Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft
File: _H1Kt3YauiTzPVtt-8J8q3OLte4.mft (raw, json)
Hash identifier: 8gX70kLZMEBGDi4NXoBuHxVqF3cV96xEAvLbSeUcPSQ=
Subject key identifier: F7:ED:DB:F1:15:85:62:10:28:56:09:D2:50:4B:0B:8A:8C:38:EE:04
Authority key identifier: FC:7D:4A:B7:76:1A:BA:24:F3:3D:5B:6D:FB:C2:7C:AB:73:8B:B5:EE
Certificate issuer: /CN=fc7d4ab7761aba24f33d5b6dfbc27cab738bb5ee
Certificate serial: 019A7338738611BBAB884B051931019CC860
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_H1Kt3YauiTzPVtt-8J8q3OLte4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft
Manifest number: 13BE
Signing time: Tue 11 Nov 2025 14:01:10 +0000
Manifest this update: Tue 11 Nov 2025 14:01:10 +0000
Manifest next update: Wed 12 Nov 2025 14:01:10 +0000
Files and hashes: 1: _H1Kt3YauiTzPVtt-8J8q3OLte4.crl (hash: Ze6kDQJN61oveEWaIHg1uSoX+VkMDzToXfkPCa+JjqY=)
2: m1aho7A62fK7s2UNnicExFjE6us.roa (hash: ADQVW+bl8YrIssIav1fCxE/xWNAztKLL5kf78n8W9UA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft
rsync://rpki.ripe.net/repository/DEFAULT/_H1Kt3YauiTzPVtt-8J8q3OLte4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:38:73:86:11:bb:ab:88:4b:05:19:31:01:9c:c8:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc7d4ab7761aba24f33d5b6dfbc27cab738bb5ee
Validity
Not Before: Nov 11 14:01:10 2025 GMT
Not After : Nov 12 14:01:10 2025 GMT
Subject: CN=f7eddbf115856210285609d2504b0b8a8c38ee04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:13:f3:c3:93:73:a2:72:80:59:f3:db:17:96:
4e:2d:34:34:94:50:f8:2e:1a:aa:e6:ae:2e:ad:d9:
cf:05:ec:65:f7:73:c1:c7:9d:a5:14:69:ec:87:7e:
91:93:a8:ae:4c:51:8e:91:e3:56:cb:21:aa:6f:fc:
38:a3:2a:3d:1e:b7:66:bc:4d:b1:f9:e0:67:c1:0c:
22:75:7d:e2:e1:36:69:f7:1b:c5:6f:08:46:8a:cc:
02:c1:41:e2:1e:e0:1c:d4:a4:20:53:19:76:35:f4:
5a:59:9b:95:2c:ec:e4:fd:0c:ba:1a:d6:69:90:bf:
fb:33:6f:e9:e8:c7:42:de:6d:f3:f8:b3:49:ef:57:
f7:31:ab:99:32:27:57:c0:da:18:c5:5f:30:e4:e5:
00:da:e5:2d:65:ed:07:16:95:15:a6:75:74:64:a8:
95:5f:1a:a2:05:86:de:48:a9:39:8e:ce:77:d2:50:
09:8e:8b:ca:08:0b:ce:70:8d:c7:82:fa:80:45:d0:
ff:c8:c7:55:16:24:c7:e6:94:b4:87:0a:5e:46:bb:
5b:b6:97:6f:e2:08:32:23:bd:09:1d:1a:ad:d0:33:
3c:5a:c7:f1:8b:26:ca:aa:b3:81:43:f2:2f:1f:3e:
83:99:f2:cd:9d:63:0f:4a:cb:ce:99:8c:a8:87:cc:
57:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:ED:DB:F1:15:85:62:10:28:56:09:D2:50:4B:0B:8A:8C:38:EE:04
X509v3 Authority Key Identifier:
keyid:FC:7D:4A:B7:76:1A:BA:24:F3:3D:5B:6D:FB:C2:7C:AB:73:8B:B5:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_H1Kt3YauiTzPVtt-8J8q3OLte4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:eb:ef:6e:8b:f2:3c:98:49:63:ce:34:b2:40:b9:6a:88:68:
a3:eb:1b:33:da:20:17:41:2f:21:d6:6c:df:c6:7d:79:19:a8:
f1:3e:fd:b2:a5:88:98:17:be:ea:b4:7f:8b:a6:48:9f:33:b2:
9b:89:90:45:4b:e3:23:32:34:13:49:78:72:bc:52:e4:1b:13:
ac:33:c2:d5:5e:8f:3f:58:54:51:5f:84:b0:89:dd:10:be:1c:
bd:67:89:6a:4d:40:83:1f:69:c9:d7:a1:ca:f1:75:c8:95:a4:
55:8d:f2:36:35:a3:41:e0:1f:8b:2e:d0:4b:79:d9:66:ca:e2:
2c:1d:e4:d0:d0:4e:a3:96:41:88:9f:ac:e1:0f:04:a4:d0:b6:
38:55:c8:9f:21:b0:a7:0e:a9:8b:ad:39:68:4a:2f:26:3c:fd:
e1:c0:71:c3:06:95:b0:6b:b5:6e:f8:8e:0c:ce:0a:c5:ad:44:
25:21:69:62:21:3d:bb:f1:05:88:03:4c:5e:e0:5e:e8:b6:f5:
98:8f:38:17:70:87:bf:21:2c:50:0e:cf:81:4d:35:e4:3b:0d:
5c:81:d2:cc:0d:18:5d:c8:0d:68:95:92:83:b1:84:46:f5:78:
c3:f1:bb:5a:57:1b:b4:e1:75:a7:33:ba:1b:54:95:63:21:17:
79:06:da:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:19:34 2025 by rpki-client