Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
File: F3khM2kRpWiNeOk__l5HIRO7Gb4.mft (raw, json)
Hash identifier: /UDaaqMA+tS0YLu2CAdi0SNYA+VWqzCvbwHKW5yRA9E=
Subject key identifier: 38:07:4D:B3:E4:AE:BF:08:09:96:68:3F:17:3F:9C:86:14:14:5C:78
Authority key identifier: 17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
Certificate issuer: /CN=177921336911a5688d78e93ffe5e472113bb19be
Certificate serial: 019A50E36958646E9B3DB06B41677DB2E169
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
Manifest number: 06EF
Signing time: Tue 04 Nov 2025 22:01:12 +0000
Manifest this update: Tue 04 Nov 2025 22:01:12 +0000
Manifest next update: Wed 05 Nov 2025 22:01:12 +0000
Files and hashes: 1: F3khM2kRpWiNeOk__l5HIRO7Gb4.crl (hash: rQxDg7KO2ZEoM0gPYbWB1R8v8T6DH6JSEuJ/V4I+CHM=)
2: WN1QsY4J0xzhzXI37At9k24AG4s.roa (hash: aONG4etXL5aCmGtS97ulkTYk4UjXjlB6E7tpLdYeDEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e3:69:58:64:6e:9b:3d:b0:6b:41:67:7d:b2:e1:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=177921336911a5688d78e93ffe5e472113bb19be
Validity
Not Before: Nov 4 22:01:12 2025 GMT
Not After : Nov 5 22:01:12 2025 GMT
Subject: CN=38074db3e4aebf080996683f173f9c8614145c78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:69:1f:d5:96:67:3d:d2:c4:3c:c5:30:6f:c9:
a7:07:f7:55:7e:24:4e:aa:12:af:42:c1:d7:9c:a0:
d3:83:b8:ca:f7:24:66:26:54:93:23:2c:49:b3:12:
1c:6d:12:d5:76:ee:7c:60:63:77:57:33:ee:52:21:
a6:12:6d:be:20:65:b7:17:05:33:c7:91:f9:fe:39:
15:36:58:ab:9c:c0:55:46:55:fd:c0:c5:e6:8b:58:
50:55:53:26:16:dd:87:56:9a:64:18:7f:b3:dc:69:
7e:49:4b:c8:c1:64:f5:24:4d:a4:87:40:7a:0d:a5:
2b:ec:1a:b8:de:ee:fc:13:f6:e3:4e:dd:5c:03:3c:
17:99:df:3c:c2:49:7a:24:92:ba:f6:1f:06:de:0c:
57:2f:c6:9d:e7:78:6a:06:c1:49:71:b1:b6:7e:a0:
64:57:73:80:75:10:48:aa:95:e9:23:ce:1e:3f:dc:
66:57:8f:84:f7:e3:29:e5:40:8a:2f:6a:50:a3:3a:
e4:a7:0b:2a:ef:8d:b9:31:35:c2:e1:7d:6f:b2:d9:
d6:6d:3a:71:6a:bd:87:97:73:72:02:ac:62:34:a3:
d3:6a:0e:bc:f2:26:3d:a8:97:af:d0:09:96:e1:2c:
08:13:00:30:7d:dc:3f:f8:67:77:a3:04:71:b2:10:
48:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:07:4D:B3:E4:AE:BF:08:09:96:68:3F:17:3F:9C:86:14:14:5C:78
X509v3 Authority Key Identifier:
keyid:17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:fd:df:45:78:2b:ea:c5:d3:08:ce:e1:67:bf:05:ae:cf:27:
6c:bd:47:70:40:60:c4:29:b8:b3:b8:4f:f0:5b:37:64:72:0b:
e4:09:a8:42:53:95:d8:93:fc:df:4e:75:6c:5a:11:de:d1:3d:
8b:75:d9:e9:a3:b2:22:b0:d6:43:13:6c:d0:26:60:b6:39:2c:
0d:fe:b1:4d:5d:3b:b7:26:dd:fe:2f:37:89:81:22:a6:3f:f1:
3a:93:80:63:2b:a5:50:76:78:2e:ed:b1:d1:ee:6f:9d:11:02:
24:b1:c5:b8:85:1d:01:20:04:38:92:8b:2a:bc:dc:57:4e:b4:
20:ed:2c:76:a7:07:c5:b8:db:82:be:0a:8a:11:f4:5c:91:f3:
ac:ce:18:12:e6:1d:86:56:8d:a1:42:ff:ad:37:24:ea:98:4e:
07:c8:9e:cc:ce:6a:c4:9f:3d:fc:80:3a:0a:e1:e3:d4:80:fa:
f0:35:b0:2c:f1:d0:3f:ef:6f:c6:86:80:1a:10:f7:7d:b7:ae:
12:c8:0a:a2:4d:7a:3c:d1:d3:72:0a:d7:a4:50:36:a9:79:97:
09:2f:51:24:f0:d6:3a:5d:d8:d1:bb:0e:a0:3f:18:5e:b0:19:
48:2b:64:7e:b7:3d:99:c8:a9:4f:12:65:52:3f:b6:f6:5b:b9:
b3:82:c2:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:45:15 2025 by rpki-client