Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft
File: s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft (raw, json)
Hash identifier: aSAwZbXrEwPeHZdSHn7WcBLS/5JD3T7dxxVgeDM2Ct8=
Subject key identifier: 8B:E2:05:26:F8:23:8F:B1:80:86:83:46:D0:F0:05:93:9C:F5:06:7D
Authority key identifier: B3:B5:D2:B4:3A:CC:0D:9F:07:AA:00:AA:90:F0:25:C9:6D:5C:EC:25
Certificate issuer: /CN=b3b5d2b43acc0d9f07aa00aa90f025c96d5cec25
Certificate serial: 019A7301B7418BD25BDD8A8682A53C3573A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7XStDrMDZ8HqgCqkPAlyW1c7CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft
Manifest number: 0C78
Signing time: Tue 11 Nov 2025 13:01:23 +0000
Manifest this update: Tue 11 Nov 2025 13:01:23 +0000
Manifest next update: Wed 12 Nov 2025 13:01:23 +0000
Files and hashes: 1: 5APXg_wiW_V1QU4DTTNO_V06dfg.roa (hash: TZwqI4bOTkCy7vwcX2/rFQxdaiYIWAZfVHV4G7nb07k=)
2: s7XStDrMDZ8HqgCqkPAlyW1c7CU.crl (hash: J3dqslAIRH7UXl1lsgfhE4u1/x/GW0Allsp/auEsbX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7XStDrMDZ8HqgCqkPAlyW1c7CU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:b7:41:8b:d2:5b:dd:8a:86:82:a5:3c:35:73:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b5d2b43acc0d9f07aa00aa90f025c96d5cec25
Validity
Not Before: Nov 11 13:01:23 2025 GMT
Not After : Nov 12 13:01:23 2025 GMT
Subject: CN=8be20526f8238fb180868346d0f005939cf5067d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:aa:c6:fb:ba:94:1e:d4:cc:e9:17:6e:3c:2e:
87:ab:61:ff:2d:8e:17:e3:e8:15:d6:cd:3d:16:57:
b5:c4:ca:d0:51:18:f9:c6:90:fc:3b:21:a1:16:c9:
07:a1:ce:c2:b2:02:e9:3d:fa:9e:cc:ae:33:ad:c1:
92:11:df:8d:d0:10:58:75:78:e9:30:66:08:d4:08:
f5:3a:81:aa:53:10:95:ac:b4:30:7b:11:eb:43:d5:
bd:4e:71:9b:26:fd:0c:06:6e:61:c2:4a:70:78:c8:
fe:38:dc:7f:53:b7:1e:d4:9e:b0:53:ce:ff:74:58:
2a:e4:e4:3e:8b:11:5f:6d:fa:0d:79:07:b8:5d:79:
a3:5f:f5:19:15:d7:54:55:d9:41:1d:8b:dd:2a:6c:
77:b6:16:05:44:f6:96:8b:b2:f0:6d:86:04:5c:5d:
78:32:a7:e8:f1:bc:75:d2:7e:61:2f:bf:16:ee:5b:
0b:c1:0c:f7:86:c4:e7:19:0c:aa:2f:82:6f:4b:59:
0a:a7:f5:b4:41:fc:25:e8:ed:51:d6:bc:8d:04:6e:
1d:d0:8b:ca:25:ef:8a:f0:be:39:97:8d:ce:55:13:
77:23:43:af:fb:18:d1:bc:22:ab:0e:27:8e:64:e6:
14:f2:e0:78:16:d2:74:5d:4d:df:23:de:a2:4c:aa:
da:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E2:05:26:F8:23:8F:B1:80:86:83:46:D0:F0:05:93:9C:F5:06:7D
X509v3 Authority Key Identifier:
keyid:B3:B5:D2:B4:3A:CC:0D:9F:07:AA:00:AA:90:F0:25:C9:6D:5C:EC:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7XStDrMDZ8HqgCqkPAlyW1c7CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:57:f2:1c:ee:27:8f:7d:3f:fe:23:47:dc:90:15:38:85:78:
69:85:b1:59:48:f1:3f:f4:ed:29:4e:4e:21:0d:12:a6:6c:f0:
bd:f0:f3:79:75:80:e8:41:b1:5d:bc:b1:53:74:8a:45:ad:35:
3f:fe:39:76:e4:b2:9d:7f:b3:88:29:bd:79:6d:a8:f6:b2:1e:
42:f3:e4:0e:35:f0:49:47:ca:23:6d:42:75:f1:5e:49:1d:69:
71:fe:61:1c:54:fa:ca:06:8a:66:34:52:64:4f:fe:91:5a:d0:
a2:fe:d1:8e:f8:1a:1a:8a:14:79:d7:a9:b2:04:51:cc:e6:3e:
59:67:b1:98:fb:e8:a7:7d:eb:7e:61:eb:5e:e9:30:b2:65:17:
ab:63:e7:55:06:50:2a:17:50:cc:8c:ae:3f:f7:0a:ce:26:31:
af:ef:b2:49:3c:38:67:ed:35:65:cf:01:37:21:8d:c8:59:c5:
71:22:dd:59:37:17:dc:29:f5:c4:42:eb:aa:77:fb:73:03:5a:
a1:c2:61:bf:df:c8:30:67:e3:38:0a:fe:66:53:08:70:5e:09:
a7:07:71:1d:54:29:29:8f:c3:48:7e:d3:e0:ee:10:de:e8:4c:
27:eb:0b:22:85:6c:b4:63:b0:9e:da:d8:04:e0:74:ca:36:f4:
b2:a6:ef:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:20:16 2025 by rpki-client