Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
File: 0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft (raw, json)
Hash identifier: 4wNyuBYv13eKGf2XR6holFiWrGzAdGjjNXVUCZlhEqY=
Subject key identifier: E1:0E:43:5E:34:D0:F2:EA:59:F4:37:50:47:8C:8B:D3:34:CE:2F:15
Authority key identifier: D2:17:97:85:86:BF:F3:A6:77:7D:55:A9:A9:63:58:41:51:6D:43:B4
Certificate issuer: /CN=d217978586bff3a6777d55a9a9635841516d43b4
Certificate serial: 0199FCFD9E381D0D25219958C9F2A65C80AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
Manifest number: 0C76
Signing time: Sun 19 Oct 2025 15:01:43 +0000
Manifest this update: Sun 19 Oct 2025 15:01:43 +0000
Manifest next update: Mon 20 Oct 2025 15:01:43 +0000
Files and hashes: 1: 0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl (hash: NWqkNunXvNaeu1lq7bJ/IrhzqWYgQDetsu9SDLiW8Mo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:9e:38:1d:0d:25:21:99:58:c9:f2:a6:5c:80:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217978586bff3a6777d55a9a9635841516d43b4
Validity
Not Before: Oct 19 15:01:43 2025 GMT
Not After : Oct 20 15:01:43 2025 GMT
Subject: CN=e10e435e34d0f2ea59f43750478c8bd334ce2f15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ec:28:8c:d4:33:77:67:a5:f1:79:c4:fe:f9:
30:77:3e:1b:15:87:27:0c:2f:bb:d2:c5:10:bc:2b:
3c:45:bf:e1:18:14:56:f5:77:1c:ef:00:35:7d:53:
c0:c0:fc:d9:96:21:0a:9a:a0:5d:11:a9:05:ad:95:
e8:5f:19:b0:c8:12:f1:bf:00:d7:ea:89:49:0c:99:
4b:a1:34:c8:a9:2e:1e:ed:67:a5:9e:e0:ed:e2:9c:
ae:a4:ab:bf:d5:e7:b4:a5:10:ed:1c:e6:f5:6c:89:
7c:48:53:dd:9a:ee:5f:7f:cc:7b:e0:85:57:21:46:
42:6e:4f:ce:30:be:ab:03:97:af:54:0c:12:23:7f:
e5:04:ce:72:36:84:04:8d:d3:2f:e4:36:68:73:01:
a5:08:c4:f5:ae:50:41:2a:20:f3:ce:dc:8e:b1:fa:
b6:cc:1f:f2:52:5b:2c:61:4f:a4:ac:7e:b9:ad:a3:
d5:e8:e9:e6:6b:2d:68:e0:30:ce:81:85:35:4b:f9:
b0:33:c7:1a:1f:83:48:fb:99:76:52:9f:c8:49:7e:
18:99:d0:2c:60:35:70:f9:77:b6:7e:a5:86:fe:dc:
b9:87:66:f1:25:a0:95:e8:41:d0:81:40:12:32:49:
fa:d7:13:9f:84:7c:39:4f:d1:b2:00:23:8a:d8:7c:
55:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:0E:43:5E:34:D0:F2:EA:59:F4:37:50:47:8C:8B:D3:34:CE:2F:15
X509v3 Authority Key Identifier:
keyid:D2:17:97:85:86:BF:F3:A6:77:7D:55:A9:A9:63:58:41:51:6D:43:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:f9:ad:3c:5d:f7:84:08:a2:26:93:dc:09:67:f4:dd:55:02:
c9:f7:91:f6:c6:21:31:16:61:05:0f:84:5c:51:ad:9a:48:34:
37:16:fb:e4:8a:e8:cf:4a:a2:6e:99:d0:7b:1b:6b:62:f3:b4:
98:f5:4f:11:ba:ee:73:88:98:b3:b1:e6:08:13:67:16:59:ca:
8c:4c:d0:f7:49:2c:d9:47:36:b7:a3:c4:2f:10:e4:71:78:03:
53:63:50:6d:0c:e9:ff:dc:1a:55:49:04:2d:92:37:60:1d:1d:
be:86:79:67:31:e2:f4:42:a1:11:39:ed:5f:94:fa:83:a4:99:
15:fc:51:2a:17:84:15:95:88:13:b7:b3:73:82:0e:1d:54:ca:
01:34:45:d8:5c:2f:d0:04:38:14:1a:e6:0d:11:cf:f4:c0:b7:
43:07:96:b6:d7:06:02:aa:c2:b3:ce:8c:0e:82:f2:b4:de:15:
93:55:78:c9:e9:4d:39:9c:10:b3:0d:04:36:e0:01:2f:ac:69:
87:7c:09:f1:73:91:c7:b9:80:e5:0a:98:20:8b:81:d5:bf:a9:
62:88:25:5c:fa:fc:66:63:f6:20:c4:4e:af:ad:4b:c0:2b:67:
eb:59:b1:17:42:05:5c:17:0b:e0:03:77:c4:eb:8f:d0:f7:ce:
af:fd:e7:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:03:34 2025 by rpki-client