Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
File: 1MiI65YKABkAwnleiq-iaPYC2EI.mft (raw, json)
Hash identifier: hbbFeJnmbMMAjEy6mPUunJJrYThvseOfiESwrSfBeUs=
Subject key identifier: 3F:17:72:D7:6A:30:F1:27:80:96:65:36:A4:E3:1D:6A:C0:A5:65:A0
Authority key identifier: D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42
Certificate issuer: /CN=d4c888eb960a001900c2795e8aafa268f602d842
Certificate serial: 0199FBEC5E5340C99E4CA1519E4CEE05581A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
Manifest number: 0BEE
Signing time: Sun 19 Oct 2025 10:03:15 +0000
Manifest this update: Sun 19 Oct 2025 10:03:15 +0000
Manifest next update: Mon 20 Oct 2025 10:03:15 +0000
Files and hashes: 1: 1MiI65YKABkAwnleiq-iaPYC2EI.crl (hash: fKGqtGtBjlMKb3YatcgNED5nDKALU9fboIhVFSgBrRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:5e:53:40:c9:9e:4c:a1:51:9e:4c:ee:05:58:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c888eb960a001900c2795e8aafa268f602d842
Validity
Not Before: Oct 19 10:03:15 2025 GMT
Not After : Oct 20 10:03:15 2025 GMT
Subject: CN=3f1772d76a30f12780966536a4e31d6ac0a565a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5a:d9:10:ac:20:81:ba:aa:0c:a8:22:d9:9f:
c8:f1:e3:32:97:65:5e:c7:ae:f4:a3:a5:d4:95:3f:
4a:f6:c7:cf:5a:67:d2:65:da:2c:27:41:76:4e:e1:
82:b8:de:9f:c2:90:07:a4:16:f7:7e:be:cc:6c:45:
35:e3:5a:1f:3a:00:8b:22:18:69:0e:ad:8f:a6:e8:
54:78:ee:ac:f0:57:41:aa:70:81:b6:37:b3:33:79:
ec:1e:d9:3b:41:96:75:54:f1:77:43:0a:59:34:a6:
e6:eb:11:00:b2:f5:88:35:26:0b:ec:a6:d5:7c:ee:
ca:74:61:49:07:b0:8b:55:40:8f:bd:95:fb:81:75:
17:aa:17:da:15:26:5f:53:d9:64:f0:33:f0:90:cf:
67:7f:7b:55:2a:4a:2c:7d:71:15:51:fe:db:77:6f:
c2:d3:50:50:b5:e5:f6:3f:8a:44:e2:d7:1b:3e:32:
34:76:a2:7c:98:05:c2:02:bf:fb:a9:29:e2:82:d9:
a2:aa:1b:e5:97:9c:d5:08:e8:fa:53:20:a9:95:ba:
fc:75:25:9c:d0:a8:c5:6c:77:d7:af:9b:7b:8f:b8:
f7:78:6b:ba:dc:67:90:59:3e:3b:24:16:4d:f4:7a:
08:90:d2:d4:6e:23:70:dd:5b:e6:35:2c:ad:06:aa:
03:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:17:72:D7:6A:30:F1:27:80:96:65:36:A4:E3:1D:6A:C0:A5:65:A0
X509v3 Authority Key Identifier:
keyid:D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:c0:fe:50:49:fb:a5:20:12:9b:6e:d4:ef:43:66:85:e1:ad:
f8:0d:9b:c8:e6:d8:b8:a8:bc:c7:23:96:9d:8e:bc:09:29:80:
5f:a4:ac:5c:98:79:68:2b:27:41:b2:2c:57:6a:25:f4:80:c0:
eb:b0:57:c0:f9:54:5d:c9:26:51:20:f9:ab:3b:48:c8:7d:59:
22:02:48:80:2f:50:62:e2:db:35:f5:db:27:a8:35:7b:f6:d1:
6e:f4:1c:16:e0:61:bb:f0:89:8c:df:d8:64:fd:6b:57:d3:b5:
a4:67:4f:4d:e8:8f:d1:42:ac:b5:8b:90:cc:d7:44:46:52:5c:
16:c3:11:62:ed:24:cd:6d:70:17:cc:5a:3b:1e:92:0f:2e:b9:
73:43:b6:e3:f6:d8:11:fb:bb:d9:97:9f:51:69:89:84:47:e4:
5c:38:47:32:54:1b:5f:b1:f5:b8:89:1c:44:97:ad:70:8b:b9:
3e:3a:21:01:cb:7e:72:e1:11:6a:a9:df:97:4a:69:1a:90:70:
af:79:f9:d8:7b:91:89:db:c1:83:6e:b9:6d:13:66:ea:02:1b:
9a:03:e0:04:99:c5:7b:b2:7a:3b:65:b6:83:4c:ea:bb:8a:d6:
88:4f:75:f0:59:75:a4:f7:6f:bc:95:de:fc:69:30:9f:4e:3b:
c3:cf:7a:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:11 2025 by rpki-client