Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
File: tU3fbwMzHNdzx-ersVQpuo0gvXg.mft (raw, json)
Hash identifier: JiT4CRePXeh4y9myzynw5vVNYmfU088iUy4HjKgn1cQ=
Subject key identifier: EE:D5:F4:16:43:2B:A3:DA:7A:22:0A:31:EB:83:E0:55:D3:5E:5F:D7
Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Certificate serial: 019A4EF5FC335D3676073C8D87DA37CC8355
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
Manifest number: 0850
Signing time: Tue 04 Nov 2025 13:02:14 +0000
Manifest this update: Tue 04 Nov 2025 13:02:14 +0000
Manifest next update: Wed 05 Nov 2025 13:02:14 +0000
Files and hashes: 1: 1SqAG3Japdqs2uBvGFHguJLvhqE.roa (hash: tRLIPOPh9GLi7wL54w2K0S63l5p5YYde2YPqeJx3wD8=)
2: tU3fbwMzHNdzx-ersVQpuo0gvXg.crl (hash: oGOD1gBtZlrjIQPjfzF7aE1Lns0xUqYk33nZrnEwD+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:fc:33:5d:36:76:07:3c:8d:87:da:37:cc:83:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Validity
Not Before: Nov 4 13:02:14 2025 GMT
Not After : Nov 5 13:02:14 2025 GMT
Subject: CN=eed5f416432ba3da7a220a31eb83e055d35e5fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:67:a9:a6:51:f1:5d:d2:95:8e:ba:c5:b9:44:
bd:a4:ae:f5:ef:d2:02:59:3c:f7:d5:bc:08:45:31:
33:58:bd:a1:2d:04:f2:69:c0:95:b1:40:e4:0f:a1:
d7:83:c4:55:8c:12:5a:22:86:8f:5c:53:7f:eb:7f:
97:e4:b5:a9:67:7a:c3:7b:03:55:66:ab:da:94:c8:
54:aa:08:59:4e:f5:38:f6:76:42:ce:a8:3c:1f:dd:
a3:28:b8:3d:51:17:a2:5f:c8:f8:b6:c6:69:81:6e:
1a:4b:4c:44:54:b6:8a:79:34:c6:bc:e5:32:09:e0:
05:39:f9:20:6c:ef:95:5d:8c:0d:d2:89:97:3b:18:
d6:e6:b5:11:27:b6:32:7d:6c:af:9d:6e:0c:12:8a:
6b:62:ef:98:22:61:ba:71:b7:ab:2c:3d:e6:fb:b5:
e5:41:a9:92:82:df:0f:94:52:98:40:ca:e1:52:47:
b8:14:28:b4:0e:4b:d8:a9:dc:f6:c6:ee:ca:26:54:
aa:77:28:00:06:c3:50:93:b8:1c:c4:f4:46:da:c6:
ef:68:f5:1c:fb:0c:e6:01:c0:6a:07:99:cf:46:0d:
3a:e0:d2:58:b5:cd:03:44:e0:28:57:de:fa:ad:11:
37:55:c5:7c:3e:ea:90:0c:90:ed:80:28:df:16:8a:
f0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:D5:F4:16:43:2B:A3:DA:7A:22:0A:31:EB:83:E0:55:D3:5E:5F:D7
X509v3 Authority Key Identifier:
keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:bf:0b:dc:3b:a2:10:4c:05:93:1b:e5:99:fa:ca:fb:89:19:
06:a7:2b:c4:3b:b2:e9:f3:c3:4a:95:d4:1c:90:c2:83:ac:8c:
d5:b1:91:56:e9:e7:e4:48:3a:33:ea:02:32:be:36:37:77:53:
08:33:5e:c3:22:cc:99:50:06:f8:17:62:48:1c:a0:0c:11:ac:
a1:5a:fa:11:09:9f:b8:22:92:a8:a8:51:b0:3f:8e:dd:9d:33:
b8:09:cd:fd:0b:74:ae:37:ec:57:db:b5:8f:dd:ca:86:39:aa:
96:11:19:4e:d2:72:ed:89:86:3d:08:ca:e2:ee:45:35:00:7c:
10:6c:4e:e2:4c:11:86:ec:b5:b7:d4:f2:4d:f7:3d:b4:ee:46:
2b:0d:f6:73:03:67:84:dd:dd:ac:db:bc:38:bf:9a:3e:1f:39:
33:d8:05:00:a8:49:64:37:de:ef:70:2f:de:5b:97:e9:1d:b5:
9a:c2:c7:9a:9b:91:be:53:7f:4a:73:25:8d:c4:fd:7a:b6:aa:
af:60:59:a6:ad:f3:33:86:52:d9:30:65:42:0f:0b:d2:e7:85:
ad:cc:a9:c4:6e:98:38:ed:a7:e4:e5:87:ad:7e:87:4e:c7:17:
1e:81:40:a1:dc:52:24:b2:2e:5e:13:e7:98:7c:73:30:25:e5:
ff:3a:b3:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:18:04 2025 by rpki-client