Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.mft
File: JUIq59QSPce_KI8TeeQ39uHLKpo.mft (raw, json)
Hash identifier: geNUOUzhFUs11VRwOVS8/4Os2fxHxS2aHeUpBEcWmok=
Subject key identifier: 74:FD:1E:CF:BB:8B:82:80:08:E3:C5:82:FC:3B:A6:D6:82:7B:3B:AF
Authority key identifier: 25:42:2A:E7:D4:12:3D:C7:BF:28:8F:13:79:E4:37:F6:E1:CB:2A:9A
Certificate issuer: /CN=25422ae7d4123dc7bf288f1379e437f6e1cb2a9a
Certificate serial: 0199FC587744DAA0826E9EF271DC87DD404A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JUIq59QSPce_KI8TeeQ39uHLKpo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.mft
Manifest number: 105E
Signing time: Sun 19 Oct 2025 12:01:20 +0000
Manifest this update: Sun 19 Oct 2025 12:01:20 +0000
Manifest next update: Mon 20 Oct 2025 12:01:20 +0000
Files and hashes: 1: JUIq59QSPce_KI8TeeQ39uHLKpo.crl (hash: hB1LlwP/EiIpq7oOiiC5VhxvtJafHMMheaq/bjlZUnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.mft
rsync://rpki.ripe.net/repository/DEFAULT/JUIq59QSPce_KI8TeeQ39uHLKpo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:77:44:da:a0:82:6e:9e:f2:71:dc:87:dd:40:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25422ae7d4123dc7bf288f1379e437f6e1cb2a9a
Validity
Not Before: Oct 19 12:01:20 2025 GMT
Not After : Oct 20 12:01:20 2025 GMT
Subject: CN=74fd1ecfbb8b828008e3c582fc3ba6d6827b3baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:02:88:39:f6:8e:54:ac:74:d0:c2:09:0c:78:
76:53:fb:39:3f:43:05:30:f3:d8:eb:10:ad:e2:93:
d0:d4:ec:30:22:be:5e:d2:01:f1:cd:fa:f6:81:ff:
55:f7:bb:80:86:e1:e6:4e:bb:66:73:74:e8:39:69:
db:98:0f:53:46:35:c2:b5:fe:65:12:80:07:7c:ae:
c9:4a:06:91:64:13:78:1f:9d:f1:16:2d:34:d6:46:
4b:53:04:9e:32:be:c0:74:6a:80:b3:f3:19:7a:8c:
e4:3d:83:88:59:47:63:7f:10:f0:45:8a:81:0d:65:
08:da:6b:ee:0e:af:fc:f5:17:b0:54:4d:5c:c0:75:
2d:13:26:85:fa:ea:b2:a7:fd:94:c0:c0:ba:4b:19:
8c:85:07:34:38:f3:9d:da:c4:bf:51:f1:68:3c:05:
2a:bf:b3:f4:de:16:58:94:d5:9e:b0:57:a6:86:23:
a0:2f:4e:ea:70:4a:e5:1d:76:43:4a:a8:9a:09:4c:
ac:fe:6f:97:4e:64:5d:f6:53:a0:d4:ec:58:20:ba:
30:40:e9:3e:b6:74:88:37:09:98:60:6e:c0:4a:47:
40:06:1c:49:ba:d6:66:ae:00:07:5d:6a:df:f1:61:
07:c0:f5:31:57:1f:7a:fa:74:ce:f5:cc:a0:86:1d:
ed:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:FD:1E:CF:BB:8B:82:80:08:E3:C5:82:FC:3B:A6:D6:82:7B:3B:AF
X509v3 Authority Key Identifier:
keyid:25:42:2A:E7:D4:12:3D:C7:BF:28:8F:13:79:E4:37:F6:E1:CB:2A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JUIq59QSPce_KI8TeeQ39uHLKpo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:4b:84:a5:37:ed:31:4f:0c:bb:fc:1d:fb:39:6d:06:2b:87:
7c:53:5b:71:e9:85:a7:14:c6:77:a8:7c:55:5f:8f:2f:c1:9b:
ac:70:48:3e:b6:d2:f1:51:f4:37:87:0f:a5:12:77:7c:20:de:
47:d0:2b:53:39:65:d7:ab:ea:fb:12:19:56:9d:3f:41:26:e0:
2b:9d:33:5e:6e:cb:29:ce:e6:d3:a1:62:66:e6:86:cb:c9:a9:
24:41:d2:6f:a6:ef:ab:83:5f:93:b4:c4:a4:a8:69:6a:db:0b:
02:dc:69:dd:87:b4:35:35:d3:82:9e:c6:4d:1e:1f:06:1c:b9:
31:d8:d5:fe:95:d0:c0:ec:96:98:ea:f8:d1:fa:b0:f4:56:47:
cb:1a:83:09:45:f3:86:72:5a:60:de:89:9e:ab:db:02:30:0c:
76:66:52:b7:59:27:af:59:9d:d8:5c:6d:dc:b8:1b:6a:2f:ed:
85:1f:5e:7b:36:59:14:02:2c:28:80:46:ef:e1:0a:6c:ce:90:
5f:97:12:83:3d:9b:a0:78:d6:fa:80:3b:03:10:7f:0a:e2:92:
fd:e1:9d:4a:f7:c4:ed:d4:67:3d:0e:37:c5:02:1c:c6:a6:ec:
42:76:6e:d0:0d:2e:fe:22:a4:9a:6b:e3:09:e2:98:51:7a:2f:
3f:c7:11:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:30:33 2025 by rpki-client