Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
File: S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft (raw, json)
Hash identifier: 6Qk0wIzNTJjgydK+e+1ci2jiFeeDJj+qZ8zLNDVbUp0=
Subject key identifier: 0C:44:06:B5:5A:32:BF:80:9D:63:A0:3B:CB:1C:AC:94:AB:2F:CB:24
Authority key identifier: 4B:72:06:6D:7E:6C:A8:AD:2F:FA:62:A6:9B:06:79:23:A4:2D:F9:6F
Certificate issuer: /CN=4b72066d7e6ca8ad2ffa62a69b067923a42df96f
Certificate serial: 019A7149EDF7C4A3C1A4AD518D0B1A275D8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
Manifest number: 13B9
Signing time: Tue 11 Nov 2025 05:01:01 +0000
Manifest this update: Tue 11 Nov 2025 05:01:01 +0000
Manifest next update: Wed 12 Nov 2025 05:01:01 +0000
Files and hashes: 1: 1D0kryG-hg5X4kNtLF0_L_6fbtc.roa (hash: Zop4UA3qvwcLs+PgF6ZAbdQWhdOq1xNbvhqjWudAWN0=)
2: S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl (hash: MCpfh++C1zhq50ncPvH+El4JFpis9uaQMCNf9Y7BMLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:ed:f7:c4:a3:c1:a4:ad:51:8d:0b:1a:27:5d:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b72066d7e6ca8ad2ffa62a69b067923a42df96f
Validity
Not Before: Nov 11 05:01:01 2025 GMT
Not After : Nov 12 05:01:01 2025 GMT
Subject: CN=0c4406b55a32bf809d63a03bcb1cac94ab2fcb24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:56:f6:a2:10:46:40:da:e0:df:ab:d3:64:d0:
43:63:95:2d:3b:72:58:83:fd:66:3e:5b:d1:28:97:
23:3b:f4:a0:01:1c:28:7e:05:12:0c:75:ea:12:92:
00:90:ee:c6:01:1e:de:0e:7f:42:20:e3:56:34:29:
b1:e6:08:fa:88:99:44:88:26:5d:90:70:20:b9:25:
08:a9:ee:07:25:aa:04:e0:f3:83:83:a6:46:7f:d5:
dc:97:52:67:1a:1e:08:62:41:fc:0b:ff:0a:0c:c3:
fd:97:9a:0b:64:66:f7:97:cd:32:95:c2:a8:6f:cf:
18:67:d0:90:57:64:c7:e8:e9:bf:fe:7f:19:f9:16:
47:b9:ab:69:a9:da:55:3b:7f:62:43:97:c6:15:9a:
5c:78:ef:af:8b:21:15:6d:11:35:72:dc:35:94:e2:
19:54:29:3e:11:43:55:40:11:8a:c9:69:e3:d4:7c:
7a:cb:23:91:f4:fd:e7:91:78:c0:5d:48:c8:a6:02:
b1:5f:2f:e2:4b:55:7a:dc:34:d6:ba:27:7a:2b:24:
e4:7c:de:af:28:5f:73:42:cd:f3:4d:1d:3e:f7:61:
f5:44:94:5d:e5:80:67:b2:57:24:05:fa:d8:be:c7:
b6:c0:98:34:e6:08:b5:d7:eb:5c:6e:30:28:bb:3a:
af:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:44:06:B5:5A:32:BF:80:9D:63:A0:3B:CB:1C:AC:94:AB:2F:CB:24
X509v3 Authority Key Identifier:
keyid:4B:72:06:6D:7E:6C:A8:AD:2F:FA:62:A6:9B:06:79:23:A4:2D:F9:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:d7:9b:1c:f1:1f:bc:8e:55:9d:bb:d7:80:2c:5e:4a:2e:88:
1c:4d:43:d3:60:75:3c:36:9e:6e:f2:e5:a5:60:b0:0b:3d:5b:
09:24:ca:11:32:d7:5a:3f:44:a7:6f:a0:ca:bd:66:13:ea:ae:
26:30:bf:08:2e:0b:ea:bb:f2:6f:81:4f:ff:8a:c8:cc:b1:73:
d6:9a:11:55:d2:8b:46:d3:95:8a:96:78:ec:f4:f1:88:c7:78:
6f:a0:68:24:eb:ac:71:57:ea:d4:48:dc:6a:d0:01:a8:ee:ae:
3f:45:f0:93:a6:b1:d6:25:3d:d1:53:49:1f:83:3f:96:62:e8:
94:c4:4b:b1:be:3a:d0:c8:e8:9d:20:3a:e5:bd:ca:1e:e1:7b:
b6:a5:fb:53:47:43:e9:fc:fe:67:33:e7:91:21:64:4c:25:18:
1a:8a:02:62:a9:70:61:8d:e3:4e:2c:4f:32:b8:ce:a4:b1:f5:
5c:99:68:5c:15:e6:b3:e4:d2:81:7a:ef:b8:c3:98:ef:ef:c3:
5b:b7:5b:e9:68:84:8a:66:e2:68:38:a0:4c:75:05:4d:4e:82:
9d:ce:5d:e0:d3:57:ce:53:98:a8:e5:7f:69:27:a7:3d:dc:46:
1b:31:60:12:11:6a:43:a8:28:b0:1f:6f:dc:f5:e5:5f:68:bb:
52:1b:73:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:08:53 2025 by rpki-client