Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
File: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft (raw, json)
Hash identifier: YMaoN6NDXbp4rRjXoJHX+oX6uhcnXu0I7iB97AeadXo=
Subject key identifier: F4:D5:89:EB:B4:B4:1D:0C:71:14:93:29:E9:0E:47:DA:FC:08:C8:86
Authority key identifier: B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4
Certificate issuer: /CN=b284cdf0507443e16e509d57a229e914f73566a4
Certificate serial: 019A0110F3312B1B0552DFAF0DD29C68DB0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
Manifest number: 158B
Signing time: Mon 20 Oct 2025 10:01:19 +0000
Manifest this update: Mon 20 Oct 2025 10:01:19 +0000
Manifest next update: Tue 21 Oct 2025 10:01:19 +0000
Files and hashes: 1: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl (hash: /iEAHVwgWrp4c42tU08IVCzqM9RjZG36py5gY4eXdCg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:10:f3:31:2b:1b:05:52:df:af:0d:d2:9c:68:db:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b284cdf0507443e16e509d57a229e914f73566a4
Validity
Not Before: Oct 20 10:01:19 2025 GMT
Not After : Oct 21 10:01:19 2025 GMT
Subject: CN=f4d589ebb4b41d0c71149329e90e47dafc08c886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f3:9d:7b:7c:6b:02:a5:66:ad:c5:5f:3c:5d:
b5:2f:53:a7:4d:fb:5d:26:a9:57:6a:25:72:87:4b:
39:03:11:09:79:89:b1:2d:c9:72:e2:cc:84:15:54:
df:9c:67:57:12:9a:0a:76:e9:0c:a8:66:b2:7f:53:
54:21:4b:82:a2:f7:5d:60:0a:9f:40:63:0f:a3:42:
94:0c:ad:88:3c:65:f6:ff:ac:c4:4a:80:76:0a:7a:
e7:ad:31:de:57:ee:78:8b:01:2c:3f:51:e9:85:ed:
0b:9e:e2:b4:89:cf:14:f2:cd:b6:cb:47:6d:33:a0:
61:4b:1e:57:00:db:78:e2:45:6a:0c:6b:44:06:ec:
d9:8c:a9:23:d0:7b:4f:60:43:ef:e0:78:a1:a7:e0:
fc:f0:23:35:9d:08:41:10:ec:0a:11:f9:7d:75:6f:
3f:2a:ea:c2:2c:65:d3:93:65:02:22:5d:5c:3a:8d:
65:36:3f:d3:0f:9b:15:9e:6a:ff:2b:ae:c3:b0:79:
af:71:df:b2:1c:30:5c:b1:1e:af:7a:3d:0b:6a:73:
86:f9:ee:0e:c0:a5:c9:dc:30:ff:04:72:e5:ff:c2:
82:b9:c3:ba:71:4b:88:74:79:c5:e7:11:86:69:e3:
ec:f3:13:c5:00:af:ca:51:7f:d7:a7:84:53:ea:ac:
ee:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D5:89:EB:B4:B4:1D:0C:71:14:93:29:E9:0E:47:DA:FC:08:C8:86
X509v3 Authority Key Identifier:
keyid:B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:39:67:16:40:9b:cb:8e:88:5a:a8:de:32:d1:23:55:9d:00:
bd:0b:87:ea:59:71:2f:e2:eb:63:62:f0:f7:8d:31:f1:98:f3:
3d:1f:db:4d:43:28:a0:2a:8a:ab:76:0e:90:7b:cc:91:34:b2:
00:12:94:64:3d:d4:4f:65:1a:88:a7:bd:fd:6d:69:c3:ec:ec:
af:fa:15:5a:37:9f:62:84:e0:c6:a0:33:23:b3:77:5c:af:c1:
a2:d2:40:2f:84:58:5c:7c:3c:71:3e:da:08:b7:91:71:01:24:
83:d0:44:ba:74:1b:64:30:14:15:f8:73:36:2b:ec:04:82:9f:
5d:21:1e:72:5f:1d:52:c7:33:ee:39:6e:3c:3e:ea:68:dc:3f:
fa:16:ba:96:38:5e:67:3a:ce:d2:4e:f9:c8:d3:4e:08:cb:34:
0d:ce:8d:6a:a8:22:08:ca:5a:6f:6e:4e:15:43:5b:22:d2:d0:
0c:82:18:4a:27:d0:75:6f:09:87:46:71:88:19:a0:5c:f3:0f:
e4:0c:70:db:67:ed:64:33:f6:53:e3:9e:d6:c3:73:09:8d:f6:
78:66:97:3a:31:8f:e3:65:78:f2:e7:8f:a1:fc:08:d7:08:0a:
b3:18:93:44:52:55:d2:06:a5:f9:91:34:4c:c1:e3:9f:0d:e7:
0c:ef:82:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:40:10 2025 by rpki-client