Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
File: 1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft (raw, json)
Hash identifier: AJQKXl158slAoNCe/y+5yw/L0JU0MQ4Ukg+jKjfbvQU=
Subject key identifier: 59:0C:AF:0D:E1:5F:B9:C1:80:FE:C3:51:AB:5D:91:F6:73:B7:64:46
Authority key identifier: FB:75:13:02:AF:7B:5C:D6:BE:F3:71:7B:68:36:7E:02:B6:17:D2:DC
Certificate issuer: /CN=fb751302af7b5cd6bef3717b68367e02b617d2dc
Certificate serial: 019A71EE7D941FAD26A91FD383E014124CE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
Manifest number: 116B
Signing time: Tue 11 Nov 2025 08:00:46 +0000
Manifest this update: Tue 11 Nov 2025 08:00:46 +0000
Manifest next update: Wed 12 Nov 2025 08:00:46 +0000
Files and hashes: 1: 1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl (hash: RTRJgJFgxs4GaOeHZCILlxaFFB5T/AGHr2/JphKVAY8=)
2: Qqhw1hFjAH2cjMyIzDFuLuhBB38.roa (hash: N8UT7eSxYsrDW5XIIE4cv48SYlBhyKYdxt2C78AnGxs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:7d:94:1f:ad:26:a9:1f:d3:83:e0:14:12:4c:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb751302af7b5cd6bef3717b68367e02b617d2dc
Validity
Not Before: Nov 11 08:00:46 2025 GMT
Not After : Nov 12 08:00:46 2025 GMT
Subject: CN=590caf0de15fb9c180fec351ab5d91f673b76446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:93:8d:72:da:2b:78:e3:07:4d:57:dc:d6:7e:
e3:53:8c:eb:e6:d6:8b:a9:85:eb:1c:ba:d6:46:44:
3d:a1:27:86:89:51:3d:a5:c0:33:9d:b8:1f:9a:dd:
d9:6a:9b:64:e4:e0:e0:fd:49:db:16:85:4c:e1:3c:
db:c3:cd:bf:6c:91:6e:00:76:bd:35:80:93:5d:48:
a1:e3:ae:96:40:c4:35:c9:2b:a9:e6:fe:3d:2a:a7:
bb:2e:87:53:53:02:6e:d2:e6:92:f1:c8:e2:c9:aa:
9f:1d:b4:1b:a5:97:25:7b:7c:17:0b:87:1f:aa:ce:
f2:ab:95:b1:68:8e:6b:4b:26:00:e7:91:64:1a:f2:
ec:45:4f:d0:d6:bd:f0:f2:81:21:72:73:a8:19:ac:
c0:8d:1d:63:75:15:a7:04:2a:d1:70:19:65:1f:dd:
d4:33:44:ca:f7:fd:15:33:39:b7:c0:53:d2:af:bc:
2a:23:28:ce:00:78:44:f4:e9:27:00:d0:ab:b7:41:
ee:d5:e6:49:b9:2e:87:f6:b9:3b:0b:26:a6:28:2c:
a0:1c:bf:1d:ce:92:db:bf:ff:bc:18:d0:e2:a0:46:
7f:99:27:93:22:2c:09:6e:20:0a:93:5d:35:dc:45:
56:8f:2a:76:17:3c:a9:4e:e8:72:7f:c6:9a:f2:e4:
d9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:0C:AF:0D:E1:5F:B9:C1:80:FE:C3:51:AB:5D:91:F6:73:B7:64:46
X509v3 Authority Key Identifier:
keyid:FB:75:13:02:AF:7B:5C:D6:BE:F3:71:7B:68:36:7E:02:B6:17:D2:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:4f:31:85:f8:f2:2c:04:05:94:5e:8c:59:25:b2:eb:26:6f:
63:87:43:2e:20:f4:31:73:0c:8b:c9:cb:37:c8:c2:a1:73:13:
e5:a3:3b:6a:ce:99:44:7d:53:c4:10:08:89:6f:a8:70:44:6e:
8a:a5:b3:df:3b:96:5d:e3:51:d5:14:79:46:61:5f:68:ae:f5:
75:6b:ef:1b:00:d9:9d:52:a2:58:f3:b4:e5:e8:e1:a5:41:52:
21:a5:2a:dd:6c:3f:69:3f:33:b8:66:68:fa:48:a1:68:4a:a5:
30:89:54:8f:f5:40:e1:98:47:3d:a5:25:43:b1:f9:fc:c7:c8:
21:09:25:c5:81:94:00:3b:96:3b:82:7a:1c:e6:5e:4a:4d:63:
74:f0:f2:6a:6b:be:bb:ca:fa:75:43:66:19:5d:cc:70:38:b2:
1b:6f:68:53:4c:da:21:0a:3e:e8:4c:3d:c3:68:ae:71:7b:7b:
a8:f6:da:82:46:5c:be:cb:f0:a8:ee:0d:2c:cc:b0:60:26:44:
aa:0e:18:0a:ab:5d:4c:0e:a5:2a:0f:ae:32:31:8d:17:d7:f6:
03:82:66:8c:5a:a7:ff:84:7d:46:ed:de:db:ce:fc:78:48:7f:
e1:51:42:bb:cc:3d:c6:90:42:5c:a1:9f:5e:66:7d:6d:ae:07:
09:88:08:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:32 2025 by rpki-client