Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.mft
File: rrlJQmajhxkETYKaSgqPF6QHBOg.mft (raw, json)
Hash identifier: e+55pje+AgSqh9VoPi6/JyPkZJZL+oEVorohVvP138U=
Subject key identifier: 77:EA:D9:9E:FF:93:16:76:F6:C5:56:89:7B:72:3D:1D:78:8A:11:06
Authority key identifier: AE:B9:49:42:66:A3:87:19:04:4D:82:9A:4A:0A:8F:17:A4:07:04:E8
Certificate issuer: /CN=aeb9494266a38719044d829a4a0a8f17a40704e8
Certificate serial: 0199FBEB8375B62FC98CF34C4DF5FC27C703
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rrlJQmajhxkETYKaSgqPF6QHBOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.mft
Manifest number: 16DF
Signing time: Sun 19 Oct 2025 10:02:19 +0000
Manifest this update: Sun 19 Oct 2025 10:02:19 +0000
Manifest next update: Mon 20 Oct 2025 10:02:19 +0000
Files and hashes: 1: rrlJQmajhxkETYKaSgqPF6QHBOg.crl (hash: biypHqwLxYpyH7YL1A0SjdpV+j61woqvzG31+jPgg54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/rrlJQmajhxkETYKaSgqPF6QHBOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:83:75:b6:2f:c9:8c:f3:4c:4d:f5:fc:27:c7:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aeb9494266a38719044d829a4a0a8f17a40704e8
Validity
Not Before: Oct 19 10:02:19 2025 GMT
Not After : Oct 20 10:02:19 2025 GMT
Subject: CN=77ead99eff931676f6c556897b723d1d788a1106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2f:8f:a9:4b:8c:81:f2:07:ac:3d:ba:99:59:
76:d5:8a:e4:cd:d8:ff:f7:22:61:45:b3:ec:91:9d:
f6:45:30:d3:b7:89:1b:a7:64:32:2c:6a:0f:6f:99:
54:4a:3d:f2:41:06:d0:0d:fb:6a:53:25:82:58:b2:
05:6a:cd:ee:f0:b3:9a:fe:2c:86:1b:6d:22:74:c1:
43:9f:e2:01:90:28:13:fd:7a:5c:66:aa:8a:fd:09:
80:ca:16:f5:50:72:ea:59:17:1a:36:32:ec:3d:f0:
ee:50:40:5c:a8:e6:52:05:1e:4e:f8:40:fc:b4:f0:
95:41:88:ee:ef:c2:46:10:9e:8b:6b:66:2f:e2:32:
1f:0d:83:eb:35:7f:f8:33:a4:f7:7d:91:18:4f:53:
9b:23:55:24:1c:f7:37:0d:ab:54:b3:ba:a3:87:75:
3e:46:79:7c:ce:77:04:1e:21:4b:5c:78:4b:36:9e:
3c:80:75:99:30:4d:33:0e:c6:8a:49:60:4c:22:a5:
b7:c7:e4:c7:b0:74:6e:69:7f:99:ee:be:ac:e1:a3:
1a:ad:e0:3d:dc:1f:ed:b1:1d:9f:8b:eb:aa:2e:80:
45:d6:75:86:57:58:a3:da:27:f3:7f:0f:4b:23:7b:
41:cb:57:44:a8:46:a9:20:e8:8f:86:7c:f5:a7:5e:
eb:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:EA:D9:9E:FF:93:16:76:F6:C5:56:89:7B:72:3D:1D:78:8A:11:06
X509v3 Authority Key Identifier:
keyid:AE:B9:49:42:66:A3:87:19:04:4D:82:9A:4A:0A:8F:17:A4:07:04:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rrlJQmajhxkETYKaSgqPF6QHBOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:a7:dd:f0:f0:c3:8a:de:fe:0d:ed:fc:f5:5a:6a:46:7c:80:
e4:62:3f:97:38:b0:92:e2:08:d2:6d:1d:af:71:f4:a5:f2:64:
02:a1:be:84:ca:90:fd:87:c5:22:a8:79:f4:bf:68:b3:ea:48:
a3:80:74:3f:90:e5:f4:ff:21:0f:f5:36:14:ab:bb:7e:53:cb:
7c:3c:9a:f3:cf:de:3f:38:32:42:db:5d:8b:c4:67:aa:3f:1c:
b1:4e:c1:fd:4b:7b:a4:f2:38:ca:95:7f:3a:f4:e5:22:d5:68:
52:89:65:15:e3:c3:1c:ec:22:dd:d3:7b:a6:33:a6:49:4c:8e:
1b:2f:52:89:a8:e8:52:48:21:b3:1f:28:9c:f4:51:b0:18:23:
01:27:82:93:fb:5b:12:82:2e:80:74:af:e7:dd:c1:5d:3a:8c:
3d:0f:2f:ea:ac:61:36:1a:ec:ae:b8:77:73:ff:0a:b3:8d:9d:
64:36:19:eb:3b:37:76:23:95:d4:9f:05:4a:cb:d5:45:e6:15:
07:55:9d:00:79:d5:8a:da:10:01:71:13:78:86:ec:ac:d6:d8:
fc:04:66:bb:0c:9e:fc:62:5b:28:83:87:34:54:f1:bb:a4:be:
16:4b:af:b0:29:78:79:b8:fc:13:00:c8:ce:c3:32:73:79:59:
62:b1:c1:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:34:42 2025 by rpki-client