Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
File: si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft (raw, json)
Hash identifier: m2REbA70CVTLI41EloZdnnOgMD7NDPSQP5zHTG80kNQ=
Subject key identifier: 90:50:0A:78:C8:1F:BB:5D:49:FD:CC:48:24:7E:F0:E7:E9:5D:38:79
Authority key identifier: B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6
Certificate issuer: /CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
Certificate serial: 019A134D5335F29AB5375CE71D5CA9CAD547
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
Manifest number: 04BE
Signing time: Thu 23 Oct 2025 23:00:25 +0000
Manifest this update: Thu 23 Oct 2025 23:00:25 +0000
Manifest next update: Fri 24 Oct 2025 23:00:25 +0000
Files and hashes: 1: Ol4H0Ofe0seTJhjp23zwbv14mcA.roa (hash: h0M7hTbR8JXwLU22tU4Fw/p8crplmJ6JisUg1rjxv0k=)
2: si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl (hash: NCBW90xRjCvwrX2biLnB0cf7w6YjIudpQ/ChiM6Be9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Oct 2025 21:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:13:4d:53:35:f2:9a:b5:37:5c:e7:1d:5c:a9:ca:d5:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
Validity
Not Before: Oct 23 23:00:25 2025 GMT
Not After : Oct 24 23:00:25 2025 GMT
Subject: CN=90500a78c81fbb5d49fdcc48247ef0e7e95d3879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:17:85:42:19:13:79:79:68:6b:d1:4f:bd:d7:
cc:a3:7c:05:23:8e:3c:90:0e:e3:bb:a6:80:71:ae:
e1:85:5f:44:3b:aa:f1:64:80:8c:2e:fe:48:77:97:
a3:13:57:de:f6:0e:78:47:09:90:0d:35:86:41:8e:
94:40:7b:12:7b:24:8b:21:2d:85:ae:5c:68:7f:b8:
9a:f4:96:56:41:37:e9:38:b4:4f:a7:76:4d:29:0e:
4d:67:19:a8:0e:c4:29:7f:dd:41:dc:07:b5:77:06:
c3:3c:a9:29:e7:68:0d:41:c6:94:83:1a:78:00:30:
22:f4:e2:9e:92:0d:70:54:fe:7e:1b:5f:a5:6a:ba:
89:a5:26:89:a6:14:b1:2f:e8:19:67:a8:f3:72:a4:
72:5a:37:a8:b3:cd:93:24:b1:25:11:22:2c:2a:7b:
01:a2:47:81:33:e6:d0:81:db:71:d2:27:5c:81:20:
6e:5e:e5:39:98:6d:20:d7:95:0d:11:e3:c0:d1:1e:
60:49:f6:0a:23:09:c7:5c:ae:83:f2:ef:bd:45:3d:
d8:a6:d6:f6:f5:d1:cd:01:91:08:a4:70:f4:2d:6b:
1a:fe:a6:7e:04:1e:2e:f7:65:d1:7f:65:64:35:8d:
aa:83:a4:47:62:40:f9:f1:aa:51:87:62:ea:f6:21:
7b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:50:0A:78:C8:1F:BB:5D:49:FD:CC:48:24:7E:F0:E7:E9:5D:38:79
X509v3 Authority Key Identifier:
keyid:B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:f8:d8:c7:f0:22:b2:3b:e3:13:24:1e:47:87:45:0f:6f:ed:
ca:b2:f9:97:f4:01:dc:22:f3:83:c4:22:b9:9e:0b:2f:81:d3:
04:9c:14:dc:b6:97:83:56:b6:cc:d2:a8:43:97:26:74:91:a9:
96:65:5e:45:8f:36:e5:c6:0b:3c:cd:ff:65:18:82:72:a0:1e:
4c:b2:b1:3a:b1:fc:6c:34:55:2a:2c:17:4b:d2:4b:44:9e:7f:
25:d5:2a:fd:2c:76:ec:f3:fb:72:7d:e6:68:2d:ba:ad:33:8f:
c5:8b:02:d4:84:6d:82:fa:96:30:fe:11:46:4f:c3:ba:30:15:
c7:87:a6:d3:7c:3c:80:55:61:7d:b6:17:5a:72:15:a9:0e:82:
f2:cf:14:44:68:ef:79:3c:0e:18:3e:86:a6:38:5d:d7:ae:27:
41:4b:f5:99:c4:0a:4a:f5:e5:f3:09:47:20:d1:91:a0:90:a9:
23:5d:75:6c:47:87:4f:39:84:b9:cf:c6:c3:5e:0f:6f:3a:a7:
a3:07:2d:1b:df:f9:8d:bb:c1:1a:23:5b:03:ad:ad:22:1e:d7:
97:0b:65:f5:85:f1:ce:ee:8a:82:f6:36:a7:c1:b2:15:d5:88:
a8:d3:a4:2b:1a:5d:1a:b4:0e:89:8e:0e:d1:6b:1d:88:50:7b:
31:2a:99:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 03:29:29 2025 by rpki-client