Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
File: M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft (raw, json)
Hash identifier: t+v6hLC5HXlWNRijqhUZU45DRZOkXoMLob6KaLgMSGs=
Subject key identifier: 4D:91:05:96:44:9C:B3:5A:A9:0B:45:FC:0E:B8:23:45:03:D9:9E:ED
Authority key identifier: 33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
Certificate issuer: /CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Certificate serial: 0199FDD9171C1A382DF20012115DFD8BE659
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
Manifest number: 12C8
Signing time: Sun 19 Oct 2025 19:01:26 +0000
Manifest this update: Sun 19 Oct 2025 19:01:26 +0000
Manifest next update: Mon 20 Oct 2025 19:01:26 +0000
Files and hashes: 1: M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl (hash: 0Z02s4GJbdUXqfDZnNJkmpvKSwWOsiPs59d2l4QwJtE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:17:1c:1a:38:2d:f2:00:12:11:5d:fd:8b:e6:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Validity
Not Before: Oct 19 19:01:26 2025 GMT
Not After : Oct 20 19:01:26 2025 GMT
Subject: CN=4d910596449cb35aa90b45fc0eb8234503d99eed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:9c:d9:05:1d:2b:7f:b9:46:5f:c7:db:18:d8:
58:79:df:34:53:a1:fb:56:ef:29:39:ca:e2:6a:59:
33:fd:bc:ed:5f:fd:ae:25:09:5a:39:ef:a9:46:df:
ca:7c:2b:92:24:b3:c8:5a:04:a5:9b:59:0c:a7:ec:
74:6f:2d:9a:35:b5:33:61:45:53:7c:c2:f5:0c:13:
d0:e6:e3:73:b5:d8:6f:e9:c5:7a:34:e2:20:11:f5:
7d:76:55:4e:eb:9c:80:fd:a7:08:6f:0a:47:1d:10:
f9:a5:96:4e:40:28:ec:99:b0:2a:84:6d:6c:4d:14:
71:3d:d8:2a:dd:2b:b5:3e:83:aa:b4:85:ba:db:0a:
86:ff:bf:9c:18:8d:87:bb:c5:c9:e7:08:b9:37:a9:
5c:9f:40:2d:65:f7:cf:36:68:1a:cc:1b:a6:5f:c4:
02:91:56:8f:e4:bf:67:c9:b9:55:ac:9c:20:22:1e:
3c:82:d8:53:0d:23:39:56:1f:07:63:d5:27:19:ae:
8f:51:42:8c:c7:5a:83:df:07:2f:99:ce:76:06:12:
da:7f:0f:af:2a:be:77:41:5a:b1:5a:ac:04:5a:e7:
c1:54:9e:da:d6:c2:93:ea:dc:a7:2f:fe:8b:fa:06:
5b:1c:00:9a:14:ea:4b:fc:08:5c:a1:10:83:2a:27:
96:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:91:05:96:44:9C:B3:5A:A9:0B:45:FC:0E:B8:23:45:03:D9:9E:ED
X509v3 Authority Key Identifier:
keyid:33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:23:99:22:de:d5:c5:b7:21:70:4e:58:30:ad:44:76:52:60:
ff:81:55:78:06:d2:d1:ba:d6:3e:6c:dd:46:ff:d4:03:28:69:
7a:f4:e1:c6:c1:ae:4f:ee:b7:69:c0:db:fe:f2:d3:62:4c:f9:
8d:b6:1a:0a:c3:a9:ae:b9:b0:f3:f1:fb:57:a1:09:f4:f0:6c:
e2:ed:31:89:01:e9:ea:7b:c2:32:1c:99:3a:08:28:11:1a:af:
d1:61:1f:79:a0:13:1b:40:f3:e9:de:ae:d7:30:8f:2b:3f:e2:
2b:38:c9:35:8c:38:e1:7f:7d:47:98:53:5a:bd:7b:83:ea:d2:
ed:db:bf:a3:b0:c0:48:12:6a:1e:19:c5:40:66:e8:25:1e:82:
50:fc:bf:42:6d:89:e6:64:92:1d:2e:8f:4b:61:5c:b6:85:ea:
f9:cf:76:fc:76:da:ec:21:ec:b8:98:26:df:66:fe:a0:b2:6b:
84:e5:8c:9e:76:74:6c:ac:ce:d7:75:9b:b9:81:08:96:a0:e6:
38:5c:cc:92:39:dc:49:75:f5:dc:73:c4:42:cc:a2:6e:59:bd:
01:47:d1:a5:c3:51:4a:4f:0b:ee:ff:b5:8c:fe:4d:c4:41:7e:
60:4b:30:b8:c4:44:02:88:dc:08:e5:a3:77:32:94:98:8c:2e:
a2:63:2f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:26:50 2025 by rpki-client