Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.mft
File: SdhmPTuWngJTom1UJb7hxdRDs2E.mft (raw, json)
Hash identifier: rei1OZXrj9bgYaZVeBRcQrG+RN7FMUtRRFV/RoH05+Q=
Subject key identifier: 58:03:5E:2E:93:25:C0:D4:8A:32:AA:69:2B:4A:5A:4E:58:AD:14:A1
Authority key identifier: 49:D8:66:3D:3B:96:9E:02:53:A2:6D:54:25:BE:E1:C5:D4:43:B3:61
Certificate issuer: /CN=49d8663d3b969e0253a26d5425bee1c5d443b361
Certificate serial: 019A71B92008D8E311A3ADDC9395D319310E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SdhmPTuWngJTom1UJb7hxdRDs2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.mft
Manifest number: 087D
Signing time: Tue 11 Nov 2025 07:02:29 +0000
Manifest this update: Tue 11 Nov 2025 07:02:29 +0000
Manifest next update: Wed 12 Nov 2025 07:02:29 +0000
Files and hashes: 1: 1-Sq9N9tDpqPpCxfnJu3FOlWH6ZA.roa (hash: Tpyvvdu3VZJ5oo8JL4qWFUonGAY9eL3r/UHvnFRq5cY=)
2: SdhmPTuWngJTom1UJb7hxdRDs2E.crl (hash: fabD0pIPXDxKXk5x8gYP8gT/PoUeOCyLdzOWmQdYWaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.mft
rsync://rpki.ripe.net/repository/DEFAULT/SdhmPTuWngJTom1UJb7hxdRDs2E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:20:08:d8:e3:11:a3:ad:dc:93:95:d3:19:31:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49d8663d3b969e0253a26d5425bee1c5d443b361
Validity
Not Before: Nov 11 07:02:29 2025 GMT
Not After : Nov 12 07:02:29 2025 GMT
Subject: CN=58035e2e9325c0d48a32aa692b4a5a4e58ad14a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:33:9c:e0:75:5c:12:c9:b8:75:59:fb:22:4c:
bd:54:ec:9b:d4:74:9f:2a:56:c8:8f:8a:98:06:b2:
db:9b:46:09:56:e2:e4:4b:69:2b:db:3d:b5:fd:b9:
63:da:cb:19:f5:e9:7e:64:1b:34:a6:1c:9e:8e:84:
50:bc:15:12:f4:2f:34:df:63:f0:37:d4:88:83:fb:
b1:84:8f:22:e5:9c:95:84:18:78:b0:8d:81:72:a7:
46:b7:e6:97:3b:a1:93:ad:0d:13:8e:ef:e3:54:e1:
e7:42:8f:05:58:bf:a9:0d:f4:a0:f6:f0:97:19:ac:
bc:8c:57:ca:51:13:bf:a5:2b:9c:1b:e8:8d:ad:dd:
2f:3f:94:4e:5e:8b:91:17:f2:e4:ec:10:25:46:38:
c3:e0:35:09:ef:d7:a2:a3:d9:42:d7:6a:4e:52:20:
da:d6:3e:9a:6a:91:f2:f1:63:2c:f4:d9:5d:ab:bc:
10:89:af:20:37:ee:6b:c4:84:b2:ed:5f:85:fb:ba:
0b:dc:11:69:d1:15:51:ff:f9:e6:f5:3e:e6:a2:e5:
78:58:24:d1:e9:d9:61:2d:12:5f:a5:e1:bc:c0:f8:
cc:ba:ce:c1:b1:74:4e:41:56:09:60:65:66:d4:76:
28:34:a0:82:53:4d:ce:bf:7e:48:7c:d6:34:1b:e9:
69:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:03:5E:2E:93:25:C0:D4:8A:32:AA:69:2B:4A:5A:4E:58:AD:14:A1
X509v3 Authority Key Identifier:
keyid:49:D8:66:3D:3B:96:9E:02:53:A2:6D:54:25:BE:E1:C5:D4:43:B3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SdhmPTuWngJTom1UJb7hxdRDs2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:17:12:d6:c2:9d:fe:ed:df:cb:e0:9d:9c:e9:60:56:f3:a0:
61:be:96:3b:a1:bf:3b:a3:87:00:b0:40:f6:57:ff:23:9f:16:
1a:63:8d:d4:c6:a5:03:f3:bf:72:79:d6:b3:0e:a1:a7:93:25:
11:7a:a8:ab:92:1f:fe:5d:92:35:20:ec:5a:7d:f3:61:ef:ac:
eb:3f:13:38:df:fe:75:f3:e8:7a:2f:aa:02:ba:8f:56:b4:f4:
63:fd:d8:07:e8:11:8f:30:6a:32:7d:cf:06:1a:08:95:7c:02:
7f:ba:8d:94:75:32:a7:a0:26:e0:4f:9f:09:33:e6:f1:a7:30:
cc:00:b8:ec:17:75:84:dd:f5:a8:52:3c:12:8e:34:6c:65:9c:
36:b2:65:80:f9:84:ad:8b:43:4b:6d:7e:85:48:fd:d6:2d:79:
8b:d6:34:14:1f:75:da:40:a4:ec:4f:a9:1d:ab:6c:31:36:b7:
9b:50:82:51:ac:03:2b:c4:c2:62:34:ec:7a:8c:40:34:17:d9:
14:31:5d:0d:8e:9e:bd:bb:cf:7c:b6:4e:44:06:60:ef:d0:c9:
ab:35:fc:6e:d5:54:a5:05:3b:2a:f4:a6:72:d5:b2:99:ae:ad:
a8:df:8c:fb:42:bc:94:2d:49:23:ec:8b:ca:c1:74:fa:93:6f:
0c:ef:13:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:22:01 2025 by rpki-client