Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.mft
File: tUSbCOpqJn33NmpolcfJJMLxkm0.mft (raw, json)
Hash identifier: u8WoT0FbvT0vHNpb1TYZA6nAwT7B/2cYhc3u2trf0PM=
Subject key identifier: 5C:20:AE:F5:03:DC:59:7B:A0:60:F1:E3:8C:FB:C5:0C:73:C9:9B:3A
Authority key identifier: B5:44:9B:08:EA:6A:26:7D:F7:36:6A:68:95:C7:C9:24:C2:F1:92:6D
Certificate issuer: /CN=b5449b08ea6a267df7366a6895c7c924c2f1926d
Certificate serial: 019A71B85F75AE4983FBC63164BF2E4D1D73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUSbCOpqJn33NmpolcfJJMLxkm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.mft
Manifest number: 02BF
Signing time: Tue 11 Nov 2025 07:01:39 +0000
Manifest this update: Tue 11 Nov 2025 07:01:39 +0000
Manifest next update: Wed 12 Nov 2025 07:01:39 +0000
Files and hashes: 1: 12VZdcmHAZ40OHT9mrIrMjn0594.roa (hash: ET8sgbp54z2ReDcdD/bnaoyAnFdtN16gcR5nsUzXKcM=)
2: tUSbCOpqJn33NmpolcfJJMLxkm0.crl (hash: 7IQRtDWeNAahHDFDC82klS/idIEk0lc+8V9t/EmnCug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUSbCOpqJn33NmpolcfJJMLxkm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:5f:75:ae:49:83:fb:c6:31:64:bf:2e:4d:1d:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5449b08ea6a267df7366a6895c7c924c2f1926d
Validity
Not Before: Nov 11 07:01:39 2025 GMT
Not After : Nov 12 07:01:39 2025 GMT
Subject: CN=5c20aef503dc597ba060f1e38cfbc50c73c99b3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:69:45:a8:52:02:3a:00:b6:02:f1:18:ba:fb:
60:b7:e1:e3:34:66:06:00:83:d2:b8:5f:49:b3:f9:
88:ec:4d:d4:80:64:4d:e8:a7:4f:1b:0e:99:45:18:
fe:12:ae:cf:d6:51:78:d3:61:66:07:10:4b:a8:f9:
82:4a:8d:2f:d4:1d:f5:d8:af:ea:45:5d:f2:ce:5d:
49:6c:a5:41:a1:69:8b:07:cb:0a:31:be:4e:64:0e:
f3:16:b6:f8:69:5c:5e:ac:78:ba:46:f0:26:22:6d:
66:13:f0:bd:5d:92:21:e4:e5:8f:cc:2d:96:71:a7:
0a:1f:59:96:ce:dc:43:96:a9:90:4a:2b:7c:f5:8e:
f5:32:b2:2c:78:ec:f0:eb:8b:da:46:48:6f:51:56:
5a:08:1b:46:90:47:c8:4e:db:ce:7a:51:76:c8:66:
3c:7b:16:77:2c:52:f6:56:57:1a:90:32:88:80:5e:
d2:5b:88:4f:8b:f5:a1:b3:0b:c8:47:01:1a:84:85:
7a:a8:5f:58:0b:bd:9d:a3:2e:32:18:27:0e:ea:af:
6a:ec:bb:93:76:6b:88:d9:f5:25:81:09:7d:48:7e:
06:25:16:da:20:d8:7d:ad:f8:ae:60:4a:a0:e1:c7:
e6:9d:65:9c:c4:75:f3:98:4b:81:19:0c:da:cb:cb:
a2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:20:AE:F5:03:DC:59:7B:A0:60:F1:E3:8C:FB:C5:0C:73:C9:9B:3A
X509v3 Authority Key Identifier:
keyid:B5:44:9B:08:EA:6A:26:7D:F7:36:6A:68:95:C7:C9:24:C2:F1:92:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUSbCOpqJn33NmpolcfJJMLxkm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:a2:7a:e3:f7:fc:ed:c2:b0:c8:a6:1e:66:b8:a6:f2:c6:e5:
01:7e:56:1e:b0:d7:90:31:30:09:a8:dc:f8:97:de:24:3a:fb:
59:cc:2c:75:d3:74:57:48:c0:2f:01:4c:e9:75:13:75:e4:bb:
7c:a2:e5:29:ce:9e:e3:7d:6d:8f:ee:bb:e4:f8:3f:48:af:a2:
02:10:a0:73:25:b1:3f:1d:47:d7:8c:a0:e8:a1:f9:94:75:08:
f8:e7:37:27:b3:f5:0e:88:a0:56:09:69:cb:d2:66:5c:25:4d:
f6:bf:6d:bd:6e:94:4a:40:fe:7c:22:47:47:c9:b2:53:66:bc:
f8:d4:f2:9f:4f:37:1f:ed:ec:ba:e5:a0:cc:82:01:04:ef:a9:
9a:8c:bd:0c:4c:4c:c9:e5:b6:ff:c2:01:96:5b:f3:d7:06:d9:
57:16:f6:00:c3:4a:7b:10:25:6f:92:5e:e6:44:14:c4:61:63:
d6:c9:4a:dd:ad:f3:b1:66:18:f5:92:18:c3:9e:29:8e:5c:ce:
cd:c9:73:6f:a7:dd:e3:19:49:e2:71:da:51:2c:2d:59:73:05:
43:af:14:b7:17:71:a4:a4:93:95:23:60:07:0e:e0:fc:66:41:
4e:c0:ab:4b:d3:2d:be:e9:bb:b6:d0:39:3a:35:5e:6d:00:6b:
3d:52:56:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:07:01 2025 by rpki-client