Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
File: 1PhqmjxCnBvCbsBqOuTkF8p0394.mft (raw, json)
Hash identifier: J/dHFUnPEF1KmEcD0SE1hSJFZxQyjNUmnH2VINHRKCs=
Subject key identifier: A0:61:E1:E1:96:D3:5B:01:AC:D1:34:82:F1:DF:9B:7E:69:90:8F:11
Authority key identifier: D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
Certificate issuer: /CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Certificate serial: 0199FCC66B9F51A389EAEEA0289B5CAC1E14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
Manifest number: 096A
Signing time: Sun 19 Oct 2025 14:01:26 +0000
Manifest this update: Sun 19 Oct 2025 14:01:26 +0000
Manifest next update: Mon 20 Oct 2025 14:01:26 +0000
Files and hashes: 1: 1PhqmjxCnBvCbsBqOuTkF8p0394.crl (hash: jdiPb4VxiS+gNepWysaj4teOIi7pfxxJCKGaGydwmZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:6b:9f:51:a3:89:ea:ee:a0:28:9b:5c:ac:1e:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Validity
Not Before: Oct 19 14:01:26 2025 GMT
Not After : Oct 20 14:01:26 2025 GMT
Subject: CN=a061e1e196d35b01acd13482f1df9b7e69908f11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a1:1f:da:15:40:20:60:95:72:85:33:9f:90:
e3:86:01:83:52:8f:5a:92:77:86:43:bc:10:1e:2f:
ed:db:a9:d0:35:50:fb:d5:78:1f:c2:f8:3e:25:75:
96:81:27:f3:ca:17:ab:fb:8a:c6:14:a7:b3:6f:7f:
50:ca:a9:1d:29:2c:a0:80:2e:3c:c5:12:56:20:da:
5e:cc:07:aa:62:29:55:1c:e0:41:e8:f8:37:72:0f:
ca:b7:8e:68:b4:d4:28:31:a5:f6:73:c2:75:f8:4d:
af:b7:22:35:ff:d5:39:9d:ea:f0:1a:e4:11:36:a9:
4e:c9:b2:f6:d2:5c:b9:03:1a:fd:23:65:86:93:34:
1d:c4:f8:30:81:99:31:e5:15:d4:e2:7e:6a:7e:7a:
88:8e:d1:21:93:79:97:d8:b7:fb:0a:4d:8d:b0:5d:
3b:16:73:c2:ff:64:f9:43:2c:3a:4e:a4:60:09:f3:
36:d1:9f:ec:71:33:91:cc:e3:bd:79:4d:3b:21:f5:
b3:63:24:e6:13:e0:f4:76:8b:47:0d:38:23:a6:b9:
77:0e:dd:b0:08:a5:5a:2f:1f:df:e1:84:b0:df:56:
6e:6b:44:3a:4a:a6:0b:e8:97:8b:dc:fc:50:a2:cc:
ad:39:4b:11:43:76:25:e6:03:37:71:af:4a:6a:cf:
6d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:61:E1:E1:96:D3:5B:01:AC:D1:34:82:F1:DF:9B:7E:69:90:8F:11
X509v3 Authority Key Identifier:
keyid:D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:48:21:40:d9:73:29:fd:9c:07:21:94:d2:3b:86:60:49:86:
86:ca:79:a8:29:e2:36:b0:cd:c8:53:ba:38:b2:96:30:e5:f3:
96:9e:e7:b4:fe:ff:d6:10:9b:ea:0c:bc:fb:c1:f4:e9:f0:81:
12:42:fc:58:f7:3d:37:0f:ff:e1:61:ed:b5:3e:46:73:b7:74:
d9:9e:dc:68:c9:70:c0:85:0c:76:3c:43:e8:07:f6:af:f8:17:
07:43:ea:64:d1:03:e0:26:1c:b3:64:3c:d2:5f:aa:ab:2b:98:
ba:c6:71:2f:bc:b4:a1:af:27:f9:36:10:20:5d:66:c2:a3:d2:
75:fd:c1:86:ff:28:01:ca:a6:99:e8:68:ed:93:66:0c:52:c2:
93:2c:10:c2:7a:62:f0:21:ed:84:db:1d:ee:59:4c:83:8c:0b:
53:94:c1:93:5a:c6:1a:f2:20:de:4f:83:9e:74:49:04:e6:41:
ef:5a:da:9f:c2:4b:87:74:56:96:74:4d:b6:6e:5d:d0:4d:bd:
a3:92:03:44:35:cc:32:36:22:46:75:9e:b4:43:39:fe:6f:aa:
fd:b6:6c:23:57:3c:e4:2e:f7:45:8a:f0:63:51:d3:53:31:59:
49:1c:05:9f:16:cb:0b:21:7f:43:80:53:19:01:58:8c:46:48:
0a:19:d4:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:30:00 2025 by rpki-client