Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
File: FMFDiPKGLX4nqH_m9gHjTzRXI04.mft (raw, json)
Hash identifier: FQoM1uy8Q0hg+0a1JuIXMR0YIiQs9To4ZsqBvEywRJg=
Subject key identifier: BF:9C:35:76:69:EB:C7:5C:3C:9B:C7:66:AD:05:17:13:2C:66:4F:AF
Authority key identifier: 14:C1:43:88:F2:86:2D:7E:27:A8:7F:E6:F6:01:E3:4F:34:57:23:4E
Certificate issuer: /CN=14c14388f2862d7e27a87fe6f601e34f3457234e
Certificate serial: 0199FC21A9945F5F04C166CC13229C2D53CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FMFDiPKGLX4nqH_m9gHjTzRXI04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
Manifest number: 0B5B
Signing time: Sun 19 Oct 2025 11:01:28 +0000
Manifest this update: Sun 19 Oct 2025 11:01:28 +0000
Manifest next update: Mon 20 Oct 2025 11:01:28 +0000
Files and hashes: 1: FMFDiPKGLX4nqH_m9gHjTzRXI04.crl (hash: UOxM79XqFEC1o9/D2Mpk1YvGcKVd0BHCZHsUIttqQeM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
rsync://rpki.ripe.net/repository/DEFAULT/FMFDiPKGLX4nqH_m9gHjTzRXI04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:a9:94:5f:5f:04:c1:66:cc:13:22:9c:2d:53:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14c14388f2862d7e27a87fe6f601e34f3457234e
Validity
Not Before: Oct 19 11:01:28 2025 GMT
Not After : Oct 20 11:01:28 2025 GMT
Subject: CN=bf9c357669ebc75c3c9bc766ad0517132c664faf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:a7:6f:a0:29:d7:7f:12:a1:4b:ab:fa:fd:19:
6f:48:b3:fa:de:70:81:66:69:7f:b2:3c:b3:66:5c:
7d:04:89:66:00:e4:b9:f8:a8:cd:89:de:93:24:49:
53:0b:ed:cf:05:3c:ad:54:cc:98:5b:0a:73:3d:1b:
4a:9b:5a:9d:d1:a0:e1:ea:33:ba:bb:37:e0:50:e7:
b7:78:b6:06:4a:c4:24:fe:26:fa:a7:35:27:01:61:
9f:2e:00:9e:dc:cb:32:5a:68:30:60:28:0f:a2:fc:
b4:1b:13:42:4d:ab:ca:89:8e:f7:9d:9f:91:d7:92:
af:e0:64:3e:03:28:73:90:08:06:36:92:09:0e:dd:
e2:6d:45:c2:ba:49:13:48:db:9a:e5:4c:96:8a:ab:
9a:38:20:60:93:39:f3:1f:b1:bf:4a:b7:84:79:00:
87:79:3a:47:1a:80:43:0a:f7:58:86:f0:5e:98:a7:
a5:0f:ad:50:d1:15:8c:34:cc:21:21:4e:9c:00:aa:
27:56:69:5f:36:59:78:19:07:59:fd:e5:78:58:46:
f3:b3:d3:d5:ba:30:d3:76:36:7c:05:d1:a2:c4:b4:
ff:ef:cb:23:bb:ed:7b:33:cb:3c:24:b2:a6:d4:8f:
37:9c:17:bf:b0:8d:7f:28:90:9f:6e:74:7c:21:a1:
cc:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:9C:35:76:69:EB:C7:5C:3C:9B:C7:66:AD:05:17:13:2C:66:4F:AF
X509v3 Authority Key Identifier:
keyid:14:C1:43:88:F2:86:2D:7E:27:A8:7F:E6:F6:01:E3:4F:34:57:23:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FMFDiPKGLX4nqH_m9gHjTzRXI04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:09:53:fd:f0:dc:bb:53:3b:12:cf:c6:d1:85:c5:63:c9:28:
9d:19:44:35:52:f9:aa:a2:d5:a3:89:0c:eb:2b:bb:53:f0:87:
16:77:fd:91:f0:f2:f8:5a:b6:fb:51:2b:3a:35:f9:35:15:40:
ac:20:a2:7a:cb:0a:35:c6:ed:4b:09:32:74:d8:44:3c:10:9e:
c6:a3:c5:d3:8f:0e:1e:5e:cd:b1:ab:3b:b6:92:42:4d:19:92:
ab:d7:3a:04:9c:6a:ff:dd:5d:2f:7f:17:fa:10:ab:1e:b5:60:
f2:95:3d:b8:63:ce:c7:05:d7:65:29:87:46:c6:e4:4c:46:7e:
97:fe:51:8a:76:4e:4a:82:8d:44:90:5d:ca:92:59:18:81:7f:
ae:ef:45:b1:24:29:05:7c:71:e6:38:66:35:8b:f8:b7:d2:e9:
80:9e:ab:51:3b:bd:55:5b:1b:cd:5f:9a:d2:85:c2:5f:a1:93:
54:e4:72:ca:a5:af:ae:d5:ab:3e:82:4e:e5:58:53:2a:32:f5:
4c:af:47:1f:b7:b4:f3:a9:29:1b:03:f5:aa:9f:a6:84:82:91:
f1:03:35:16:29:49:d8:33:ee:10:23:71:aa:20:f9:0e:a5:86:
15:9d:87:a4:a8:3a:86:84:24:0e:d4:2f:81:92:5a:d8:b3:9a:
3b:d6:70:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:26:18 2025 by rpki-client