Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
File: s1IytLD6jIPU_4wSROhk67yt1os.mft (raw, json)
Hash identifier: rOQIQGv/ngQZ+uwUWiMMZlVbPTKZUrTw1alg8tlFOzk=
Subject key identifier: 8C:17:8E:09:69:0D:E5:B4:E5:C2:BA:77:00:FB:0F:3D:97:1F:60:20
Authority key identifier: B3:52:32:B4:B0:FA:8C:83:D4:FF:8C:12:44:E8:64:EB:BC:AD:D6:8B
Certificate issuer: /CN=b35232b4b0fa8c83d4ff8c1244e864ebbcadd68b
Certificate serial: 0199FDD912DA998215948B4889F336168EBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
Manifest number: 115A
Signing time: Sun 19 Oct 2025 19:01:25 +0000
Manifest this update: Sun 19 Oct 2025 19:01:25 +0000
Manifest next update: Mon 20 Oct 2025 19:01:25 +0000
Files and hashes: 1: s1IytLD6jIPU_4wSROhk67yt1os.crl (hash: mE3r7LX/ijD+HPXuVwQkppCE/YTBB+fU0YIEGfS0tNs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:12:da:99:82:15:94:8b:48:89:f3:36:16:8e:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b35232b4b0fa8c83d4ff8c1244e864ebbcadd68b
Validity
Not Before: Oct 19 19:01:25 2025 GMT
Not After : Oct 20 19:01:25 2025 GMT
Subject: CN=8c178e09690de5b4e5c2ba7700fb0f3d971f6020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:dd:c0:a1:fd:9d:8b:50:ba:9d:f8:29:80:db:
58:3a:e9:61:11:c1:d1:f4:91:fa:14:6a:70:89:01:
69:72:3b:01:4d:cd:ed:a3:1f:74:f3:2b:38:09:53:
04:ee:c5:97:56:53:01:79:42:06:d4:d2:4a:04:e4:
a9:fb:14:67:61:0b:c9:0d:b2:cc:65:95:32:38:8b:
90:b8:1f:e7:59:23:dd:54:2d:c1:da:69:c0:8a:bd:
ab:2a:c4:ea:5e:73:7c:6a:a5:0a:5b:8a:72:e7:ae:
e7:9e:fd:36:d3:93:e9:82:95:a9:f6:1c:3f:8e:7b:
85:da:14:bf:9f:d7:3d:cf:0a:1a:99:8a:4b:47:f3:
9f:70:58:ba:cd:d8:46:c2:46:90:05:5a:b3:66:69:
3b:d9:a0:f1:13:59:a0:60:19:02:58:52:2a:6a:58:
e4:e5:6f:e6:d1:4a:bf:3f:08:28:f9:51:aa:e0:da:
b7:b7:da:ad:55:12:02:9b:b4:0e:60:ad:19:01:97:
25:53:9d:38:a0:f0:de:09:67:cf:f6:17:84:43:1e:
1d:f4:29:15:0a:8e:d3:25:a6:68:2b:8c:48:9f:13:
65:3d:02:2e:a6:80:e5:e3:11:7a:f8:ab:80:3b:ce:
f0:3b:6d:70:01:85:b8:68:f2:22:3c:20:a5:7e:e9:
39:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:17:8E:09:69:0D:E5:B4:E5:C2:BA:77:00:FB:0F:3D:97:1F:60:20
X509v3 Authority Key Identifier:
keyid:B3:52:32:B4:B0:FA:8C:83:D4:FF:8C:12:44:E8:64:EB:BC:AD:D6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:8f:58:86:57:c2:9a:a6:90:a7:3d:26:7d:47:ef:b6:8e:83:
82:53:d4:cf:87:21:a0:0d:3e:d9:21:b7:0f:0d:1f:5b:94:ac:
8c:65:0b:f2:b7:1b:a9:73:22:d6:6e:04:56:7b:6a:ea:70:0f:
ec:cc:79:4b:fa:08:e3:6e:34:e6:aa:0c:d0:97:69:5b:87:23:
03:5f:8f:73:f2:fb:30:63:c8:5e:2d:80:72:85:8e:a6:5f:8e:
ef:47:17:e3:9e:21:37:85:ad:35:4c:21:09:6e:87:9c:97:ff:
58:d0:30:dc:a6:fa:60:ae:aa:3c:0b:02:e5:ab:0d:ec:c0:fd:
64:24:dd:ec:43:23:b2:9a:78:08:b4:32:63:7a:5e:91:1c:a9:
f6:17:4c:e0:63:f3:36:2c:e8:42:28:a8:b4:03:38:be:89:0d:
06:d2:7d:b6:e0:ee:a4:b2:28:80:7e:23:9c:72:5a:71:09:9a:
84:59:a6:ad:e3:ee:b0:67:75:11:51:a9:18:5a:f2:cf:71:d1:
95:46:da:ac:1d:c0:04:56:9d:7f:76:39:e5:f5:1d:7e:4f:49:
b0:e2:84:20:77:47:70:f0:bd:51:80:38:ae:d6:43:70:27:de:
fb:7f:02:bb:19:7a:28:e7:9b:dc:03:09:86:a2:5a:51:63:ae:
f6:0d:27:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 03:42:07 2025 by rpki-client