Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
File: FYi9izG5XpysnzgSjZW4UvA9V4Q.mft (raw, json)
Hash identifier: UXl8AqWohZuAdtRng2wmPAzi3toGyVdOkIZfLtwDSi8=
Subject key identifier: 8D:C7:42:85:30:77:76:EB:5F:14:E0:9E:1B:23:B7:E3:D1:B1:9F:7E
Authority key identifier: 15:88:BD:8B:31:B9:5E:9C:AC:9F:38:12:8D:95:B8:52:F0:3D:57:84
Certificate issuer: /CN=1588bd8b31b95e9cac9f38128d95b852f03d5784
Certificate serial: 0199FBEB94A1CC5A92DD3B323F4BFE6511C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
Manifest number: 16DF
Signing time: Sun 19 Oct 2025 10:02:24 +0000
Manifest this update: Sun 19 Oct 2025 10:02:24 +0000
Manifest next update: Mon 20 Oct 2025 10:02:24 +0000
Files and hashes: 1: FYi9izG5XpysnzgSjZW4UvA9V4Q.crl (hash: 69zcFpKeP+TWmzzVfiu3JO7Jk2MNoE5HbhUvAOgtGHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:94:a1:cc:5a:92:dd:3b:32:3f:4b:fe:65:11:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1588bd8b31b95e9cac9f38128d95b852f03d5784
Validity
Not Before: Oct 19 10:02:24 2025 GMT
Not After : Oct 20 10:02:24 2025 GMT
Subject: CN=8dc74285307776eb5f14e09e1b23b7e3d1b19f7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4f:6c:fd:29:c4:a4:4c:f9:ae:be:da:09:d4:
32:84:73:bb:cf:34:bf:ff:d2:39:0b:ec:3b:a6:7e:
af:a3:4e:c9:6f:38:28:6a:6d:3e:3d:79:a7:94:e1:
27:aa:b4:14:d0:a0:94:79:7e:d8:df:e3:db:ef:63:
2b:a6:d3:64:27:83:8e:4c:30:51:64:38:f4:b9:ef:
fb:ab:55:8e:17:69:da:a9:15:aa:51:a0:74:56:ab:
cb:d4:9d:b1:a3:33:1b:01:67:1f:3c:7d:66:27:76:
35:72:f9:33:4e:62:35:bf:c4:82:94:05:14:62:c1:
94:6d:e7:60:c9:0b:d5:16:dc:6d:03:ff:a1:f4:62:
37:27:55:42:a4:f7:f3:a8:ca:56:e8:d1:59:ec:d0:
15:4b:45:ad:8a:51:ea:08:a6:c1:1e:e0:9e:48:3b:
9c:5b:c5:47:03:7e:89:45:ee:8f:19:2c:80:c8:48:
25:c7:93:a1:73:87:27:89:b3:8e:d9:43:0b:cb:0a:
6b:e7:70:69:e3:b6:1b:7a:1f:34:20:7d:5f:73:e9:
11:1f:33:a1:96:95:d7:9e:71:6d:a3:ac:c0:ff:2c:
2e:9f:87:6f:ed:3d:1f:ee:2b:65:59:a7:c7:34:cc:
55:2c:69:41:4d:e1:ba:91:c6:19:8c:fc:54:1c:5f:
44:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:C7:42:85:30:77:76:EB:5F:14:E0:9E:1B:23:B7:E3:D1:B1:9F:7E
X509v3 Authority Key Identifier:
keyid:15:88:BD:8B:31:B9:5E:9C:AC:9F:38:12:8D:95:B8:52:F0:3D:57:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:6e:51:ad:29:7e:da:0d:b9:a0:77:cf:88:f7:28:58:02:2a:
eb:b9:ed:86:6f:83:77:34:ad:a7:bd:bf:66:fd:2b:53:95:b2:
fd:3b:10:b1:24:64:8d:5b:ee:1a:49:ef:c0:d0:ac:0d:64:2e:
ac:e6:c7:49:32:67:0d:7c:60:11:eb:08:90:31:b7:c8:1b:7a:
43:4f:4d:d1:1a:db:91:62:52:04:ee:00:10:bd:36:78:b2:29:
78:5a:e4:f5:cc:b8:a3:f2:f9:99:6c:11:8c:d9:71:62:f1:45:
25:77:6f:8e:41:70:21:3b:71:6e:be:29:69:b2:82:e5:03:f9:
1a:5a:36:0f:f2:54:42:07:b7:b0:77:f8:6d:28:71:d3:e0:32:
3e:f9:29:ec:9c:bb:33:25:63:eb:2f:c0:7f:67:e3:03:de:c6:
b6:0f:4d:9b:2f:82:94:a7:b3:46:02:69:9a:5b:f2:82:a5:f8:
80:0c:15:ed:e6:99:60:d1:ac:0c:56:63:f9:4d:13:66:05:3a:
80:52:78:b7:0a:1a:47:a2:f8:7c:ba:7a:b7:41:4a:c3:89:d6:
ce:b9:a8:dd:b2:5a:d5:f6:a6:cd:e6:8b:c7:cd:86:21:01:58:
c9:a6:4f:40:8e:8a:40:ef:8f:6c:07:49:d7:49:74:5c:b1:fb:
0b:c4:a7:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:38:47 2025 by rpki-client