Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft
File: l37KDVyVbeF79pcQRvLrlc5hXik.mft (raw, json)
Hash identifier: SfgSfNO6MNioyK0JGnoYgH5Kidlrg4SALvIcsGlZHuI=
Subject key identifier: E3:B5:78:29:B0:45:77:14:D1:3C:81:24:67:A3:BC:87:AB:9F:C2:08
Authority key identifier: 97:7E:CA:0D:5C:95:6D:E1:7B:F6:97:10:46:F2:EB:95:CE:61:5E:29
Certificate issuer: /CN=977eca0d5c956de17bf6971046f2eb95ce615e29
Certificate serial: 0199FFC7928AB8C4E3196833EDC5EEFCDF1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l37KDVyVbeF79pcQRvLrlc5hXik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft
Manifest number: 16E1
Signing time: Mon 20 Oct 2025 04:01:33 +0000
Manifest this update: Mon 20 Oct 2025 04:01:33 +0000
Manifest next update: Tue 21 Oct 2025 04:01:33 +0000
Files and hashes: 1: l37KDVyVbeF79pcQRvLrlc5hXik.crl (hash: yB+pyb3VKNvIs7/M0bBt7j8nbsq3qR33oeb83a73HtQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft
rsync://rpki.ripe.net/repository/DEFAULT/l37KDVyVbeF79pcQRvLrlc5hXik.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 04:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c7:92:8a:b8:c4:e3:19:68:33:ed:c5:ee:fc:df:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977eca0d5c956de17bf6971046f2eb95ce615e29
Validity
Not Before: Oct 20 04:01:33 2025 GMT
Not After : Oct 21 04:01:33 2025 GMT
Subject: CN=e3b57829b0457714d13c812467a3bc87ab9fc208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:09:cf:f6:0a:b2:5f:1c:f6:d7:a7:e7:41:49:
71:0f:68:65:d5:f6:4d:f6:3d:77:0f:b5:56:37:b1:
65:2a:43:a6:ce:fe:38:4a:47:d1:69:1a:40:7e:6c:
12:49:5b:b4:5a:6e:a9:22:88:ff:1f:c2:da:91:92:
88:a5:3f:a0:e3:ac:cf:bf:8b:58:d1:af:8c:da:71:
bf:ed:0f:bd:f7:aa:ca:2b:4f:5a:ea:d1:cd:9f:6c:
38:a7:94:01:eb:f3:e4:ce:f2:06:5f:19:f4:9b:6e:
56:2c:7c:02:75:44:2c:a1:b7:a8:4c:45:11:b5:07:
eb:00:4f:5c:7d:e6:0a:0e:0b:ad:7c:d6:b7:06:96:
7f:25:71:fd:f2:40:16:a7:7e:9b:fb:1c:0a:a7:14:
dc:88:4f:75:d8:a8:da:c7:6a:f2:c8:ba:9a:a1:43:
61:3c:32:61:2e:89:14:06:66:50:9e:00:bb:d0:35:
18:83:34:51:2e:a0:7a:e7:ba:84:40:60:b7:a1:b9:
56:be:e5:ad:77:e8:97:60:73:07:92:11:a6:32:72:
e5:4c:84:64:a4:29:ea:c7:5e:24:69:8d:85:ee:1f:
e4:34:e6:a9:bb:a2:ee:10:ce:4d:62:d8:e7:a1:b0:
a4:86:b1:cf:25:b4:e4:f1:2e:47:72:0f:1b:1e:a3:
17:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:B5:78:29:B0:45:77:14:D1:3C:81:24:67:A3:BC:87:AB:9F:C2:08
X509v3 Authority Key Identifier:
keyid:97:7E:CA:0D:5C:95:6D:E1:7B:F6:97:10:46:F2:EB:95:CE:61:5E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l37KDVyVbeF79pcQRvLrlc5hXik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:45:31:5e:ac:08:1d:85:d1:80:74:64:9a:16:57:11:81:c0:
4c:46:c5:9c:06:50:08:e4:69:29:54:86:dd:8d:a5:c5:c2:f7:
1c:dc:91:6e:b6:75:e6:c1:1b:66:b6:18:af:03:e1:53:e5:49:
86:ff:bc:7f:cc:c2:88:5f:fc:14:2b:55:11:42:0c:88:37:7b:
8a:d9:23:92:26:af:4f:63:75:4a:aa:f8:84:c8:50:1c:51:71:
d9:7f:65:48:2a:02:f5:8d:dd:d9:36:cb:66:5c:9e:d5:4e:aa:
1e:e2:b6:e7:6e:fe:e7:70:c2:86:1e:76:ad:d3:cf:25:22:26:
56:f9:6e:27:5c:43:42:29:32:d5:1c:59:88:53:a6:ec:73:ab:
79:90:87:74:bb:26:dc:e8:be:32:4b:1b:07:42:3d:5a:3c:3b:
5d:67:2d:bf:88:ae:87:70:26:b9:51:9b:fd:00:45:c0:2c:b3:
61:2e:7e:53:e1:23:5b:a0:7f:1e:d0:4a:cb:75:af:36:ee:b6:
73:d8:72:52:a4:98:51:42:45:e7:5c:28:0d:f6:9d:62:2c:58:
f1:03:f0:55:87:24:9b:92:22:0e:63:73:b1:bc:28:8b:01:b5:
3f:02:f4:42:20:d8:3a:13:74:f5:a5:59:ba:4a:1b:9c:eb:e2:
d2:1b:7a:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:41:06 2025 by rpki-client