Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
File: sCqa8vxf6TxDFIqssTxRvpBMjkw.mft (raw, json)
Hash identifier: V+tUY4D+LT64JfD8MPFusyQpgHDtfbsJsJ+a8ewjUhY=
Subject key identifier: 81:54:33:14:D2:3D:5D:02:34:E0:8E:AB:C7:40:03:B2:52:27:8E:09
Authority key identifier: B0:2A:9A:F2:FC:5F:E9:3C:43:14:8A:AC:B1:3C:51:BE:90:4C:8E:4C
Certificate issuer: /CN=b02a9af2fc5fe93c43148aacb13c51be904c8e4c
Certificate serial: 019A7112CE0A0BB4B59008D13977A2DFB972
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
Manifest number: 0559
Signing time: Tue 11 Nov 2025 04:00:48 +0000
Manifest this update: Tue 11 Nov 2025 04:00:48 +0000
Manifest next update: Wed 12 Nov 2025 04:00:48 +0000
Files and hashes: 1: RLYBpjQJ_nWnvtQxzs5jpfZ53LI.roa (hash: WydSL9s2ghSAkXvNPUv+LZJE2s3aihvIV2UvrS6hIBw=)
2: sCqa8vxf6TxDFIqssTxRvpBMjkw.crl (hash: 0UHDA9Cx5cmb7oZKkWBU3oxWkEC5qsuz6ZCCXOShsPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:ce:0a:0b:b4:b5:90:08:d1:39:77:a2:df:b9:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b02a9af2fc5fe93c43148aacb13c51be904c8e4c
Validity
Not Before: Nov 11 04:00:48 2025 GMT
Not After : Nov 12 04:00:48 2025 GMT
Subject: CN=81543314d23d5d0234e08eabc74003b252278e09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:78:00:3b:9b:91:47:d2:21:6d:00:93:1a:d4:
08:12:44:cb:e6:24:3a:65:ac:c7:29:84:c4:3a:09:
b8:ad:7d:e7:fd:d6:66:e9:9e:a1:bf:a5:81:8d:58:
56:26:27:19:b6:16:25:bf:c3:f1:27:de:78:a3:f0:
49:5f:b2:0d:9f:b4:17:d2:d3:14:64:04:70:69:fc:
cc:ba:3e:87:30:45:4b:ce:7f:f1:5e:fd:3f:18:2b:
20:98:73:e8:68:f8:9b:5e:72:d2:09:b0:7d:f3:e2:
60:8d:cf:cc:6e:f6:f4:84:5a:4d:a2:d1:55:5e:e8:
48:46:a9:99:e6:42:0d:39:d4:09:62:ad:0b:6f:ed:
6f:52:e7:6b:50:ee:f1:67:3e:b0:ff:b4:1f:26:c4:
b9:99:b3:6e:77:d3:3d:6a:62:74:e8:d8:ce:d9:9e:
10:a2:0f:25:e4:e6:25:2f:85:5c:5e:b5:d7:9d:55:
de:2a:28:49:1f:e8:f5:66:83:31:a9:b2:7f:7b:ca:
14:ee:dd:11:b4:49:fa:17:9c:a4:ba:80:fc:2a:8f:
e2:05:d8:52:33:10:e8:2a:0f:9a:8c:d6:d0:c3:ff:
d9:f9:cd:e4:f0:47:2f:d3:d8:39:66:ac:93:00:ea:
5a:7e:8d:7e:3b:01:d7:8a:89:b1:41:d5:f2:93:90:
ce:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:54:33:14:D2:3D:5D:02:34:E0:8E:AB:C7:40:03:B2:52:27:8E:09
X509v3 Authority Key Identifier:
keyid:B0:2A:9A:F2:FC:5F:E9:3C:43:14:8A:AC:B1:3C:51:BE:90:4C:8E:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:e5:3f:d7:2d:e9:50:49:d3:cc:63:0c:ba:b7:22:60:af:f7:
6b:5d:f2:79:22:84:b5:8e:e0:90:06:13:0e:74:31:ff:5d:f9:
38:f8:7f:c8:95:a2:db:20:af:42:9c:36:21:11:8a:7b:20:a0:
51:d5:b5:87:e4:e8:4d:d2:86:b6:54:4f:91:c1:29:1b:82:e2:
ee:32:06:2b:6a:52:5d:d9:3f:6d:ee:8a:86:ca:9c:8c:8f:96:
3e:3f:68:5c:16:6f:d8:43:ca:47:49:2d:5c:46:bf:e5:f4:bc:
e5:e3:15:78:59:5a:b5:23:c6:a3:4b:0c:98:7f:bb:fa:ab:6d:
ef:eb:05:e7:9e:29:ef:dd:af:1c:de:c9:00:7d:31:34:e0:05:
ab:a7:de:37:b0:9d:b5:91:e0:7b:2b:b1:ab:d3:eb:11:0a:91:
b5:20:77:c6:80:80:39:bf:af:ad:1b:d0:c0:48:04:b0:74:3b:
32:49:28:02:6a:60:3e:f0:87:64:2a:48:c6:f8:ea:fb:1d:da:
79:87:fe:0d:6e:4e:5a:d1:39:1f:36:db:82:df:aa:d4:aa:83:
d7:dc:c7:3d:13:31:64:24:c5:3f:02:69:31:da:67:4f:15:82:
12:e7:52:67:7c:8d:0d:98:10:c7:95:4d:c6:a4:3d:f0:d4:f1:
d2:77:d7:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:14:10 2025 by rpki-client