
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
File: s_sdIFBvVM-5oflFH6EKiP87L2Q.mft (raw, json)
Hash identifier: BKvr6omNquhhyiJ64Nq9aogOs38yDZB+WWUMLotQZfo=
Subject key identifier: A0:1E:D4:11:74:FF:6F:D4:43:01:93:B5:63:F6:21:06:6C:96:ED:30
Authority key identifier: B3:FB:1D:20:50:6F:54:CF:B9:A1:F9:45:1F:A1:0A:88:FF:3B:2F:64
Certificate issuer: /CN=b3fb1d20506f54cfb9a1f9451fa10a88ff3b2f64
Certificate serial: 0199FE46A827964D22945D8846D6934803F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
Manifest number: 0D88
Signing time: Sun 19 Oct 2025 21:01:07 +0000
Manifest this update: Sun 19 Oct 2025 21:01:07 +0000
Manifest next update: Mon 20 Oct 2025 21:01:07 +0000
Files and hashes: 1: s_sdIFBvVM-5oflFH6EKiP87L2Q.crl (hash: qEZH3FsygFHDk/REzbPI21ks9fA/mrIxJ+AFTxPBfrk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:a8:27:96:4d:22:94:5d:88:46:d6:93:48:03:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3fb1d20506f54cfb9a1f9451fa10a88ff3b2f64
Validity
Not Before: Oct 19 21:01:07 2025 GMT
Not After : Oct 20 21:01:07 2025 GMT
Subject: CN=a01ed41174ff6fd4430193b563f621066c96ed30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f6:51:81:8a:49:c5:a5:76:2b:7f:cf:0e:cc:
0e:c3:eb:c4:5f:dc:fe:21:c5:ee:24:a3:2e:e1:e6:
bb:01:b1:a8:1a:c9:3e:ed:1c:b7:e4:a8:3d:c1:e6:
3b:88:8d:69:fa:e6:41:6d:8f:3b:19:f5:c8:71:30:
e6:09:c4:e0:5e:27:e3:48:3c:59:d3:66:c3:cf:4b:
76:a3:06:7f:01:81:55:4c:d0:dd:a8:07:81:b4:75:
47:12:b9:17:97:99:2e:c4:93:03:48:38:01:57:eb:
ce:42:e7:95:72:74:0a:26:3a:2f:fb:21:84:32:62:
61:40:64:71:d8:77:23:f9:60:d1:01:11:da:13:7c:
9b:ee:84:86:d9:37:35:08:2b:71:96:24:9d:ad:4b:
b8:d4:50:a5:87:45:a9:49:f2:0d:c5:b6:82:bf:1e:
be:fc:bb:0d:36:bc:86:89:50:c3:9a:4b:ca:68:fd:
98:5b:1b:18:34:03:58:ce:f4:f4:8a:16:4e:76:19:
71:5d:db:4c:6c:c2:69:14:d0:89:64:73:44:89:42:
fa:2f:c5:f7:bc:5a:9d:0a:3f:d2:e5:32:d0:8a:2d:
9a:98:53:81:b3:d0:34:0b:1b:33:f3:43:d6:68:59:
3b:a7:05:a1:f2:dc:c6:3e:df:eb:9f:54:ba:19:4d:
02:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:1E:D4:11:74:FF:6F:D4:43:01:93:B5:63:F6:21:06:6C:96:ED:30
X509v3 Authority Key Identifier:
keyid:B3:FB:1D:20:50:6F:54:CF:B9:A1:F9:45:1F:A1:0A:88:FF:3B:2F:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:31:44:88:ad:69:09:f5:80:8f:31:8d:5a:36:6e:cb:a3:bd:
ed:f6:7b:81:31:9c:51:1e:04:69:55:01:80:a7:19:45:86:87:
f1:a7:e0:9d:27:45:98:78:86:4a:7c:57:0e:7a:5b:64:38:23:
58:77:b0:a3:e4:c9:03:ca:38:89:06:28:93:9e:0b:45:3e:a9:
c4:bf:09:5f:4c:50:e7:e3:55:e9:64:60:1c:9d:7f:8a:7a:0c:
b1:8a:ad:17:33:ff:1f:6b:b4:9f:bc:c4:be:02:66:dd:9f:af:
29:7f:67:62:da:c1:83:f6:b7:89:68:1f:db:53:ea:44:e9:6a:
d0:60:84:ac:f4:95:a9:d2:36:24:fa:c8:9b:ef:44:ba:f9:2c:
fb:33:7a:c1:34:29:26:97:1e:03:33:96:95:3f:5a:83:91:a8:
6f:9c:40:c7:65:8e:b9:c6:e5:da:bd:7d:89:d6:e2:02:b2:2b:
b7:be:be:e8:44:32:5e:6e:5e:2a:dd:8d:61:84:e9:96:09:45:
69:d0:b4:0f:80:68:98:57:e6:0b:04:ee:13:b6:e6:e6:99:23:
57:42:d4:82:7e:5a:52:b7:3d:a0:6b:6d:c2:5f:ce:7e:6c:6a:
05:2a:5b:f3:ff:ce:9e:e1:c4:4a:44:85:b0:0a:e3:c2:e1:08:
5e:08:39:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:15:53 2025 by rpki-client