Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
File: sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft (raw, json)
Hash identifier: yJGPXck6w1a7nvFWdk+DyDY0cofsiLlkv9ExWbitOWY=
Subject key identifier: 06:55:8B:38:96:5A:25:D6:B4:CF:79:5D:39:91:CD:FD:0E:5A:6E:94
Authority key identifier: B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94
Certificate issuer: /CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894
Certificate serial: 019A71B8D729CBAB8D7853BE11ABA272E86B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
Manifest number: 0C03
Signing time: Tue 11 Nov 2025 07:02:10 +0000
Manifest this update: Tue 11 Nov 2025 07:02:10 +0000
Manifest next update: Wed 12 Nov 2025 07:02:10 +0000
Files and hashes: 1: Ewu_L9NGAMIn9J1bD2mKPYHfLN0.roa (hash: MPg//qxTuFJeVfIte2bOUUVJ5G8w+mQ6T68mV0V7xWY=)
2: sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl (hash: yMLQ63YdKRwP9QXIGv8HRVkZMx7Rn4EChMBGGv68kgM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:d7:29:cb:ab:8d:78:53:be:11:ab:a2:72:e8:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894
Validity
Not Before: Nov 11 07:02:10 2025 GMT
Not After : Nov 12 07:02:10 2025 GMT
Subject: CN=06558b38965a25d6b4cf795d3991cdfd0e5a6e94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:50:6d:5c:7c:53:98:b3:d9:ff:aa:c6:31:a4:
f6:b5:f0:57:25:2f:fc:1f:25:13:70:cd:28:13:c5:
c9:1b:bc:f3:6c:3a:de:22:e9:d2:ea:0b:37:4c:76:
ef:5a:e1:a9:15:f4:ae:96:25:b0:0d:94:22:17:97:
28:2c:f6:17:22:02:3c:93:0b:11:82:8a:c7:1d:72:
b8:7d:8e:6e:85:a4:86:9c:c1:c5:ff:02:39:75:21:
b4:49:db:bd:50:f4:3a:4c:05:b9:8e:57:dc:eb:d2:
81:ae:d1:84:1f:b5:fe:ad:fa:e5:01:94:23:a5:88:
fe:f8:8d:0c:cc:f9:8f:b1:e2:bf:a0:4b:bb:13:2e:
70:77:f5:97:cb:f0:13:20:ea:f9:ea:49:4d:51:20:
29:60:67:7f:b6:6f:a3:07:6e:6c:df:79:74:68:7b:
e4:81:b8:c6:82:e4:bf:de:9c:7c:ad:38:b1:de:4f:
6a:4a:75:25:ab:1a:83:31:9c:84:60:41:9d:82:e2:
60:f2:97:9c:18:03:6a:27:aa:d1:bc:fa:ce:60:4f:
6e:3f:bc:ab:22:71:f2:ec:06:c9:7a:b4:3b:e4:87:
af:a0:fa:59:19:0a:02:c3:33:dc:6b:03:bf:96:53:
05:7e:c6:72:03:c9:a4:57:7c:95:24:50:82:a9:d6:
3d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:55:8B:38:96:5A:25:D6:B4:CF:79:5D:39:91:CD:FD:0E:5A:6E:94
X509v3 Authority Key Identifier:
keyid:B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:e3:63:64:2f:9a:8a:05:f1:2b:e8:37:aa:de:56:fe:36:77:
44:c2:bf:19:6c:59:ad:f0:e8:ec:b7:38:28:cd:35:2f:f3:f8:
c9:e2:1a:eb:88:90:d5:d6:f3:a1:38:76:e7:fd:7c:16:13:19:
76:30:80:9d:32:41:f1:0e:d7:4a:5a:31:ef:84:64:f8:9a:f6:
73:3a:cd:24:a7:51:9d:0e:e4:f2:98:c5:78:b2:fa:aa:d4:cf:
6b:57:b3:67:7f:7d:8c:57:74:d9:c2:8c:e3:d0:95:60:db:4b:
64:0e:a2:2f:fc:ef:8c:c4:65:83:54:f6:f8:1a:8e:4b:0f:0c:
83:06:5d:df:76:0c:6f:b9:99:56:17:8d:b5:e3:c4:0d:39:38:
2f:c7:9a:60:b8:9a:fa:05:28:ec:79:76:84:9c:16:8a:42:4e:
a4:a0:f2:94:6e:84:a9:87:dd:ed:d1:bb:1c:e1:8c:4f:25:ed:
7b:ef:43:0a:60:d6:97:e5:bd:26:5e:c3:ea:85:e8:7d:ec:ea:
c5:a7:bf:18:c5:d6:d0:91:5c:e9:23:54:da:69:1a:57:b7:87:
3e:47:07:90:a1:12:ff:67:72:8c:2c:3c:8b:a6:b6:58:52:ba:
20:f4:84:22:25:42:d6:d3:d1:75:db:ef:02:ab:05:1e:44:52:
8d:c3:6a:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:16:51 2025 by rpki-client