Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
File: H9nOye0f1PQcCx4w77lshhVTvjY.mft (raw, json)
Hash identifier: 1wSBA7Nh4k+Y/To1UE6SNfRItXSUhnmimX+ROTjxZyo=
Subject key identifier: E7:48:E5:E8:6A:0B:F6:98:48:1F:C5:A0:51:B0:A5:6E:9C:73:BC:EB
Authority key identifier: 1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
Certificate issuer: /CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Certificate serial: 0199FBEC2ED09C2898E88D92370E74D51135
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
Manifest number: 02C3
Signing time: Sun 19 Oct 2025 10:03:03 +0000
Manifest this update: Sun 19 Oct 2025 10:03:03 +0000
Manifest next update: Mon 20 Oct 2025 10:03:03 +0000
Files and hashes: 1: H9nOye0f1PQcCx4w77lshhVTvjY.crl (hash: n8yGDt1/9Q+S8D1FkbAbkYwvfIao+wzyuXr+oqleOZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:2e:d0:9c:28:98:e8:8d:92:37:0e:74:d5:11:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Validity
Not Before: Oct 19 10:03:03 2025 GMT
Not After : Oct 20 10:03:03 2025 GMT
Subject: CN=e748e5e86a0bf698481fc5a051b0a56e9c73bceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:d2:40:e7:88:17:1c:f0:39:a5:43:83:46:31:
5a:31:17:99:16:c1:75:91:80:7c:1a:8b:19:41:bb:
1c:29:73:6b:67:cf:0e:48:9f:27:72:36:90:0a:9e:
95:00:1b:2f:96:e9:00:69:26:eb:4a:61:f9:4d:64:
f6:66:e1:35:0a:40:48:b4:e2:5c:af:5b:82:8b:b2:
81:4a:35:46:8a:3e:04:e8:ff:2b:9d:46:3a:87:5f:
03:6a:0a:86:e0:5b:8d:b2:d1:5a:18:5d:aa:96:e6:
2d:b0:7c:c5:e9:2c:0e:0c:02:66:87:e0:32:83:7e:
64:d0:af:31:c3:ed:29:b5:91:90:be:db:4a:1c:30:
6f:c9:21:ce:da:b5:7e:ca:38:b3:bf:b6:e7:13:1e:
04:d0:dd:86:e9:93:98:3b:d1:0c:34:22:9a:f7:7f:
c5:aa:ff:8c:20:2f:d4:8b:a4:ff:3d:a1:80:b7:f8:
74:5d:5b:bd:c4:ce:b9:e4:4b:94:59:19:ce:ab:cc:
fb:06:77:57:b7:0e:6d:48:03:5c:00:a1:d6:6c:89:
0b:33:4d:52:06:97:26:1c:af:70:77:b4:49:10:d5:
85:ac:e9:45:46:5e:8e:a9:7d:49:bf:a3:07:55:0b:
48:d7:a9:91:0c:a6:84:a6:46:c9:55:92:d7:3c:be:
fc:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:48:E5:E8:6A:0B:F6:98:48:1F:C5:A0:51:B0:A5:6E:9C:73:BC:EB
X509v3 Authority Key Identifier:
keyid:1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:3e:59:42:c2:0d:5a:67:9a:be:c8:9a:a5:7d:fc:e3:ee:d2:
d8:a7:57:3d:4f:97:10:1e:5f:86:b9:47:12:01:aa:69:e4:4f:
43:91:8b:b3:b1:d2:3c:48:dc:dc:73:a0:13:27:61:95:6d:52:
a4:a4:b5:43:31:6d:b1:b7:e0:ff:50:6e:ff:f8:2a:1a:1d:06:
fa:96:f1:21:7e:e3:4d:f3:05:94:6a:f2:93:bd:e0:6e:3c:38:
0b:68:2d:c0:ee:48:53:ad:4c:42:d8:c2:20:b6:63:4b:95:32:
25:ec:f6:ba:02:ec:ab:07:c3:c3:c0:2b:cf:e6:24:f4:d5:29:
b8:dc:6f:3e:a2:50:72:36:1b:03:92:9f:cb:8e:ac:21:90:2e:
47:d4:02:38:49:7b:c0:38:05:ab:eb:0c:bb:09:33:fe:61:4b:
ab:b7:d5:cb:ce:67:13:90:6e:22:ef:63:cd:7f:2f:7a:95:9d:
ca:51:d4:65:89:99:48:e7:10:48:22:8b:36:f4:37:20:61:34:
57:3f:3d:c2:d1:4a:30:bb:b5:d1:59:69:e0:b4:bc:58:5e:8e:
8e:9d:7d:28:44:6a:a3:0f:97:b6:09:f8:30:34:be:b6:04:40:
a8:d8:82:59:84:a8:0a:0e:63:49:9e:25:f0:a8:d2:7b:63:35:
0a:e6:f2:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:13:38 2025 by rpki-client