Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.mft
File: 3SoSF2c-sRypijUTlSBAfJdo38M.mft (raw, json)
Hash identifier: VSLTyP66wcyKPcnVAvhltFHLBexENuE5qLFBXX6czPA=
Subject key identifier: 61:8A:BF:2B:4A:F2:6D:4F:02:0A:B8:71:15:BC:7B:67:80:EF:F6:A7
Authority key identifier: DD:2A:12:17:67:3E:B1:1C:A9:8A:35:13:95:20:40:7C:97:68:DF:C3
Certificate issuer: /CN=dd2a1217673eb11ca98a35139520407c9768dfc3
Certificate serial: 019A5119D639A16AA9948FA48F51193774AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3SoSF2c-sRypijUTlSBAfJdo38M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.mft
Manifest number: 11
Signing time: Tue 04 Nov 2025 23:00:38 +0000
Manifest this update: Tue 04 Nov 2025 23:00:38 +0000
Manifest next update: Wed 05 Nov 2025 23:00:38 +0000
Files and hashes: 1: 3SoSF2c-sRypijUTlSBAfJdo38M.crl (hash: bcBwLqDqIPf9qRFMoBS0f16kb1JvcFeViHY50FEEnFo=)
2: CjQoEIYqa3VtH111fKEBqeleqlM.roa (hash: UvEWMazTA8cqsYu1UIhBAG0KtE9R4iCvRATXvg7Pnog=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.mft
rsync://rpki.ripe.net/repository/DEFAULT/3SoSF2c-sRypijUTlSBAfJdo38M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:19:d6:39:a1:6a:a9:94:8f:a4:8f:51:19:37:74:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd2a1217673eb11ca98a35139520407c9768dfc3
Validity
Not Before: Nov 4 23:00:38 2025 GMT
Not After : Nov 5 23:00:38 2025 GMT
Subject: CN=618abf2b4af26d4f020ab87115bc7b6780eff6a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4f:ec:9b:0e:d2:d6:1d:c4:3a:87:75:d0:72:
5d:85:ca:f6:c7:e0:20:f5:fc:e3:f1:a4:cf:41:1c:
70:26:b8:57:a6:8e:a5:95:78:98:4e:d7:cd:41:05:
3f:61:d4:9e:7f:5c:d9:5f:a5:1a:c2:4a:d3:66:fe:
e5:e7:29:80:ed:f6:5a:e8:62:1e:2d:77:25:70:51:
30:95:cb:c8:96:70:4f:8a:74:a3:62:44:aa:06:3f:
30:2b:83:e4:e2:f7:af:2e:0d:1a:5a:99:03:f9:cb:
19:65:63:79:a9:e5:d7:29:35:83:91:5d:e3:c6:45:
ae:88:ba:b9:19:1a:0f:95:e6:a3:c5:d8:49:8f:52:
e1:fd:9e:f2:b4:1e:32:eb:35:dd:3f:04:02:db:3d:
5e:d6:26:20:31:9e:b1:26:ef:ee:40:08:7d:c0:66:
a5:a1:8a:b0:e5:03:b2:6f:9d:16:64:c3:73:1a:81:
e7:b4:33:5b:af:21:92:02:6b:73:35:59:d3:12:06:
08:ad:bf:32:46:09:ee:6a:78:7d:f1:67:f2:75:c4:
cf:62:bb:27:4a:33:e9:68:96:fa:63:b4:a2:9d:27:
21:13:1d:a1:a9:99:20:47:e8:9e:ca:33:d4:38:1e:
61:70:2f:b8:9a:a5:a9:17:ff:a7:a9:71:54:bd:35:
98:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:8A:BF:2B:4A:F2:6D:4F:02:0A:B8:71:15:BC:7B:67:80:EF:F6:A7
X509v3 Authority Key Identifier:
keyid:DD:2A:12:17:67:3E:B1:1C:A9:8A:35:13:95:20:40:7C:97:68:DF:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3SoSF2c-sRypijUTlSBAfJdo38M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:8c:cd:be:f3:25:9a:f7:69:03:03:0f:ab:dc:2f:41:84:87:
30:a8:43:01:be:89:99:9d:5b:dc:2a:da:31:57:d8:0e:cb:87:
f2:00:91:a8:36:ac:a6:69:76:9b:24:fa:56:58:6e:93:ca:2e:
92:45:e2:3e:3c:56:41:cc:55:09:da:b5:99:08:bc:e4:76:da:
90:45:29:c8:b6:90:76:df:84:cf:b0:55:65:24:50:b8:e4:59:
2d:e5:ac:e0:a2:4b:fd:74:bc:bf:73:ca:f4:d5:7d:bf:da:41:
6d:cd:aa:c9:c2:83:91:bf:8b:32:5d:44:22:9b:02:1f:d7:f6:
8a:3a:3b:4d:c9:26:c3:70:db:5a:b7:8c:75:f6:50:47:5b:89:
ae:44:13:54:0c:7c:dc:67:fd:6e:e3:82:fc:72:ac:d5:a4:43:
4b:0b:a9:47:4e:c6:1e:69:57:c3:ec:1a:d4:3c:13:f7:75:9e:
23:ca:7e:e2:ca:c6:23:f7:e0:0d:a5:13:f7:ce:e8:bd:5a:99:
5c:6b:70:88:7a:fc:76:89:b2:93:28:5c:1b:58:ba:e0:1d:a2:
2a:e1:1e:bb:fa:f1:a2:72:29:3d:0b:45:ec:dd:86:e2:ec:7a:
a9:e6:7f:77:58:b6:d8:9f:dc:fa:62:06:81:af:45:fe:65:ec:
9c:dd:9d:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 06:37:34 2025 by rpki-client