Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
File: 37H24AFTpJGGEbFLawP2gS7YikM.mft (raw, json)
Hash identifier: 8a/hLchYck1Hysf11tNqL53TyVyEKTthdWAqb8AQChU=
Subject key identifier: 19:F0:1F:8D:C6:76:11:68:40:16:DF:AC:67:AB:4C:6A:CA:CE:77:47
Authority key identifier: DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
Certificate issuer: /CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Certificate serial: 0199FC58BE82ED7BA1511091A251364CAF70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
Manifest number: 0FEE
Signing time: Sun 19 Oct 2025 12:01:38 +0000
Manifest this update: Sun 19 Oct 2025 12:01:38 +0000
Manifest next update: Mon 20 Oct 2025 12:01:38 +0000
Files and hashes: 1: 37H24AFTpJGGEbFLawP2gS7YikM.crl (hash: 1DVQbgOqj1Io7jt5n7fOHLtfA6oERC34yZVSdzaFHdA=)
2: NZtS_yd4-bo9e2cvGKzyKvYI3pE.roa (hash: +rJHNNOfAgRLW2AYZ2GQZ4sJIXJPzKob0SOJ3Knzwec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:be:82:ed:7b:a1:51:10:91:a2:51:36:4c:af:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Validity
Not Before: Oct 19 12:01:38 2025 GMT
Not After : Oct 20 12:01:38 2025 GMT
Subject: CN=19f01f8dc67611684016dfac67ab4c6acace7747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ae:01:d7:6e:db:3b:8f:5e:78:c3:4c:d3:7f:
0e:57:96:19:57:d7:43:05:4e:ba:1d:9d:a8:06:ca:
4b:a1:a0:74:ca:3c:3f:52:ce:6e:fd:e4:41:74:41:
e5:fb:a6:d3:76:c7:a2:ce:c7:80:2c:eb:94:9e:43:
a5:aa:83:6f:7d:82:81:64:d6:88:01:05:55:77:59:
8c:17:92:dd:e3:cd:72:ed:45:97:c5:e7:f6:23:dc:
9c:83:c5:74:fd:41:f2:19:91:c0:fb:d2:a4:d5:0e:
65:1d:b3:72:21:a4:39:6b:be:dc:2c:b5:69:97:54:
87:9c:a2:a7:58:36:36:bd:b3:e8:8b:c9:2b:84:f5:
6b:58:5e:61:20:e7:f7:d4:f0:8a:90:21:48:17:a4:
87:8b:ca:bb:1b:14:e1:60:a1:d2:e2:27:4a:47:ed:
a5:ad:9d:de:d8:36:a6:12:c3:bd:28:ee:35:7e:b9:
ff:c1:51:cf:69:f7:4a:7e:e4:9b:f4:3e:57:cf:41:
8f:1f:68:7a:bf:8d:c5:e7:0a:00:06:34:58:d9:9e:
87:66:a0:14:f8:2e:7b:de:8d:ba:c7:8e:22:42:68:
5e:aa:a2:ea:5b:5b:23:3b:8e:71:3d:51:56:28:b2:
94:0b:46:53:88:ea:b2:a5:84:c4:e1:2c:fe:68:63:
e3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:F0:1F:8D:C6:76:11:68:40:16:DF:AC:67:AB:4C:6A:CA:CE:77:47
X509v3 Authority Key Identifier:
keyid:DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:24:a4:75:d5:00:9c:03:2a:62:00:c6:11:d8:6b:df:41:16:
20:dd:df:86:5b:9e:d4:ce:56:f4:ae:89:bf:fc:6d:a0:c5:4b:
aa:6d:72:49:3c:2f:c9:20:f6:c0:45:64:09:a5:46:3c:f1:07:
c2:9e:ef:94:9c:56:c1:db:3a:54:ab:6b:00:ec:09:ff:90:8c:
07:82:fe:97:bd:02:3d:8e:c0:37:fa:8d:08:39:eb:26:eb:12:
8c:ec:f7:a6:bb:73:8f:05:b5:54:cb:ef:2d:21:69:2b:42:f4:
f3:45:3d:24:c7:c3:3d:0e:33:f7:c1:72:f3:d9:48:f3:d7:d0:
1b:10:d0:a9:b3:cc:c8:c0:7b:e8:a9:1e:d1:25:79:6e:39:ed:
55:5c:82:5e:c0:b4:fa:09:af:9d:de:7f:23:70:13:5e:56:16:
23:0d:2d:14:0b:ba:80:2a:c8:27:7f:8f:42:a5:2e:62:e6:68:
9d:8d:67:2b:33:e5:6d:fc:9d:35:31:7b:00:3c:35:69:62:07:
e6:18:77:c2:54:04:e4:f8:9a:4c:e7:db:0a:f6:9a:ac:58:27:
43:42:81:6a:7a:9a:61:55:6e:aa:c3:d1:17:4b:08:45:9a:25:
88:9b:76:c0:0c:b4:1d:d6:d7:a0:9b:b0:a1:cf:26:d5:bb:0e:
8d:24:5c:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:52:00 2025 by rpki-client