2trr0ieTo=)
2: NZtS_yd4-bo9e2cvGKzyKvYI3pE.roa (hash: +rJHNNOfAgRLW2AYZ2GQZ4sJIXJPzKob0SOJ3Knzwec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:e7:6d:b9:d7:3d:ae:4d:f7:03:1a:41:10:fe:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Validity
Not Before: Nov 4 15:01:13 2025 GMT
Not After : Nov 5 15:01:13 2025 GMT
Subject: CN=658a07a5f2319f8a71ed1ff5071c9143a07dd13c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5c:19:ba:03:55:f0:0d:05:ce:9c:63:24:53:
41:47:77:73:09:2d:f0:b8:94:c0:11:4b:02:ba:52:
a5:d5:08:b8:73:e5:1b:45:09:c9:56:49:c1:89:eb:
87:18:c7:41:c7:87:8c:ee:cd:45:e1:ca:7a:8f:41:
8e:db:82:a9:08:11:05:10:5a:54:10:50:de:b9:bd:
35:37:6c:e1:44:51:42:43:6e:74:cf:9d:e7:f1:73:
23:39:6b:95:14:b4:14:10:c8:98:b7:8e:6b:c2:f5:
c4:7e:95:64:7b:13:87:1f:a0:3a:16:63:11:6c:75:
eb:63:4f:d0:94:d7:ac:8b:be:7f:20:aa:ec:c0:7e:
f1:97:1d:c5:44:c5:26:60:d5:39:b1:14:ad:e1:4d:
32:bf:bb:4b:e9:c5:e0:12:ca:64:c6:79:8e:51:9d:
f5:5b:eb:b5:91:00:d6:d6:f8:e3:ee:eb:20:39:18:
19:5e:01:4f:0b:60:4d:69:e2:ab:c0:62:14:4e:f7:
83:34:31:56:88:d8:a0:bd:c3:b5:0a:32:ae:7d:78:
81:a0:b8:2d:4c:a9:75:7c:76:c5:7f:6d:09:ad:53:
0d:40:88:52:63:9b:74:50:ca:6d:fc:15:14:31:ef:
37:dc:db:46:11:dc:1d:6e:f5:de:f0:23:7e:92:4b:
a9:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:8A:07:A5:F2:31:9F:8A:71:ED:1F:F5:07:1C:91:43:A0:7D:D1:3C
X509v3 Authority Key Identifier:
keyid:DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:d4:90:7a:8a:f0:82:74:b2:94:fa:9b:2a:a9:d3:07:1c:3e:
62:25:47:8d:1a:27:2d:4e:73:be:6c:02:99:46:2e:b3:db:f9:
23:58:c0:a2:d7:20:a6:ce:e9:3c:9d:a5:0a:3f:3b:24:97:d6:
e1:fa:6c:79:e1:db:8e:47:82:16:f7:82:a7:b4:90:a6:8f:c3:
16:6d:e0:4f:86:de:a3:13:64:3d:2a:c0:a1:de:87:aa:ee:8a:
78:bd:d3:0d:a1:5b:73:9b:31:9d:0b:50:3a:03:0c:c0:4d:a4:
f8:3f:e0:b3:e0:9a:f2:2e:bd:d7:15:0f:31:13:9c:5d:ae:69:
c3:b9:57:3f:30:b9:9a:3f:a8:c6:ec:5a:4e:a8:51:df:ee:37:
5c:67:32:e6:c8:79:e3:d3:40:25:2d:10:3e:a1:d8:cc:0a:e9:
0e:dd:03:08:c5:63:1c:b6:05:86:d0:d6:6d:48:a1:3c:8e:33:
b8:fd:6b:e6:90:95:54:58:59:05:08:2e:d0:16:a7:19:4e:32:
80:2b:44:30:ea:8d:e8:60:4d:91:b9:95:ef:5b:a5:c9:f1:40:
ea:75:11:2d:1c:01:78:c6:c9:0c:d1:8b:4b:63:33:aa:5d:7e:
84:03:48:e3:25:08:24:ce:b5:42:6b:f5:91:28:ae:35:2a:db:
86:75:33:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:20:19 2025 by rpki-client