Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
File: 1-puJ82fU-5UCh3AfYtSgObf2yyA.mft (raw, json)
Hash identifier: +W/+dpz4qmm+DaUdxLNIwUMiN+Piym1ekRCPrzXjiys=
Subject key identifier: 75:2B:18:F4:BC:8D:99:FF:B1:63:B6:D6:D8:A4:50:3B:50:C4:6B:41
Authority key identifier: FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20
Certificate issuer: /CN=fa9b89f367d4fb950287701f62d4a039b7f6cb20
Certificate serial: 0199FD3480A2900EE3D27E611BBBE91205F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
Manifest number: 14F0
Signing time: Sun 19 Oct 2025 16:01:40 +0000
Manifest this update: Sun 19 Oct 2025 16:01:40 +0000
Manifest next update: Mon 20 Oct 2025 16:01:40 +0000
Files and hashes: 1: 1-puJ82fU-5UCh3AfYtSgObf2yyA.crl (hash: dyOW1jEwqMfC1WLgKKEQ7phPjOuHQmSwDc1y5CcAkuU=)
2: BkhUnEeKLpdw7zqQsCW8fb_TG_I.roa (hash: krWgcFHtgzZmGIlUNG6InVr0KfezPC+cFYoPcdTkKaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:80:a2:90:0e:e3:d2:7e:61:1b:bb:e9:12:05:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa9b89f367d4fb950287701f62d4a039b7f6cb20
Validity
Not Before: Oct 19 16:01:40 2025 GMT
Not After : Oct 20 16:01:40 2025 GMT
Subject: CN=752b18f4bc8d99ffb163b6d6d8a4503b50c46b41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:37:96:07:73:3d:c0:d7:fc:ab:dc:74:f0:0b:
d2:e3:55:50:a1:d8:2e:4b:69:3a:ac:02:48:fb:02:
db:67:01:6f:c0:58:17:2c:8d:4f:eb:0d:77:66:d9:
3a:6b:76:ee:e7:be:8b:83:76:dc:19:77:d1:19:c6:
a5:39:8e:0e:dc:0c:1a:3b:74:26:38:b1:1d:a3:00:
56:04:17:d3:1c:06:82:fd:d1:2c:3b:6f:05:b2:ed:
a1:36:21:ab:8a:bd:ff:6f:28:6b:ef:86:00:48:d3:
f6:87:08:e1:04:68:e1:d8:e5:91:97:41:f2:0d:cc:
0c:c3:63:0c:f4:91:51:3f:98:48:5f:3f:24:a3:5a:
b1:f3:b1:6c:4f:1a:cb:a8:86:a9:8d:57:c9:d4:ad:
71:52:78:52:b3:1d:16:22:10:05:66:6c:90:41:9c:
93:fc:2e:31:12:d9:7a:1d:11:47:29:3b:74:1e:e0:
87:d4:c8:b1:79:08:31:8d:64:c8:35:b8:0e:78:c2:
25:df:97:7c:6d:bb:55:a7:08:a7:a8:8a:14:0c:f9:
13:42:24:b5:2f:ba:82:07:e4:0d:a1:ef:7b:c1:2f:
f4:0f:f5:4e:06:d7:56:75:71:6c:02:0b:77:06:46:
9f:8f:3a:10:b3:73:95:8a:70:42:b7:c6:70:0c:c7:
23:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2B:18:F4:BC:8D:99:FF:B1:63:B6:D6:D8:A4:50:3B:50:C4:6B:41
X509v3 Authority Key Identifier:
keyid:FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:16:1c:18:2c:44:9b:01:35:f5:79:fe:b5:32:36:91:13:96:
42:30:db:d4:eb:1e:95:3b:8d:64:4a:9e:b4:14:73:f4:ec:4f:
4a:74:09:6a:ab:2b:44:b4:48:f0:a8:ac:e6:d7:24:cd:7b:09:
73:a7:22:78:74:ce:9d:10:90:d5:d4:88:bd:8b:b2:58:66:a5:
f3:df:65:b0:c8:f7:d5:86:5a:01:12:68:82:b9:96:13:ea:20:
31:39:73:f6:d4:32:ca:6d:df:50:be:01:30:30:26:10:b3:80:
4f:03:41:5c:1a:14:d4:2e:f0:54:61:5e:c7:b8:cf:5f:f9:89:
9e:c7:01:b9:98:1e:6e:12:0e:df:6a:f1:13:bd:16:2a:c9:a9:
d8:52:fb:0e:05:09:40:39:29:fd:59:c1:33:b9:91:c9:a1:37:
de:59:70:60:05:0d:8e:01:00:25:f0:f4:52:0b:a3:1a:7d:20:
b6:4c:74:45:40:99:e6:9e:b0:01:1f:cd:d5:82:06:79:f6:9c:
79:03:6c:b7:96:34:f6:6e:2a:19:9a:b7:87:61:1d:50:65:a8:
99:78:dc:d2:47:c0:a9:03:5f:65:27:d7:53:76:2c:8e:a2:b7:
0f:6f:54:10:0b:af:f4:3f:3f:3f:f0:25:21:00:d6:29:11:da:
30:39:06:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:37:46 2025 by rpki-client