
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/b195e7-b804-4594-965e-3fd14b936eb4/1/_sQT3TZn54GV5SaKooWupRa8sZk.mft
File: _sQT3TZn54GV5SaKooWupRa8sZk.mft (raw, json)
Hash identifier: 4f2f88ItRaCdyodJeqLT/qSgt9TvPdp2nvHJtT+ricI=
Subject key identifier: BA:CC:52:D1:55:54:2F:B9:8C:8D:22:62:50:D6:54:13:10:88:B0:78
Authority key identifier: FE:C4:13:DD:36:67:E7:81:95:E5:26:8A:A2:85:AE:A5:16:BC:B1:99
Certificate issuer: /CN=fec413dd3667e78195e5268aa285aea516bcb199
Certificate serial: 0199FB4616F682619A3625CBDBF070628A73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_sQT3TZn54GV5SaKooWupRa8sZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/b195e7-b804-4594-965e-3fd14b936eb4/1/_sQT3TZn54GV5SaKooWupRa8sZk.mft
Manifest number: 140B
Signing time: Sun 19 Oct 2025 07:01:38 +0000
Manifest this update: Sun 19 Oct 2025 07:01:38 +0000
Manifest next update: Mon 20 Oct 2025 07:01:38 +0000
Files and hashes: 1: _sQT3TZn54GV5SaKooWupRa8sZk.crl (hash: 49qJy0ph24MnoACKvwhGKzyn/LXsy1BSeUdxHDjTs38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/b195e7-b804-4594-965e-3fd14b936eb4/1/_sQT3TZn54GV5SaKooWupRa8sZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/b195e7-b804-4594-965e-3fd14b936eb4/1/_sQT3TZn54GV5SaKooWupRa8sZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/_sQT3TZn54GV5SaKooWupRa8sZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:46:16:f6:82:61:9a:36:25:cb:db:f0:70:62:8a:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fec413dd3667e78195e5268aa285aea516bcb199
Validity
Not Before: Oct 19 07:01:38 2025 GMT
Not After : Oct 20 07:01:38 2025 GMT
Subject: CN=bacc52d155542fb98c8d226250d654131088b078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f7:65:df:85:0f:78:36:e4:3f:a9:6b:03:76:
84:23:a2:5c:e9:b4:b5:49:28:42:2f:94:56:d1:8a:
40:9c:09:66:cb:12:20:7d:12:84:f5:08:6b:73:20:
30:78:c3:61:be:0f:ae:70:52:61:38:db:66:a4:02:
b4:b3:86:43:75:1e:66:ac:16:36:57:1c:04:a3:fa:
09:61:d9:62:e5:de:c2:c8:0d:7f:84:dc:9d:ac:3d:
c0:30:4e:ee:e9:c2:3b:77:83:cf:6e:c7:ee:28:0a:
af:78:f1:7f:5b:21:e4:9b:16:55:70:76:e7:47:c3:
59:ea:ec:85:c2:ef:7c:49:a9:0d:9c:c1:9a:5d:91:
3a:a8:58:89:f5:80:87:35:39:b1:81:d5:20:ef:22:
59:fe:97:56:1b:f7:9a:34:3c:db:4b:ef:d3:70:06:
4a:24:ff:2a:24:9b:71:d5:74:a4:85:83:8e:30:d1:
cb:fb:2e:61:80:82:db:69:0f:e8:d9:ad:7c:a2:2d:
c4:f1:aa:1a:e0:26:86:d6:f1:a8:1e:3a:cd:57:22:
c5:f9:36:a5:45:4e:29:56:fc:01:00:ef:ab:37:c1:
0a:7b:b1:dc:21:37:f6:f2:4c:58:0d:54:23:f5:f4:
d0:a4:e0:e8:95:5f:60:51:1d:da:e5:0a:77:bb:84:
02:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:CC:52:D1:55:54:2F:B9:8C:8D:22:62:50:D6:54:13:10:88:B0:78
X509v3 Authority Key Identifier:
keyid:FE:C4:13:DD:36:67:E7:81:95:E5:26:8A:A2:85:AE:A5:16:BC:B1:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_sQT3TZn54GV5SaKooWupRa8sZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/b195e7-b804-4594-965e-3fd14b936eb4/1/_sQT3TZn54GV5SaKooWupRa8sZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/b195e7-b804-4594-965e-3fd14b936eb4/1/_sQT3TZn54GV5SaKooWupRa8sZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:ad:84:b6:37:7b:8b:75:a6:bc:5e:57:6d:b1:8e:21:3d:49:
0a:1a:69:92:3a:be:dd:35:d8:55:b4:ee:5c:c3:08:4a:2b:23:
06:2e:11:55:c6:86:aa:e7:26:6a:c3:45:65:99:bb:18:0a:6e:
fb:89:a0:0b:b9:ff:b7:be:e0:0c:8f:5c:d5:a8:b3:ff:1e:1c:
67:f3:92:67:d1:b2:47:ff:6b:86:14:9c:90:19:a8:7b:f4:09:
25:fa:a4:46:35:9d:07:82:e8:a4:83:7a:83:49:c3:2b:00:c6:
32:22:68:f8:16:7b:59:5a:cf:95:93:eb:cd:fd:93:06:23:6d:
5a:b4:f5:2d:ea:d1:f6:b3:4a:2d:c3:0c:dc:a1:a2:47:85:a1:
cb:d2:68:b4:93:16:6e:60:ad:b2:48:9e:6d:f8:30:fc:ea:0a:
62:a1:0a:b4:f0:0f:35:65:54:50:ba:9f:a7:f5:d0:9c:ff:36:
90:d4:89:40:f1:34:4f:11:5a:89:0f:10:54:c2:cf:c5:92:02:
ae:1d:7c:2f:de:5c:06:b3:43:28:d3:58:0e:13:fe:03:6b:6c:
44:51:45:ae:5d:19:e7:33:a6:19:e2:71:9d:53:21:ec:2a:d3:
78:cd:e9:ed:38:40:db:58:18:04:89:a6:8c:04:47:f0:63:49:
36:ce:53:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:19:24 2025 by rpki-client