Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
File: s7b1TqmxWovU8zglOGyyd7A0Od0.mft (raw, json)
Hash identifier: yaF6euHnR4HYE6Gad2oYdlZ7tJmZrpb12+n0uAHMm5I=
Subject key identifier: 1E:10:C2:58:46:99:01:E5:01:E1:C6:02:85:69:C6:B5:94:90:06:F1
Authority key identifier: B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
Certificate issuer: /CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Certificate serial: 019A7149B32E36883A643ED71CC9611A4BD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
Manifest number: 1724
Signing time: Tue 11 Nov 2025 05:00:46 +0000
Manifest this update: Tue 11 Nov 2025 05:00:46 +0000
Manifest next update: Wed 12 Nov 2025 05:00:46 +0000
Files and hashes: 1: SpsqNCwISL1D7YWDs8MOUK4XUcQ.roa (hash: VKTdP32emCO1Alc2phplZ6z5V0MT3UL3VXfP0BBA76I=)
2: s7b1TqmxWovU8zglOGyyd7A0Od0.crl (hash: VTFJRfmN9e6Vy1CDcqN2ACOc+eUMDR13y54jikF5RcQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:b3:2e:36:88:3a:64:3e:d7:1c:c9:61:1a:4b:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Validity
Not Before: Nov 11 05:00:46 2025 GMT
Not After : Nov 12 05:00:46 2025 GMT
Subject: CN=1e10c258469901e501e1c6028569c6b5949006f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6c:41:9d:09:db:71:26:57:ae:32:56:12:0b:
9d:ba:52:3b:7d:63:93:5a:52:1d:f5:93:42:ff:14:
7c:fa:bb:f1:7b:f0:de:d4:55:30:d9:27:07:a1:1c:
f9:79:29:aa:d9:31:70:0e:29:80:91:30:ac:f3:19:
0d:5b:7f:4d:11:b7:c2:53:78:87:2a:cf:1a:63:20:
cf:3c:60:0d:a1:a7:84:a2:33:4d:39:b2:d5:ea:fd:
28:e2:dc:b4:c0:6f:18:e7:89:16:64:4b:71:b4:55:
92:b4:42:47:13:b2:09:3a:f0:c2:ad:3b:12:a1:3c:
c3:cc:26:3c:63:9b:5e:26:bf:41:33:a4:44:f2:7d:
11:d8:dc:21:bc:e0:44:ef:41:ee:76:f4:e9:c4:a7:
23:a8:5c:28:9b:31:aa:98:13:68:f3:4d:94:97:c2:
8c:43:ab:38:52:15:fb:d8:9c:34:0e:28:d4:92:41:
c2:50:28:b8:f2:81:39:c5:d3:68:92:6a:98:00:eb:
3e:6f:06:1f:ca:c2:f5:cd:0b:32:9b:3c:ac:44:62:
76:ce:46:55:7d:06:4f:61:b9:8a:5c:49:36:7d:fb:
a0:33:8f:1a:8d:c7:04:12:e7:69:88:25:fc:ed:32:
33:e4:d7:3a:14:76:c1:58:42:07:5b:2d:70:34:a6:
e2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:10:C2:58:46:99:01:E5:01:E1:C6:02:85:69:C6:B5:94:90:06:F1
X509v3 Authority Key Identifier:
keyid:B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:d5:20:59:e7:1e:bb:cf:6b:34:49:8a:3f:73:a2:7b:b6:04:
0a:4c:3f:97:f5:03:8d:9c:84:69:15:21:52:ca:f7:a5:aa:a3:
5a:37:9d:f2:37:55:ef:f7:9b:75:7f:a4:63:96:5b:68:2c:5c:
b3:2e:ad:2b:2a:76:18:3d:f1:ca:f4:ab:04:4e:d7:3d:4b:a2:
34:b4:96:6a:70:55:12:42:b0:1a:fa:82:8a:bb:77:4e:db:9b:
da:ca:83:3a:7f:28:4f:3e:95:6d:e1:6f:49:98:7f:dd:e6:82:
39:cc:85:8c:0d:cf:92:c9:0d:23:42:c2:bd:b0:31:ad:cd:a4:
0a:1a:6e:b2:9c:61:3b:92:90:63:ea:58:27:85:3b:25:66:62:
71:a6:54:32:34:a2:61:26:7e:26:34:d9:bc:fa:cf:ef:05:21:
39:d1:4d:59:fd:30:c0:c2:d1:45:b6:b7:76:2b:53:6f:76:fb:
0a:40:c7:a3:d7:cc:fd:62:19:72:7c:0d:17:9d:d2:9f:5a:96:
82:e7:63:d0:b9:7a:70:54:34:c3:d3:73:e7:35:27:19:8b:57:
ef:2d:1c:3c:f2:78:c4:1c:dd:f5:8f:ef:76:db:dd:17:ae:e2:
13:fd:4d:cb:86:7e:b4:fd:8b:32:33:97:39:cb:44:5a:cb:55:
53:d9:65:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:53:34 2025 by rpki-client