
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
File: sPoMerwQeWkV4zW6GXgORz4CeWk.mft (raw, json)
Hash identifier: 34oVDQNsDDNuHOCdotqvgf1FvOPAx0fY87+SvfDvXkA=
Subject key identifier: ED:80:35:2E:0A:B9:6D:AB:85:1F:6A:AA:CC:8A:7B:7D:97:A1:99:8A
Authority key identifier: B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69
Certificate issuer: /CN=b0fa0c7abc10796915e335ba19780e473e027969
Certificate serial: 0199FAA0D47FAB2F79B0FC452A38C83EAA57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
Manifest number: 11D3
Signing time: Sun 19 Oct 2025 04:01:08 +0000
Manifest this update: Sun 19 Oct 2025 04:01:08 +0000
Manifest next update: Mon 20 Oct 2025 04:01:08 +0000
Files and hashes: 1: Y9lkKqKsnQqZGmQo1Xo2fiLr5iU.roa (hash: 6A0trmFdZaEK+JW4D/IW96VMnZJTTVLOPMuYPUfapNM=)
2: sPoMerwQeWkV4zW6GXgORz4CeWk.crl (hash: tE3qkvUXKjAYWcd+tXcV5rVJZgEDnZ2unIz+rHy9IUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a0:d4:7f:ab:2f:79:b0:fc:45:2a:38:c8:3e:aa:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0fa0c7abc10796915e335ba19780e473e027969
Validity
Not Before: Oct 19 04:01:08 2025 GMT
Not After : Oct 20 04:01:08 2025 GMT
Subject: CN=ed80352e0ab96dab851f6aaacc8a7b7d97a1998a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:cf:09:81:04:24:8c:23:7e:a2:16:b4:a2:51:
4f:e9:7b:d3:2f:ba:59:b6:f4:c2:99:0b:fc:f7:c0:
9c:e4:76:e8:e4:76:fb:18:af:3f:3c:fc:4a:32:3a:
30:42:5e:66:bd:69:9b:0e:cc:37:70:3a:a6:ea:a1:
c9:2c:86:7f:e0:34:a5:30:fc:33:e4:e7:76:a6:1a:
3e:32:06:91:7c:7a:80:26:4b:d9:92:46:29:f4:f2:
ec:29:2d:82:55:4b:c1:ff:9a:ac:ed:ed:07:0d:6e:
3f:a5:a4:6c:68:34:25:2d:7d:ab:a2:97:6d:2e:fc:
da:00:7e:52:46:54:55:43:f3:df:2e:a1:25:8c:bd:
85:44:e5:a9:59:3a:e9:36:fe:d2:b9:3e:b0:38:67:
18:63:54:fb:17:ee:5a:fb:dc:6b:32:e6:e7:97:e3:
42:d0:bc:07:f2:5c:26:cd:d6:bb:36:50:81:79:ed:
43:cc:fc:ca:b0:61:89:36:4c:19:7a:76:c2:b2:78:
9b:9d:1c:02:cc:88:ea:15:16:e5:03:ec:d8:6b:1b:
fe:d7:5b:86:bf:ba:64:2c:19:bf:89:84:45:7d:6e:
8b:48:d6:46:f6:a8:2a:43:1c:98:88:4c:d3:51:14:
9d:59:25:07:66:35:fe:32:b2:da:47:e0:b3:01:de:
94:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:80:35:2E:0A:B9:6D:AB:85:1F:6A:AA:CC:8A:7B:7D:97:A1:99:8A
X509v3 Authority Key Identifier:
keyid:B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:e0:e3:25:f5:ed:d0:50:cf:5e:12:dd:ef:f2:de:5b:bc:d7:
2d:97:d7:a2:a1:b7:30:94:db:a7:e7:dd:76:54:a7:c6:ee:c9:
11:1b:e2:72:0a:34:68:3e:45:f9:c1:04:e3:04:fe:75:f1:0f:
06:f1:f7:71:62:6d:76:70:35:4a:94:26:2b:4d:2b:a4:cf:a2:
30:21:f6:03:53:2d:20:fe:88:6e:c8:8f:6d:d4:23:68:b1:c7:
09:e4:fc:0b:ed:57:c9:63:29:31:2f:ec:57:14:5e:71:92:f0:
6d:e2:9d:2b:bf:9c:40:14:4d:3d:33:f2:45:ad:84:ff:e0:6f:
5f:ef:e4:22:09:31:9d:f7:98:74:da:45:7b:ea:33:a1:10:77:
14:ea:9e:22:eb:8f:16:77:78:e3:b6:fc:cb:7a:97:07:0b:2d:
9e:d5:0d:9f:26:0f:bb:54:1b:6f:33:0c:cb:4c:ec:35:f6:e9:
e9:fe:80:63:d1:67:aa:08:7e:b3:a3:ac:bb:e8:4c:42:84:1e:
61:0c:1c:d9:f5:cc:fd:d6:b8:ef:2b:ef:8f:f1:6f:69:78:77:
36:43:16:5b:d3:f6:fb:2b:2d:50:e4:e2:9e:1b:c9:61:78:5a:
18:f5:0e:50:c3:9a:85:7c:04:16:7c:42:2d:5b:0e:26:cc:7c:
9f:47:14:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:07:00 2025 by rpki-client