Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.mft
File: F3AFF3Um1mjoRLKnpaWaxkpJVlI.mft (raw, json)
Hash identifier: +2R0IaNeHkBNNJs0OA9hBzHate+0o1X2ga+9EGlZttE=
Subject key identifier: 19:FD:18:6D:52:01:1E:13:B8:F2:19:DD:92:B2:6F:F2:6A:7D:E2:F9
Authority key identifier: 17:70:05:17:75:26:D6:68:E8:44:B2:A7:A5:A5:9A:C6:4A:49:56:52
Certificate issuer: /CN=177005177526d668e844b2a7a5a59ac64a495652
Certificate serial: 019A71134C76C7502473075154A4CA154A6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3AFF3Um1mjoRLKnpaWaxkpJVlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.mft
Manifest number: 067A
Signing time: Tue 11 Nov 2025 04:01:21 +0000
Manifest this update: Tue 11 Nov 2025 04:01:21 +0000
Manifest next update: Wed 12 Nov 2025 04:01:21 +0000
Files and hashes: 1: F3AFF3Um1mjoRLKnpaWaxkpJVlI.crl (hash: ytL4s56a8t0h6MIK/tZye/ouZBQ8oCRm5XXGlNyR1yA=)
2: mF32KrmR7qkPWXVgQfXewbxtOHE.roa (hash: iXEGOcbHzPC+9l+k6XZzUAzgZY6fYnZW9+XlT/82/iA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3AFF3Um1mjoRLKnpaWaxkpJVlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:4c:76:c7:50:24:73:07:51:54:a4:ca:15:4a:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=177005177526d668e844b2a7a5a59ac64a495652
Validity
Not Before: Nov 11 04:01:21 2025 GMT
Not After : Nov 12 04:01:21 2025 GMT
Subject: CN=19fd186d52011e13b8f219dd92b26ff26a7de2f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7c:65:9e:ba:16:bb:20:28:86:98:2a:83:cc:
c9:9b:19:63:04:07:de:35:fe:89:0d:97:76:7c:c2:
27:86:62:a9:67:64:39:d8:89:67:e2:0c:f2:38:e0:
55:6d:13:07:81:89:e1:b9:a1:7a:2d:47:f0:ae:65:
12:6d:8f:66:83:0e:58:8a:e7:be:80:ad:c3:23:66:
a4:53:e1:10:b9:4a:93:03:19:ef:2b:fe:a2:cf:f8:
9d:0b:a4:c8:97:6e:98:3d:4b:da:96:16:22:fe:08:
76:b5:76:e5:73:a9:f4:e3:7f:0b:f9:91:4d:d8:d0:
95:bf:df:fe:af:21:bf:90:fa:18:47:93:95:a7:5a:
6f:54:ce:7a:e2:08:c7:2d:fb:ba:6d:49:f8:6c:0c:
68:b3:60:06:14:23:36:84:7a:90:ed:23:70:b3:7e:
5a:2f:cc:21:c6:bc:a5:cf:c8:aa:ab:14:b1:24:2b:
97:c1:65:16:81:2d:32:3e:69:70:49:b9:60:8b:f5:
e1:86:c2:d7:8b:43:6a:54:ac:c7:c9:33:00:0b:42:
33:7e:8e:03:f8:2d:b3:31:68:92:76:7a:de:07:34:
91:51:a6:41:5f:19:89:6f:1e:35:b4:e8:bd:ca:0d:
a1:76:07:fa:d3:54:4b:4e:a5:73:8c:aa:66:1d:fe:
52:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:FD:18:6D:52:01:1E:13:B8:F2:19:DD:92:B2:6F:F2:6A:7D:E2:F9
X509v3 Authority Key Identifier:
keyid:17:70:05:17:75:26:D6:68:E8:44:B2:A7:A5:A5:9A:C6:4A:49:56:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3AFF3Um1mjoRLKnpaWaxkpJVlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:77:e6:48:dd:1f:75:47:7b:f1:5f:99:f5:45:97:41:2f:61:
aa:ed:25:37:f2:9d:7b:99:81:f4:45:aa:74:c3:1b:51:df:66:
a5:1a:9d:05:47:7b:c0:84:12:7e:b4:13:49:a2:ba:54:72:e6:
01:cb:4b:a7:6e:17:81:18:84:fc:c1:95:44:6f:91:d6:16:12:
08:21:a6:29:fd:0b:f7:28:a4:0d:2b:b9:a4:ee:0b:b3:0c:f0:
15:db:8f:2d:fc:1f:e8:91:0d:8e:dc:31:d5:60:b1:06:a7:85:
73:4b:b5:fc:33:0a:a1:b9:1b:62:ae:03:b0:e2:b1:d6:31:7a:
88:db:7c:89:2b:36:18:a2:75:d6:a9:5d:fe:5c:14:17:82:48:
27:1a:13:22:a3:38:f4:7e:1f:f6:3e:15:00:63:f1:89:6b:4e:
7a:11:08:1d:39:66:bb:63:ef:21:c2:b8:aa:0f:9a:47:bc:17:
62:4b:76:96:ef:cb:29:18:6c:05:c9:6b:cb:2a:03:15:2d:d1:
90:5c:8d:ca:51:3a:91:bb:44:07:22:bb:82:8d:ac:f0:36:75:
aa:a4:54:68:09:d2:aa:4c:97:d3:2f:24:d2:a5:43:ad:7a:bd:
a2:b6:99:a0:b2:f0:7b:2b:9f:b0:a4:b6:9c:00:16:d3:21:71:
d4:d5:94:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:45:20 2025 by rpki-client