Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
File: s_sdIFBvVM-5oflFH6EKiP87L2Q.mft (raw, json)
Hash identifier: Sa2p6/actJ0UURs+50XF/khptb2S7/0nqzD+hFGmdAA=
Subject key identifier: 4E:F3:B9:CD:71:D9:A2:18:A6:F6:D4:67:CB:C2:37:AB:FA:B8:4E:7B
Authority key identifier: B3:FB:1D:20:50:6F:54:CF:B9:A1:F9:45:1F:A1:0A:88:FF:3B:2F:64
Certificate issuer: /CN=b3fb1d20506f54cfb9a1f9451fa10a88ff3b2f64
Certificate serial: 019A7226763F399437CFD3EA95634857A834
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
Manifest number: 0DC4
Signing time: Tue 11 Nov 2025 09:01:54 +0000
Manifest this update: Tue 11 Nov 2025 09:01:54 +0000
Manifest next update: Wed 12 Nov 2025 09:01:54 +0000
Files and hashes: 1: s_sdIFBvVM-5oflFH6EKiP87L2Q.crl (hash: z0US0OThe3Tgp/AUD2FTyRpfs3uPj8ksxMtmPsBUqL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:76:3f:39:94:37:cf:d3:ea:95:63:48:57:a8:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3fb1d20506f54cfb9a1f9451fa10a88ff3b2f64
Validity
Not Before: Nov 11 09:01:54 2025 GMT
Not After : Nov 12 09:01:54 2025 GMT
Subject: CN=4ef3b9cd71d9a218a6f6d467cbc237abfab84e7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:de:f3:b3:ad:7f:a4:a4:df:50:a7:c8:84:7a:
34:55:ae:9f:7d:3b:61:6c:71:59:6c:c2:17:3e:85:
55:35:a5:f4:90:e5:ac:9d:d8:b3:58:90:f7:07:a1:
1d:68:76:77:7c:c0:2b:31:19:71:e1:a4:8c:7b:03:
9d:f5:f9:c6:e7:c5:dc:30:e5:0c:6c:7e:aa:b9:c8:
93:7a:70:7e:bf:5b:e5:42:09:d7:3a:27:aa:26:3c:
5a:71:6f:3c:9a:8f:22:ac:60:1e:c5:72:30:0e:e2:
fa:89:14:ab:ee:16:ae:02:ff:f0:30:03:56:f1:e3:
7f:e9:90:22:af:94:8b:b6:5d:03:3a:e6:b6:db:0f:
8b:43:79:1d:db:54:87:0f:d3:9d:f9:4d:b4:0f:80:
78:60:43:3f:b1:ce:cc:e4:86:1c:1e:f7:24:f1:70:
60:39:13:e5:ba:02:bf:f7:06:ca:54:28:e1:ad:15:
fd:f4:94:50:94:cc:20:13:88:b7:0a:04:17:1b:4b:
ea:52:ba:74:28:44:1c:5d:60:27:8f:f3:d0:ff:35:
e1:b8:db:3a:de:a0:10:ad:e3:b9:eb:bf:1d:f4:f2:
4f:17:44:f0:e2:09:19:44:bf:60:ee:76:c9:e9:7d:
64:24:2d:b2:a8:e7:7a:f7:b5:c5:f2:9e:8a:cf:02:
d1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:F3:B9:CD:71:D9:A2:18:A6:F6:D4:67:CB:C2:37:AB:FA:B8:4E:7B
X509v3 Authority Key Identifier:
keyid:B3:FB:1D:20:50:6F:54:CF:B9:A1:F9:45:1F:A1:0A:88:FF:3B:2F:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:3b:ee:5c:e9:53:5b:f1:d7:16:f9:40:e2:8e:52:92:aa:23:
3d:c4:24:d8:1e:c6:b2:2f:50:f6:f3:c1:5d:e9:9a:37:3b:05:
ab:0f:d6:6f:a1:5d:e6:a1:e8:92:77:22:8c:8b:c2:16:fd:16:
77:3d:22:78:b1:df:4a:77:e1:68:8c:96:fe:22:a0:b0:cb:4b:
11:96:fa:dd:59:80:80:bd:39:88:b7:bb:24:4a:0a:2a:0c:73:
85:70:9c:26:2a:24:96:fa:f8:df:31:bc:21:f0:96:d3:a3:f7:
aa:c5:c8:3b:53:aa:92:9f:6a:52:46:aa:08:04:68:11:f3:3a:
00:20:db:5b:6e:65:13:db:32:93:bc:e3:9d:86:cb:03:b7:93:
a9:f8:ff:79:78:9f:53:df:aa:53:1e:fd:ac:05:eb:2e:72:51:
aa:80:86:f3:c6:cd:25:77:a5:dc:8b:0b:8d:d1:45:06:8a:60:
6c:5a:0b:12:01:52:19:e5:29:a0:f2:a5:54:8c:1c:29:88:05:
0d:94:ab:42:f0:6f:27:73:2e:b4:04:7b:03:a0:43:4d:12:f1:
62:35:59:96:cd:f2:3a:da:9a:f3:fc:7c:81:c5:98:ec:30:35:
00:6e:1d:00:70:15:15:5c:34:18:15:32:43:a7:5b:46:48:b5:
bf:8c:14:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:44:48 2025 by rpki-client