Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
File: 0kSCMx_jdh3lOpm9N8j9am-foAc.mft (raw, json)
Hash identifier: SUwtbz92K4bySJHk9wB2d1PtcfPH/XU2UghwUwxipGk=
Subject key identifier: 55:A3:A2:12:9F:D3:7F:20:D5:38:9C:35:04:08:58:7B:16:29:9B:60
Authority key identifier: D2:44:82:33:1F:E3:76:1D:E5:3A:99:BD:37:C8:FD:6A:6F:9F:A0:07
Certificate issuer: /CN=d24482331fe3761de53a99bd37c8fd6a6f9fa007
Certificate serial: 0199FC8F90DDAD5A69F5BF15345FA033E107
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kSCMx_jdh3lOpm9N8j9am-foAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
Manifest number: 0115
Signing time: Sun 19 Oct 2025 13:01:31 +0000
Manifest this update: Sun 19 Oct 2025 13:01:31 +0000
Manifest next update: Mon 20 Oct 2025 13:01:31 +0000
Files and hashes: 1: 0kSCMx_jdh3lOpm9N8j9am-foAc.crl (hash: 0Q0ZH2msu6hyBikHAfozUW03RLX//J25EXta5eaZLHE=)
2: M95FjIFFe7FE8GSWYSZYw7JDajo.roa (hash: NrgUx/KwCI45z+00qu3mq53IxB/PSBwR22i9a5VwK5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kSCMx_jdh3lOpm9N8j9am-foAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:90:dd:ad:5a:69:f5:bf:15:34:5f:a0:33:e1:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24482331fe3761de53a99bd37c8fd6a6f9fa007
Validity
Not Before: Oct 19 13:01:31 2025 GMT
Not After : Oct 20 13:01:31 2025 GMT
Subject: CN=55a3a2129fd37f20d5389c350408587b16299b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e5:fa:e1:92:69:a1:82:4c:f8:7a:06:0e:48:
96:25:30:bd:95:2b:3a:83:ed:2a:df:40:d8:dc:04:
5f:04:85:44:1a:e4:aa:f8:47:0a:4f:8c:f5:21:ff:
5f:d0:fd:bd:94:de:6e:14:e2:ed:bc:9a:7b:d4:25:
70:1e:3a:90:8c:4b:05:cf:58:dd:b4:d8:54:09:93:
e8:16:aa:6c:67:c2:c8:c2:5c:24:a7:ef:63:06:1e:
f9:d9:a4:f1:8c:68:a5:6c:32:fa:41:c4:9a:0a:7c:
50:ee:21:e0:a7:83:84:ce:06:33:ba:cf:74:b8:e7:
cd:df:d2:cb:c9:c5:e1:38:e9:cb:14:54:8e:ab:d0:
88:9b:e2:fa:9f:76:aa:04:e9:50:41:45:99:1b:c7:
8c:43:a8:62:1f:f3:f8:4c:fc:68:77:f0:f1:cc:2c:
08:21:4b:f8:26:66:90:4a:c8:ae:03:c3:f0:50:f6:
d3:b4:b8:e7:e4:5f:8c:7f:48:b7:35:58:c2:2f:f4:
6b:c4:9d:22:12:87:4d:52:d6:91:da:70:3f:5e:ec:
77:e2:5a:d5:6b:48:09:1e:a1:d8:29:67:b5:a0:d9:
d0:e8:aa:63:89:56:ae:c1:12:dc:64:1c:60:d4:0e:
e8:9f:22:f8:d4:ab:3e:f2:b6:e6:9c:75:39:40:61:
34:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A3:A2:12:9F:D3:7F:20:D5:38:9C:35:04:08:58:7B:16:29:9B:60
X509v3 Authority Key Identifier:
keyid:D2:44:82:33:1F:E3:76:1D:E5:3A:99:BD:37:C8:FD:6A:6F:9F:A0:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kSCMx_jdh3lOpm9N8j9am-foAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:47:41:f7:2c:c5:71:8c:24:cb:9e:a9:ea:d8:d6:cb:03:a5:
3f:a6:aa:3b:11:78:80:c9:04:53:d9:4f:74:94:d6:dd:d4:a9:
32:18:7c:b0:a4:72:05:10:36:4e:e8:f9:f8:22:66:9d:70:e4:
3d:4f:31:51:ac:11:2f:45:33:97:83:30:2a:aa:70:82:75:3a:
fb:08:d4:06:22:e3:1b:8e:8a:6f:da:f1:77:0f:12:a9:84:58:
9f:ae:ae:a2:b2:58:a2:6d:3b:e8:c1:1c:d7:65:00:69:33:a1:
bd:9f:39:44:1f:04:4b:13:3f:85:5a:26:97:fd:69:fa:f4:bd:
b3:b2:29:59:84:96:3a:ad:57:87:36:82:a9:d8:2b:52:e8:b7:
40:6d:69:3d:0d:15:e0:f1:aa:e5:6d:e5:29:41:79:da:f6:af:
aa:4f:3f:1f:25:09:41:7c:e3:03:4d:15:b3:53:29:f0:00:62:
9e:dc:83:0c:ef:ea:a4:63:9e:33:42:39:b1:35:d2:1e:f4:67:
2b:36:df:ca:0b:bc:a3:a3:62:37:ca:25:29:29:9a:ae:f6:fc:
09:91:a8:97:2a:3a:3d:bf:7d:dd:1c:a8:d2:2a:1b:48:2f:27:
60:b8:8d:03:6a:50:41:7b:ce:ff:08:bc:9a:f9:4b:38:53:48:
e2:72:fd:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:25 2025 by rpki-client