Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
File: tU3fbwMzHNdzx-ersVQpuo0gvXg.mft (raw, json)
Hash identifier: ol8JYAcOItaD7w5CJX8NqAi9suJite7JPhgkO6q4kd8=
Subject key identifier: 50:0C:9F:42:B3:67:8B:80:9D:E9:BC:F0:86:76:E4:91:D5:B8:89:7B
Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Certificate serial: 019A71B7A76D6459127058C134C29BFD9C33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
Manifest number: 0862
Signing time: Tue 11 Nov 2025 07:00:52 +0000
Manifest this update: Tue 11 Nov 2025 07:00:52 +0000
Manifest next update: Wed 12 Nov 2025 07:00:52 +0000
Files and hashes: 1: 1SqAG3Japdqs2uBvGFHguJLvhqE.roa (hash: tRLIPOPh9GLi7wL54w2K0S63l5p5YYde2YPqeJx3wD8=)
2: tU3fbwMzHNdzx-ersVQpuo0gvXg.crl (hash: 5MJsIh8GtuBHeK1Alrs0BQj41xJN8/Rof/OwmF6aBMg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:a7:6d:64:59:12:70:58:c1:34:c2:9b:fd:9c:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Validity
Not Before: Nov 11 07:00:52 2025 GMT
Not After : Nov 12 07:00:52 2025 GMT
Subject: CN=500c9f42b3678b809de9bcf08676e491d5b8897b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:86:15:c8:e6:a0:e3:f4:ab:aa:27:dc:5b:d9:
f8:e6:12:6b:23:f6:ad:6f:7e:fe:d4:32:30:72:c7:
7d:02:1e:a1:a7:83:48:a3:a5:29:be:ac:f7:4b:8e:
a9:bc:fb:3a:a4:02:71:64:ae:fa:3c:14:62:4e:cd:
65:f7:84:a9:a5:d2:f9:9b:26:21:15:a6:19:03:c5:
35:3a:65:6a:60:bc:c1:d8:4a:36:29:5c:24:1e:4c:
26:a0:ee:96:b0:f7:8d:27:43:4c:0c:d6:d0:a3:7f:
85:c1:10:3a:35:c9:4a:ff:4f:0b:19:65:76:d4:dd:
cb:f2:9d:47:b7:6b:43:02:ba:00:e3:01:86:d9:5c:
39:3c:8e:4c:5e:16:6e:27:4a:70:f3:69:da:11:1e:
44:5b:b2:1f:f5:bc:41:d6:cd:09:8b:9c:86:a6:a5:
73:00:b8:4f:94:cd:7e:f3:77:f1:02:b5:be:7f:65:
f7:20:71:ae:04:69:ee:91:07:ee:9e:f0:cc:1c:7f:
84:ac:48:d1:12:a8:58:6c:67:b8:d2:34:ff:58:fe:
8a:6b:9a:4d:b2:a6:ca:ee:9d:91:98:d3:b9:53:dc:
d0:83:b2:f0:86:a8:b1:5f:c0:f4:81:58:b4:ea:a0:
c4:4a:29:2a:ca:41:3b:fd:7b:88:79:4b:10:d9:9d:
f8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:0C:9F:42:B3:67:8B:80:9D:E9:BC:F0:86:76:E4:91:D5:B8:89:7B
X509v3 Authority Key Identifier:
keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:ae:55:c7:e2:12:1b:5c:51:d2:12:e2:2c:b5:46:03:5d:00:
2a:5c:a9:73:f5:93:f8:f6:3c:71:59:a1:1c:1a:00:94:87:88:
8e:81:0a:31:78:5a:f0:09:ce:78:4f:48:7d:d0:86:42:bc:09:
0a:ff:3b:bd:5c:ed:9d:23:c9:82:bc:25:73:3c:2b:01:4c:87:
99:64:2b:91:f5:2d:28:d1:c8:b7:67:f6:4b:9e:e3:15:14:a0:
a1:6e:59:14:28:89:9c:db:55:4f:07:34:ff:ee:9b:1d:15:f4:
87:fa:6e:d6:a6:49:02:df:88:36:8c:3e:a8:05:33:79:8e:8e:
28:e7:fa:6c:b0:69:ce:bf:5a:06:a3:4c:75:12:37:3b:40:18:
32:f8:e3:a0:4c:9d:d8:21:23:8e:b7:19:5d:29:98:35:92:3e:
0c:78:db:2d:f9:39:b6:48:d5:f9:ba:b8:d0:eb:b9:27:39:21:
ed:a0:d7:2f:8f:e0:72:35:5b:cb:46:09:9f:49:58:0a:56:65:
4b:14:ab:fb:7f:37:e3:a2:02:39:f0:17:f0:34:de:bb:c8:6c:
95:99:f2:af:4c:60:f6:b9:21:d0:e5:8a:c5:eb:77:73:b9:53:
70:36:ae:17:91:56:0a:5c:f4:1f:f6:e0:c0:cd:e2:11:8e:d0:
c0:36:20:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:17:29 2025 by rpki-client