Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/37e5cb-d9ee-45d3-95ab-0db0fd74db32/1/chgSXs-7IR7fwt4EcvlkqobL6Z4.mft
File: chgSXs-7IR7fwt4EcvlkqobL6Z4.mft (raw, json)
Hash identifier: PQJm7aOB+yYOLIXBLINAHZYzAh0B5j7j3+kTljgKeOM=
Subject key identifier: 38:C1:26:1C:59:A2:58:CF:E6:A9:37:DB:7F:F7:96:0E:D9:F2:76:68
Authority key identifier: 72:18:12:5E:CF:BB:21:1E:DF:C2:DE:04:72:F9:64:AA:86:CB:E9:9E
Certificate issuer: /CN=7218125ecfbb211edfc2de0472f964aa86cbe99e
Certificate serial: 0199FDD9756537D0BB417316029E2A54F198
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/chgSXs-7IR7fwt4EcvlkqobL6Z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/37e5cb-d9ee-45d3-95ab-0db0fd74db32/1/chgSXs-7IR7fwt4EcvlkqobL6Z4.mft
Manifest number: 0DC8
Signing time: Sun 19 Oct 2025 19:01:50 +0000
Manifest this update: Sun 19 Oct 2025 19:01:50 +0000
Manifest next update: Mon 20 Oct 2025 19:01:50 +0000
Files and hashes: 1: chgSXs-7IR7fwt4EcvlkqobL6Z4.crl (hash: vnjlctEz+wvB738qq8LVDakIrEGw7wyjJ+dGcF5K844=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/37e5cb-d9ee-45d3-95ab-0db0fd74db32/1/chgSXs-7IR7fwt4EcvlkqobL6Z4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/37e5cb-d9ee-45d3-95ab-0db0fd74db32/1/chgSXs-7IR7fwt4EcvlkqobL6Z4.mft
rsync://rpki.ripe.net/repository/DEFAULT/chgSXs-7IR7fwt4EcvlkqobL6Z4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:75:65:37:d0:bb:41:73:16:02:9e:2a:54:f1:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7218125ecfbb211edfc2de0472f964aa86cbe99e
Validity
Not Before: Oct 19 19:01:50 2025 GMT
Not After : Oct 20 19:01:50 2025 GMT
Subject: CN=38c1261c59a258cfe6a937db7ff7960ed9f27668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ce:6c:6d:9c:05:c6:e6:b1:8b:19:5d:ca:ce:
53:3c:33:77:9d:b4:e7:07:19:31:04:eb:1f:2d:1e:
f5:b4:52:99:cc:21:c5:a8:dd:bc:ad:13:f2:7a:9e:
57:0c:07:07:4c:e5:56:b0:18:19:db:60:a8:de:df:
0b:fd:33:66:e5:a6:80:69:51:b3:28:f0:0b:e6:25:
bd:7a:b2:59:4f:a6:62:cd:3d:05:c9:05:76:ac:e8:
3a:5b:fa:5b:04:d7:7e:c3:ac:11:e4:33:7a:12:a1:
2f:ff:f6:49:d0:54:ea:dc:de:06:62:28:ac:9d:42:
33:3e:0c:bb:c4:f4:14:7d:77:22:d9:db:27:9f:1b:
e2:80:54:e2:6c:59:84:3b:ee:58:3d:87:19:6c:f0:
24:c0:5a:3b:54:e2:12:ba:86:1e:68:e4:76:7b:16:
a8:c0:62:37:8d:fc:6a:03:61:f3:18:70:9a:32:89:
71:ef:c5:ac:d5:5a:6e:13:10:dc:7d:ba:7f:dc:89:
5d:e1:7b:f0:6c:13:63:75:02:e7:32:e5:ae:3f:14:
87:6c:ee:47:59:8f:18:bf:c1:fe:f0:af:fc:80:1a:
80:c1:c4:e2:85:a4:6e:81:98:89:cd:1c:6f:0f:15:
78:40:fd:45:a2:69:3e:db:e8:da:06:cd:34:18:dc:
f4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C1:26:1C:59:A2:58:CF:E6:A9:37:DB:7F:F7:96:0E:D9:F2:76:68
X509v3 Authority Key Identifier:
keyid:72:18:12:5E:CF:BB:21:1E:DF:C2:DE:04:72:F9:64:AA:86:CB:E9:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/chgSXs-7IR7fwt4EcvlkqobL6Z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/37e5cb-d9ee-45d3-95ab-0db0fd74db32/1/chgSXs-7IR7fwt4EcvlkqobL6Z4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/37e5cb-d9ee-45d3-95ab-0db0fd74db32/1/chgSXs-7IR7fwt4EcvlkqobL6Z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:0d:82:4d:12:44:a5:3d:15:8c:de:5b:33:72:1f:8c:3a:80:
05:49:02:09:da:fa:88:ac:f0:9e:aa:2c:fe:43:97:cf:13:21:
ad:43:4d:17:c4:13:9b:4e:42:6a:ec:ec:61:0d:b1:37:c7:43:
7d:63:14:e4:8c:81:c0:b6:4f:6d:cb:aa:f8:54:cd:df:da:e8:
2c:04:b6:18:b1:1a:3d:43:67:8b:bf:b2:9d:45:f3:bf:65:eb:
53:6a:62:5c:d2:17:80:c2:b6:90:9c:52:3e:6d:d0:69:a4:da:
4c:a3:3b:0e:68:76:45:d3:b2:30:ad:93:7b:67:01:e1:fc:47:
b5:98:bf:72:9d:d7:42:01:f1:17:51:5d:60:da:1e:28:1e:ef:
e0:13:39:0e:91:cd:3f:ed:a6:4f:06:dd:33:03:05:2a:f3:5a:
54:9d:d5:c4:38:cf:8c:37:25:58:37:21:fc:15:06:3e:cb:04:
94:46:7e:8d:12:86:ce:46:4a:45:32:20:7b:3e:da:2f:5c:61:
ed:c2:81:34:a3:48:93:2f:79:66:cd:2e:c5:e4:6c:87:88:57:
16:aa:0c:01:54:56:04:fd:b4:e6:c3:2a:5d:b3:2a:87:31:83:
bc:b8:68:7d:9e:61:9c:0f:bc:bf:68:b9:24:f9:f5:e7:0f:18:
df:29:8c:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92XVlN9C7QXMWAp4qVPGYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMTgxMjVlY2ZiYjIxMWVkZmMyZGUwNDcyZjk2NGFhODZj
YmU5OWUwHhcNMjUxMDE5MTkwMTUwWhcNMjUxMDIwMTkwMTUwWjAzMTEwLwYDVQQD
EygzOGMxMjYxYzU5YTI1OGNmZTZhOTM3ZGI3ZmY3OTYwZWQ5ZjI3NjY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh85sbZwFxuaxixldys5TPDN3nbTn
BxkxBOsfLR71tFKZzCHFqN28rRPyep5XDAcHTOVWsBgZ22Co3t8L/TNm5aaAaVGz
KPAL5iW9erJZT6ZizT0FyQV2rOg6W/pbBNd+w6wR5DN6EqEv//ZJ0FTq3N4GYiis
nUIzPgy7xPQUfXci2dsnnxvigFTibFmEO+5YPYcZbPAkwFo7VOISuoYeaOR2exao
wGI3jfxqA2HzGHCaMolx78Ws1VpuExDcfbp/3Ild4XvwbBNjdQLnMuWuPxSHbO5H
WY8Yv8H+8K/8gBqAwcTihaRugZiJzRxvDxV4QP1Fomk+2+jaBs00GNz08QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDjBJhxZoljP5qk323/3lg7Z8nZoMB8GA1UdIwQY
MBaAFHIYEl7PuyEe38LeBHL5ZKqGy+meMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2hnU1hzLTdJUjdmd3Q0RWN2bGtxb2JMNlo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8zN2U1Y2ItZDllZS00NWQzLTk1YWIt
MGRiMGZkNzRkYjMyLzEvY2hnU1hzLTdJUjdmd3Q0RWN2bGtxb2JMNlo0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni8zN2U1Y2ItZDllZS00NWQzLTk1YWItMGRiMGZkNzRkYjMy
LzEvY2hnU1hzLTdJUjdmd3Q0RWN2bGtxb2JMNlo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUQ2CTRJE
pT0VjN5bM3IfjDqABUkCCdr6iKzwnqos/kOXzxMhrUNNF8QTm05CauzsYQ2xN8dD
fWMU5IyBwLZPbcuq+FTN39roLAS2GLEaPUNni7+ynUXzv2XrU2piXNIXgMK2kJxS
Pm3QaaTaTKM7Dmh2RdOyMK2Te2cB4fxHtZi/cp3XQgHxF1FdYNoeKB7v4BM5DpHN
P+2mTwbdMwMFKvNaVJ3VxDjPjDclWDch/BUGPssElEZ+jRKGzkZKRTIgez7aL1xh
7cKBNKNIky95Zs0uxeRsh4hXFqoMAVRWBP205sMqXbMqhzGDvLhofZ5hnA+8v2i5
JPn15w8Y3ymM2w==
-----END CERTIFICATE-----
Generated at Mon Oct 20 00:02:40 2025 by rpki-client