Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/sVS0YRuM6ChydbxHppr6N4tBQL8.mft
File: sVS0YRuM6ChydbxHppr6N4tBQL8.mft (raw, json)
Hash identifier: i/88BHVUfHxE4s8ViZKqkMH4eGSnyHD/LB0NKZV1SZU=
Subject key identifier: 39:D0:C2:AD:5D:21:61:38:3C:AB:9F:51:97:E8:B2:42:E5:65:7D:EC
Authority key identifier: B1:54:B4:61:1B:8C:E8:28:72:75:BC:47:A6:9A:FA:37:8B:41:40:BF
Certificate issuer: /CN=b154b4611b8ce8287275bc47a69afa378b4140bf
Certificate serial: 019A71EEF89BA001DCC308B673C2D19A1CE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVS0YRuM6ChydbxHppr6N4tBQL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/sVS0YRuM6ChydbxHppr6N4tBQL8.mft
Manifest number: 03A1
Signing time: Tue 11 Nov 2025 08:01:17 +0000
Manifest this update: Tue 11 Nov 2025 08:01:17 +0000
Manifest next update: Wed 12 Nov 2025 08:01:17 +0000
Files and hashes: 1: _cD4yVpG6lnwIeREBiUBwAEeAKA.roa (hash: jnUyAI5YI7WapRKSFkmTN6SUzj6iHT0vp3PMP0QrWlQ=)
2: sVS0YRuM6ChydbxHppr6N4tBQL8.crl (hash: rI8R+fKGhAUNrqH1M9ZXFq77fIi2VHvkoZg16Wr26+4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/sVS0YRuM6ChydbxHppr6N4tBQL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/sVS0YRuM6ChydbxHppr6N4tBQL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVS0YRuM6ChydbxHppr6N4tBQL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:f8:9b:a0:01:dc:c3:08:b6:73:c2:d1:9a:1c:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b154b4611b8ce8287275bc47a69afa378b4140bf
Validity
Not Before: Nov 11 08:01:17 2025 GMT
Not After : Nov 12 08:01:17 2025 GMT
Subject: CN=39d0c2ad5d2161383cab9f5197e8b242e5657dec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2f:8c:0c:6c:c0:fb:1b:dd:f4:2b:22:23:06:
6c:1a:6b:1f:43:73:59:c5:09:8e:9a:bd:b7:d5:09:
99:61:47:21:82:60:58:94:9f:68:1e:ca:de:f8:a1:
77:c4:54:ba:b7:ec:0a:5a:58:6a:1b:4b:2e:22:a8:
04:64:70:4d:f6:a3:69:44:6a:3b:22:27:e9:09:ac:
1b:cb:5e:73:f9:58:6c:03:d0:3f:e5:5a:6c:ad:96:
70:ec:96:2e:cd:bc:e0:f4:98:6b:f7:9b:1c:31:c8:
5c:92:c4:6b:17:f1:a0:94:f0:c4:f9:a2:41:ff:f2:
e7:95:cd:e4:48:a2:2b:97:95:26:4b:89:83:6e:4b:
3f:b4:e5:04:fa:97:d6:97:39:26:a8:f3:ef:14:81:
57:ff:2e:68:4e:d8:ac:1f:f3:a6:29:52:a2:a6:22:
bc:65:a0:68:21:59:57:dd:fb:8d:61:a1:f7:21:17:
93:aa:b7:f6:d1:61:41:16:de:56:b6:7c:83:c7:14:
4e:26:de:91:12:3b:2b:b9:b4:4b:d5:04:c0:e0:99:
57:48:74:54:63:ea:5f:d7:dd:95:6a:d2:86:b0:8b:
4c:51:b5:ee:b5:6e:e6:f7:10:82:a3:80:26:03:7d:
00:c9:a3:c9:e5:31:67:92:34:6e:98:d5:95:27:55:
f7:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D0:C2:AD:5D:21:61:38:3C:AB:9F:51:97:E8:B2:42:E5:65:7D:EC
X509v3 Authority Key Identifier:
keyid:B1:54:B4:61:1B:8C:E8:28:72:75:BC:47:A6:9A:FA:37:8B:41:40:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVS0YRuM6ChydbxHppr6N4tBQL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/sVS0YRuM6ChydbxHppr6N4tBQL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/sVS0YRuM6ChydbxHppr6N4tBQL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:e8:b1:44:cc:d6:36:9e:ef:df:29:38:83:aa:95:a1:04:c1:
5c:3b:50:e7:43:ba:78:7e:7b:4e:96:ee:90:33:4e:49:c1:02:
8a:48:ac:0a:9d:33:5b:b4:11:b2:4c:06:b4:a5:4e:f8:70:3d:
9e:c4:45:07:6d:1d:ce:ac:1c:f5:a9:d4:8f:4a:30:53:59:fb:
f8:f7:79:ec:42:dc:c2:b7:ec:d6:64:16:47:92:6e:b0:26:03:
e8:29:12:99:3b:af:e4:94:3e:97:e8:27:80:05:a1:06:6f:34:
bb:35:a0:56:b0:92:b6:da:9e:48:2e:1e:62:ce:27:fb:e5:3d:
ce:b2:c1:7a:1f:07:e5:6f:69:7f:d8:19:74:21:f8:4e:c3:27:
02:41:79:d4:45:26:5a:e1:5c:63:54:5e:0f:17:6e:54:f0:6c:
c2:ec:47:65:c5:43:2e:d0:a1:5d:57:de:1f:be:dd:e5:29:e8:
00:60:be:ef:c6:46:04:ae:57:cf:fe:bf:15:f1:a6:80:dd:01:
6b:fe:93:84:00:0b:8c:29:74:a3:9b:51:e1:32:df:5f:17:bf:
d7:19:b7:a2:23:28:b0:0a:b9:52:26:28:28:03:8d:f5:17:70:
9f:ba:d6:5b:db:80:76:8e:44:ab:f3:bd:78:c2:3c:4f:76:04:
61:99:cc:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:16:00 2025 by rpki-client