Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
File: F3khM2kRpWiNeOk__l5HIRO7Gb4.mft (raw, json)
Hash identifier: TL5ragMgO6uCwK3I1mRQqbdOM+sLgmTVlNkEvLpiP04=
Subject key identifier: 58:56:D2:6D:CF:7A:39:C3:FE:58:AB:81:2D:A7:D8:57:75:20:16:1E
Authority key identifier: 17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
Certificate issuer: /CN=177921336911a5688d78e93ffe5e472113bb19be
Certificate serial: 019A71B77C824BDC9737BCA36F10F23FD68F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
Manifest number: 0700
Signing time: Tue 11 Nov 2025 07:00:41 +0000
Manifest this update: Tue 11 Nov 2025 07:00:41 +0000
Manifest next update: Wed 12 Nov 2025 07:00:41 +0000
Files and hashes: 1: F3khM2kRpWiNeOk__l5HIRO7Gb4.crl (hash: 61zhLDHjyABqGu8a3ogGszo980ohqfg+y9TlxE+FB0s=)
2: WN1QsY4J0xzhzXI37At9k24AG4s.roa (hash: aONG4etXL5aCmGtS97ulkTYk4UjXjlB6E7tpLdYeDEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:7c:82:4b:dc:97:37:bc:a3:6f:10:f2:3f:d6:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=177921336911a5688d78e93ffe5e472113bb19be
Validity
Not Before: Nov 11 07:00:41 2025 GMT
Not After : Nov 12 07:00:41 2025 GMT
Subject: CN=5856d26dcf7a39c3fe58ab812da7d8577520161e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:21:4c:06:0e:e8:87:98:ee:01:f3:6a:48:75:
96:a7:df:17:2f:c2:31:6f:90:ff:b0:51:6b:bc:8b:
32:86:41:27:3c:1a:25:69:6a:39:33:93:f6:51:b5:
f0:6f:54:05:cc:9e:0e:a8:cd:0b:6c:a5:42:6b:24:
59:5f:8d:48:30:9c:d8:26:0c:e3:96:df:55:6f:3a:
99:fe:de:f6:ca:93:40:21:3e:cf:31:b1:0c:ed:e7:
7f:e0:bf:55:8e:dd:0a:8e:46:18:c2:b9:0d:cf:47:
5a:a6:74:3d:09:41:dc:11:70:7a:5f:9a:55:0c:0a:
6e:95:b8:1b:4e:7b:7e:a9:25:6d:1c:03:4e:e4:80:
f6:23:8e:75:6c:dd:21:ae:35:d7:4b:97:18:5d:31:
3d:d2:78:fd:41:f6:90:76:0b:4f:6f:68:14:3b:aa:
69:7b:8a:93:0e:34:87:2b:6c:20:72:87:29:7e:b0:
cd:cb:ec:d7:ad:05:f0:bf:7f:01:0d:a5:6e:e0:ab:
e2:d8:32:1c:91:51:a2:a2:76:60:ab:9d:93:3c:a4:
34:45:1d:be:e6:f2:6c:ce:fa:7f:88:1e:76:7c:ec:
8e:49:54:6a:c8:ba:87:12:16:3e:fc:02:4a:54:39:
c4:9f:f8:ae:b3:1d:aa:19:99:19:b3:56:44:cb:59:
1e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:56:D2:6D:CF:7A:39:C3:FE:58:AB:81:2D:A7:D8:57:75:20:16:1E
X509v3 Authority Key Identifier:
keyid:17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:c1:0b:0f:23:d1:74:92:83:1c:16:e3:a1:fc:a1:d8:5b:a4:
75:86:42:b0:65:79:38:b4:1f:b8:22:83:78:97:d9:a0:d6:7e:
15:8d:91:f6:ee:ea:a0:02:f4:74:dd:16:7e:99:5e:f4:2d:2b:
c6:7a:81:3a:7c:5a:50:bb:c8:03:96:10:bd:6a:d4:f3:01:09:
13:20:9f:47:3e:30:82:b2:07:e9:2c:88:3f:df:22:33:2a:63:
56:ec:e7:f0:83:73:87:40:40:4e:25:5d:f9:e2:f7:48:85:a7:
8a:41:df:33:98:15:03:53:55:e6:70:a9:7a:b6:fd:77:e1:94:
18:6b:58:dd:05:95:89:c4:e3:b7:8d:f4:18:57:a6:9b:ed:d4:
63:dd:f2:6c:32:c9:6c:99:6b:93:d3:89:9b:4d:0d:b0:e0:b1:
d1:96:5d:d5:0b:41:19:2d:2e:1a:4b:c1:b3:97:89:34:ab:d1:
5c:1c:97:20:c3:6a:bc:fe:85:49:07:5a:4e:48:43:bb:d1:1a:
36:17:d3:f0:6f:6f:89:22:75:44:a6:5b:3b:09:05:6e:6a:9c:
81:a7:c2:8f:db:61:d8:3d:06:39:56:ce:48:3e:0d:93:de:74:
2c:60:1f:5b:f3:1a:4c:ef:4f:0b:5b:ec:8c:ce:9f:f3:ad:41:
d8:6e:1f:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:01:09 2025 by rpki-client