Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
File: 71j4Vyvdd9mBQRGA4u-aioAsdqw.mft (raw, json)
Hash identifier: mdJbbmqFcOsjvS7+O0e3IdJuQz9D8V4uWNVJPQUPLog=
Subject key identifier: A1:A4:A3:B9:B8:F2:5F:6C:18:73:36:48:C8:FD:1C:B1:AF:6C:42:4C
Authority key identifier: EF:58:F8:57:2B:DD:77:D9:81:41:11:80:E2:EF:9A:8A:80:2C:76:AC
Certificate issuer: /CN=ef58f8572bdd77d981411180e2ef9a8a802c76ac
Certificate serial: 0199FD348B5E505D20383FA7D974E7E2657C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
Manifest number: 025E
Signing time: Sun 19 Oct 2025 16:01:43 +0000
Manifest this update: Sun 19 Oct 2025 16:01:43 +0000
Manifest next update: Mon 20 Oct 2025 16:01:43 +0000
Files and hashes: 1: 71j4Vyvdd9mBQRGA4u-aioAsdqw.crl (hash: shQlaGrEkwlCDN4aStixvSQFIT8LVtg5/1RalD85YPQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 16:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:8b:5e:50:5d:20:38:3f:a7:d9:74:e7:e2:65:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef58f8572bdd77d981411180e2ef9a8a802c76ac
Validity
Not Before: Oct 19 16:01:43 2025 GMT
Not After : Oct 20 16:01:43 2025 GMT
Subject: CN=a1a4a3b9b8f25f6c18733648c8fd1cb1af6c424c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:68:03:0a:54:48:4c:34:a8:5a:10:a6:7d:3e:
54:05:1f:d0:ae:90:6f:3d:80:ca:ea:91:e0:a7:c7:
d6:2d:9c:69:0f:1c:d7:0d:24:96:b1:01:e4:c4:4f:
60:3d:f0:5a:c1:df:6a:54:be:84:82:e6:da:04:98:
82:88:0a:ad:54:26:bc:a1:9b:1c:b6:9c:21:fc:2b:
23:99:37:35:8f:3e:1a:7a:68:de:b1:8d:e9:aa:fd:
56:19:27:dc:1e:64:92:ce:f9:65:61:3d:bf:05:a2:
1e:c7:4e:12:03:b3:82:c5:d4:63:52:e9:d0:f9:d1:
c4:07:a3:b7:11:04:ca:66:c8:7d:43:c5:5c:b3:8b:
ea:87:12:58:25:81:8b:ba:64:c7:cb:33:ec:d7:96:
dc:ed:3a:e8:95:3e:35:79:fe:bc:27:0f:7d:29:0a:
1c:68:ba:0c:87:1c:b7:70:46:38:82:0c:e9:e2:7a:
c3:f7:d5:fa:b3:35:be:22:f1:4a:0c:a9:18:d1:b6:
f3:76:2e:99:de:cc:ef:a9:41:0c:9b:87:54:d4:4a:
eb:80:17:5c:cb:ee:a1:23:ac:0b:73:bd:70:22:6a:
e3:5c:4b:21:e1:b7:ca:7b:75:f0:bd:48:2c:15:4b:
7b:34:3f:03:2e:25:77:0b:bb:81:e5:58:77:1f:b3:
d5:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:A4:A3:B9:B8:F2:5F:6C:18:73:36:48:C8:FD:1C:B1:AF:6C:42:4C
X509v3 Authority Key Identifier:
keyid:EF:58:F8:57:2B:DD:77:D9:81:41:11:80:E2:EF:9A:8A:80:2C:76:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:a0:cd:93:9c:ff:b5:61:6d:e1:7c:ff:97:03:b9:ff:96:5e:
04:68:85:8f:ca:f9:b2:1a:62:cf:12:d0:81:30:44:b5:97:3b:
3a:d8:e5:2a:e4:fe:60:1c:8a:05:44:88:58:5d:25:c5:e5:4e:
a3:a4:3c:16:67:4c:6c:d2:d4:bb:f9:60:b6:88:17:8f:7d:ef:
fb:c7:48:6f:1a:3b:a7:a6:c5:31:bf:fd:e3:4c:f3:63:2a:bd:
92:b5:ec:d8:e9:c8:a6:fe:33:da:17:b9:16:5a:55:98:94:a8:
02:08:09:dc:80:b5:5a:42:b6:ed:d9:50:94:70:41:d7:ff:d8:
34:92:bf:f1:0c:34:78:b8:1e:c4:ce:2a:4f:0b:69:53:f2:65:
8f:cf:d8:fa:5a:e5:fa:09:96:56:5c:e1:93:d3:55:5c:80:21:
04:d2:09:5c:de:ed:48:41:6f:39:81:74:1f:a8:fa:f0:5b:d9:
7f:e2:90:64:0a:0c:17:a3:b1:27:59:ff:51:4c:41:98:ec:e7:
06:16:c2:d9:58:89:60:5f:5c:79:46:a1:d4:12:06:dd:c8:ac:
95:9a:34:e7:fd:25:c8:f9:c7:b8:60:d2:2a:7e:ce:1c:d6:4a:
da:bf:7b:4c:8c:d3:52:49:36:12:aa:fb:11:50:f6:7a:d1:ae:
7a:d1:05:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:06:55 2025 by rpki-client