Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/566532-b077-4889-9fe6-6576c6d9aa69/1/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.mft
File: sYFWgYZC3I8E5A-Gd1aNZjzPSxs.mft (raw, json)
Hash identifier: ztxV+D8MgqhEmV5pktj8HwRKEyH36Wde0BrH3Jjwxzo=
Subject key identifier: F7:56:99:14:BD:82:85:C5:D3:08:68:E1:63:34:EB:14:16:E4:D1:6F
Authority key identifier: B1:81:56:81:86:42:DC:8F:04:E4:0F:86:77:56:8D:66:3C:CF:4B:1B
Certificate issuer: /CN=b18156818642dc8f04e40f8677568d663ccf4b1b
Certificate serial: 019A722588C6A1EB0971B33C7C1EB1FF25BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/566532-b077-4889-9fe6-6576c6d9aa69/1/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.mft
Manifest number: 0111
Signing time: Tue 11 Nov 2025 09:00:53 +0000
Manifest this update: Tue 11 Nov 2025 09:00:53 +0000
Manifest next update: Wed 12 Nov 2025 09:00:53 +0000
Files and hashes: 1: FUgWL_lEitw648dAxbpzgHtUVSg.roa (hash: wprSxLZeem8Akk4r6OWoOul/6l4o4VUD6WM3B2aSMl8=)
2: sYFWgYZC3I8E5A-Gd1aNZjzPSxs.crl (hash: A5SqZp+lKZa4y6uy4zfKO5xWAlNltxytW0RnrK9cMYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/566532-b077-4889-9fe6-6576c6d9aa69/1/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/566532-b077-4889-9fe6-6576c6d9aa69/1/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:88:c6:a1:eb:09:71:b3:3c:7c:1e:b1:ff:25:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b18156818642dc8f04e40f8677568d663ccf4b1b
Validity
Not Before: Nov 11 09:00:53 2025 GMT
Not After : Nov 12 09:00:53 2025 GMT
Subject: CN=f7569914bd8285c5d30868e16334eb1416e4d16f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:09:b6:5d:c1:8a:12:78:f3:30:0f:8b:0d:ca:
6c:e2:c9:ea:5a:dd:c9:90:aa:3b:af:39:f8:24:a3:
9d:12:fa:84:c4:1c:e6:7c:a8:f0:51:8e:23:be:b4:
c3:ac:3e:29:20:34:bf:46:b2:21:20:52:b2:c5:8e:
26:d9:35:12:5a:69:13:dd:44:b0:5a:31:e2:db:de:
f7:fe:6e:b3:24:8f:65:fe:e5:9e:78:22:c4:e9:a0:
e4:b7:87:f9:31:e6:2a:17:e8:7c:7a:23:5a:f1:91:
b3:ee:e4:62:ef:f8:16:90:21:2b:8c:21:e9:36:84:
7e:14:4d:ac:1c:ef:11:1d:ae:aa:21:a1:0b:c5:0f:
53:88:04:d7:27:01:89:2a:d0:cb:97:c3:f8:e6:b5:
ba:a6:2a:f7:57:73:cb:29:19:a6:f1:d2:0e:23:21:
9f:08:70:d4:99:4e:72:8e:45:5a:03:a4:f1:f1:b6:
12:4f:bc:10:5d:16:42:b4:a4:86:db:e6:68:b2:08:
44:36:06:3f:4f:95:c0:62:75:57:4f:d5:3a:31:07:
c6:19:ab:35:ee:aa:33:60:71:42:51:56:d3:44:59:
0f:0f:6c:ce:1f:3f:66:2d:b3:21:9d:ba:75:b8:e0:
38:9c:72:16:27:92:5b:7a:20:11:c0:f9:d0:23:61:
a1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:56:99:14:BD:82:85:C5:D3:08:68:E1:63:34:EB:14:16:E4:D1:6F
X509v3 Authority Key Identifier:
keyid:B1:81:56:81:86:42:DC:8F:04:E4:0F:86:77:56:8D:66:3C:CF:4B:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/566532-b077-4889-9fe6-6576c6d9aa69/1/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/566532-b077-4889-9fe6-6576c6d9aa69/1/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:30:0c:87:60:fb:ff:2f:3c:ab:6c:61:3b:20:ef:63:95:ac:
26:da:c3:52:8d:c0:85:a0:1a:b3:bc:ab:22:28:ba:12:6f:8d:
8d:0f:67:34:a1:33:56:dc:73:c8:85:e8:e7:66:95:9f:bf:a9:
3e:12:16:e8:9e:cb:b4:25:7a:4b:c7:31:14:b3:96:f3:63:b5:
36:98:6e:be:66:54:c9:7c:b6:4e:d9:55:2a:69:a8:6b:2a:8a:
f7:0c:2c:cf:80:98:af:6a:d3:3d:32:83:81:43:e7:9a:12:5a:
dc:64:d4:18:17:33:47:f7:35:5d:15:63:05:3a:e1:94:72:dd:
99:b8:d3:f5:ab:8e:1e:67:3a:07:e4:8b:d6:a4:dc:33:b0:84:
16:25:1f:40:c3:b1:2a:c6:f7:54:3c:2e:d8:d5:44:73:1f:ff:
e2:b8:a9:5f:59:5d:5a:d7:a9:2f:cb:db:98:65:30:3b:77:b2:
12:df:29:41:cf:77:e4:b2:60:6e:7c:e5:1f:7e:1a:04:3f:7f:
b1:f6:26:89:05:ea:67:cd:05:36:4a:7e:00:e1:b9:27:3c:28:
73:0f:04:de:82:0c:0a:4f:c9:63:3d:e2:67:ac:e9:2d:17:ef:
d7:50:87:e1:8f:e8:8c:1f:54:ee:8a:a6:79:57:9d:df:89:4c:
c6:2d:4a:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:18:38 2025 by rpki-client