Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft
File: sH-v24bTjze_DCbT8nMf3vaxTko.mft (raw, json)
Hash identifier: nUJumHTT0yhT93mI1DNr+Q6w7Ebn/MDEY123e5sS4ss=
Subject key identifier: 97:7D:13:A3:32:E0:42:B1:BD:A0:2C:78:01:F9:4D:A9:89:52:C2:04
Authority key identifier: B0:7F:AF:DB:86:D3:8F:37:BF:0C:26:D3:F2:73:1F:DE:F6:B1:4E:4A
Certificate issuer: /CN=b07fafdb86d38f37bf0c26d3f2731fdef6b14e4a
Certificate serial: 0199FBEB320E86AB85684D4C52771531236A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sH-v24bTjze_DCbT8nMf3vaxTko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft
Manifest number: 083F
Signing time: Sun 19 Oct 2025 10:01:58 +0000
Manifest this update: Sun 19 Oct 2025 10:01:58 +0000
Manifest next update: Mon 20 Oct 2025 10:01:58 +0000
Files and hashes: 1: N75Q0uiaGqKgGJ2k7yeqIONc8k0.roa (hash: Q63lKGUZoNUeD8FAv4eG2ZAxCKPCbVbyxrGYOjEepus=)
2: sH-v24bTjze_DCbT8nMf3vaxTko.crl (hash: 2ROY4BaKi4O2TGd0lMESswtUKUv4V8ZKNsvJJ4OpSdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft
rsync://rpki.ripe.net/repository/DEFAULT/sH-v24bTjze_DCbT8nMf3vaxTko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:32:0e:86:ab:85:68:4d:4c:52:77:15:31:23:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b07fafdb86d38f37bf0c26d3f2731fdef6b14e4a
Validity
Not Before: Oct 19 10:01:58 2025 GMT
Not After : Oct 20 10:01:58 2025 GMT
Subject: CN=977d13a332e042b1bda02c7801f94da98952c204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c6:5b:0e:cc:d6:34:ee:e1:3c:4f:5e:6b:e8:
a2:67:00:84:04:c5:0b:df:8e:24:34:ef:f9:58:5b:
aa:0d:b6:78:86:17:20:06:5d:49:50:d4:56:dc:d6:
84:36:54:32:28:5f:ea:81:a3:63:fe:dd:d1:92:78:
d8:0f:af:ae:6b:bb:28:da:d6:84:8f:1b:8b:63:af:
46:6e:b3:a9:57:76:dd:a1:9c:73:c6:88:1b:0b:4c:
db:a8:29:88:dd:75:39:a6:a4:92:30:71:2d:f1:99:
9a:5f:66:1b:6a:31:6b:43:79:26:67:d3:27:fc:99:
73:d7:08:3b:d0:2f:cf:76:44:53:9b:c1:35:95:3f:
7c:46:37:07:d9:2d:f6:2f:df:9a:c4:e2:5b:f3:b4:
60:16:dc:77:45:b4:8e:d0:60:17:24:34:a5:1c:3a:
a3:8c:bf:2f:9a:94:d7:f9:65:83:c6:71:6a:87:5d:
2c:83:dc:4a:3d:00:b5:18:49:f7:ae:6a:c5:62:df:
ba:bc:f8:2e:58:86:0f:dc:32:9e:6f:b6:e2:13:f6:
8e:88:0b:ec:ea:07:61:54:e8:00:b9:e3:99:72:cf:
70:40:1f:bb:ea:7d:4f:27:b4:e3:f0:18:71:b3:1e:
92:ea:19:a8:d1:60:7c:e1:ed:39:02:b2:5a:23:22:
03:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:7D:13:A3:32:E0:42:B1:BD:A0:2C:78:01:F9:4D:A9:89:52:C2:04
X509v3 Authority Key Identifier:
keyid:B0:7F:AF:DB:86:D3:8F:37:BF:0C:26:D3:F2:73:1F:DE:F6:B1:4E:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sH-v24bTjze_DCbT8nMf3vaxTko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:de:9c:8c:45:0a:4e:cd:b3:ce:20:ef:12:e7:e3:89:e2:68:
55:f7:64:9f:4e:67:51:22:d6:48:b6:80:f1:37:eb:15:64:d7:
cf:a8:9a:27:6b:84:e7:4e:37:d1:93:3d:9d:a2:b2:14:b0:2c:
ec:d3:6e:f8:96:dc:02:2c:36:cd:3c:9f:13:60:a9:95:f3:3b:
12:a5:74:5c:7a:a8:6e:e3:e8:da:9a:df:c0:28:8a:ad:18:2f:
fc:60:5e:59:ec:d9:0b:4d:8a:97:df:9d:cb:80:cb:32:40:b3:
42:4b:eb:5e:ee:95:52:01:c3:6e:4c:f2:e5:71:c3:e8:60:c6:
1f:88:ec:93:5c:be:eb:e6:f8:72:62:3b:e7:f2:a5:ac:53:fe:
fc:23:52:11:25:87:53:40:d9:cd:2d:bc:d6:1b:d8:0f:a7:95:
a1:16:c6:52:51:69:d7:b2:52:dd:28:89:da:1c:06:13:72:e0:
4b:0c:d7:7d:78:59:78:89:7a:97:f1:d6:80:87:15:bc:75:b7:
96:4b:c1:f4:40:98:07:7b:78:60:ff:a6:1f:61:e8:f2:27:08:
43:29:26:8d:1e:b6:55:72:71:6e:51:db:c2:d8:4d:8c:48:ce:
dc:04:da:69:cd:53:25:be:5a:11:47:87:4a:ca:50:08:72:81:
01:86:3c:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:41 2025 by rpki-client