Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
File: sK3wWv729l-hmmHDCuT7EcfPJbY.mft (raw, json)
Hash identifier: h8a/zpPjLWHOvIxGBqvZElqEgnws1qc4l4r7z+Cow34=
Subject key identifier: 2F:88:86:61:99:10:37:FC:40:05:27:A5:4F:A7:68:E7:12:4A:68:A8
Authority key identifier: B0:AD:F0:5A:FE:F6:F6:5F:A1:9A:61:C3:0A:E4:FB:11:C7:CF:25:B6
Certificate issuer: /CN=b0adf05afef6f65fa19a61c30ae4fb11c7cf25b6
Certificate serial: 0199FCFD5E4034CBA94468DD8F81D3547829
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 15:01:27 +0000
Manifest this update: Sun 19 Oct 2025 15:01:27 +0000
Manifest next update: Mon 20 Oct 2025 15:01:27 +0000
Files and hashes: 1: IO0LvnAOcWauTMBpIRocATcgbnc.roa (hash: X7MgkZkBpVtr92LvTB/v/8FDDjBqTMenme65NutXS6Q=)
2: sK3wWv729l-hmmHDCuT7EcfPJbY.crl (hash: CEWD8Jk2CwkjFHNJxJUEM1s1w2EcLj1HkQBUoPTPuOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:5e:40:34:cb:a9:44:68:dd:8f:81:d3:54:78:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0adf05afef6f65fa19a61c30ae4fb11c7cf25b6
Validity
Not Before: Oct 19 15:01:27 2025 GMT
Not After : Oct 20 15:01:27 2025 GMT
Subject: CN=2f888661991037fc400527a54fa768e7124a68a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d7:6e:9f:cb:a7:d4:9d:26:86:b0:7a:af:b0:
53:a2:cb:fa:59:b3:c2:7e:93:3f:9c:41:fe:fa:76:
61:ba:a0:83:67:67:2c:4e:31:68:10:7e:88:6c:6c:
79:ab:86:55:01:96:ce:f3:a1:8a:48:79:02:62:80:
0a:a2:3c:60:4c:fe:5d:0d:7c:36:b8:ff:50:9c:80:
3f:b2:e0:47:96:15:60:70:80:45:0b:62:8d:c8:67:
a5:ee:61:35:27:c0:39:d9:e8:45:e2:a3:47:a2:fe:
68:e2:9a:45:c4:2e:79:ad:45:f8:ad:dd:5d:77:31:
f0:06:5e:50:b3:02:6a:41:d6:f9:9e:86:e6:53:45:
9d:1a:78:3d:63:24:f5:68:d0:a3:2c:98:eb:47:f6:
ab:ae:be:40:9d:9a:47:1a:e9:ce:74:97:27:fb:d4:
ff:92:dc:dc:0d:68:70:4b:f1:da:52:00:c8:1b:31:
a1:27:39:db:bf:15:8d:fc:57:18:9b:b5:f2:1d:c6:
2e:05:bb:38:d0:45:78:6e:48:4d:e5:6d:3a:de:ac:
7c:6a:b2:4f:7a:7d:e9:68:2c:42:3a:6c:09:56:0f:
82:f0:41:57:96:5a:64:49:48:a1:c8:24:a8:aa:31:
48:01:85:69:0f:bc:c4:c3:9d:ac:a6:ed:bb:ca:39:
69:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:88:86:61:99:10:37:FC:40:05:27:A5:4F:A7:68:E7:12:4A:68:A8
X509v3 Authority Key Identifier:
keyid:B0:AD:F0:5A:FE:F6:F6:5F:A1:9A:61:C3:0A:E4:FB:11:C7:CF:25:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:61:ec:8c:72:19:88:87:d4:fe:51:97:fc:a5:95:3b:e7:c1:
b0:d8:c5:e4:88:02:9a:34:aa:f2:9a:79:92:04:cf:4f:0e:bc:
51:87:22:db:aa:75:76:8a:03:b6:3e:ba:da:c4:9b:6a:fa:f0:
74:05:28:7d:34:8a:17:3a:76:83:3c:b9:9c:56:b9:36:ee:cf:
48:23:fb:0e:54:99:7e:d6:f5:a3:87:f8:05:22:9b:e7:e5:70:
15:d6:4d:7c:9e:ef:e0:f0:fa:ef:5e:5e:f2:e3:b7:9e:56:bd:
db:ef:7b:c6:e9:41:32:da:b1:fc:51:fa:0a:bb:f0:b1:19:d6:
31:5d:3a:ae:8d:36:d1:56:2d:74:5f:95:1f:f4:e5:36:72:cd:
8f:d8:72:c1:9f:39:5b:3a:b1:85:08:31:c4:d2:b0:6c:15:4d:
cf:ed:4c:41:a5:df:c7:88:2f:f8:1b:35:64:d9:bd:37:f4:b6:
40:4d:05:f5:2f:0b:36:15:00:6c:03:00:ce:9e:3d:67:92:f8:
20:bf:aa:21:bd:e1:d6:d1:cd:75:ce:36:01:b6:e7:a9:ef:c6:
63:a2:7f:5d:c9:d9:9f:9f:08:2a:a2:c6:dc:a3:73:89:97:6c:
1c:ed:a7:12:44:49:30:92:b6:6d:a6:64:9b:6a:02:e0:98:97:
d6:3d:42:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:35 2025 by rpki-client