Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft
File: n34J7YuBilTMw-tCb2elWhOKuH0.mft (raw, json)
Hash identifier: lhcjHZqL7k0lVqWE6jlgXD+KDAXV04DvuwDqaY43YbQ=
Subject key identifier: FA:1F:7F:C8:BE:7C:AA:D4:98:3B:A0:AD:4C:9D:3C:B0:4D:4F:A3:11
Authority key identifier: 9F:7E:09:ED:8B:81:8A:54:CC:C3:EB:42:6F:67:A5:5A:13:8A:B8:7D
Certificate issuer: /CN=9f7e09ed8b818a54ccc3eb426f67a55a138ab87d
Certificate serial: 019A01B57548D9D47A03CA1639333B14F076
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n34J7YuBilTMw-tCb2elWhOKuH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft
Manifest number: 0AF1
Signing time: Mon 20 Oct 2025 13:01:00 +0000
Manifest this update: Mon 20 Oct 2025 13:01:00 +0000
Manifest next update: Tue 21 Oct 2025 13:01:00 +0000
Files and hashes: 1: n34J7YuBilTMw-tCb2elWhOKuH0.crl (hash: AvYiykkJwF8ALefBqUI8W2kWUXTqXFxLZ2mFGvCoMXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/n34J7YuBilTMw-tCb2elWhOKuH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:b5:75:48:d9:d4:7a:03:ca:16:39:33:3b:14:f0:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f7e09ed8b818a54ccc3eb426f67a55a138ab87d
Validity
Not Before: Oct 20 13:01:00 2025 GMT
Not After : Oct 21 13:01:00 2025 GMT
Subject: CN=fa1f7fc8be7caad4983ba0ad4c9d3cb04d4fa311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:61:33:66:23:a6:48:13:f7:7c:bc:1f:aa:f4:
17:c0:c6:e3:8d:fe:2c:c1:cf:69:c8:4a:61:b8:0e:
72:57:d4:6b:6e:2e:3a:62:7e:7a:28:f3:f3:02:f8:
f7:8b:57:a6:ca:2f:38:40:28:55:75:59:2d:0b:cd:
fa:70:fd:27:0f:8a:65:13:59:06:71:82:5e:be:4b:
02:ce:53:4b:50:51:0f:1b:90:cf:f0:7c:b8:b5:5e:
4e:2f:5f:58:39:ff:40:ec:24:bd:e7:b1:35:89:1a:
54:c7:ec:d6:64:e3:32:58:ee:a4:c4:44:55:d9:f6:
0c:08:e2:2a:17:9e:15:d3:69:49:a7:0b:7e:ea:8c:
00:d8:2f:10:d6:3b:38:98:36:e8:fe:20:0a:62:b6:
51:61:ab:d3:79:e8:bf:a3:6a:32:4d:cb:fb:6f:09:
0f:b8:f3:bb:0d:2a:6b:61:f2:49:0a:1a:d8:56:f9:
58:0e:2f:25:d6:35:12:26:42:94:f7:18:a1:14:1c:
c7:fb:67:21:73:7e:6e:a9:e4:e6:b9:e2:eb:1f:ca:
59:f9:d8:dc:e4:15:a7:15:58:f7:9d:0f:96:7e:2d:
d3:af:b4:60:ac:4a:b3:58:e8:d6:15:22:d1:16:76:
be:02:b0:ba:be:c6:3e:51:55:cb:06:1c:95:e5:92:
ee:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:1F:7F:C8:BE:7C:AA:D4:98:3B:A0:AD:4C:9D:3C:B0:4D:4F:A3:11
X509v3 Authority Key Identifier:
keyid:9F:7E:09:ED:8B:81:8A:54:CC:C3:EB:42:6F:67:A5:5A:13:8A:B8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n34J7YuBilTMw-tCb2elWhOKuH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:f7:e9:86:08:2c:ae:b0:d7:d6:aa:19:02:19:19:fd:5d:9c:
55:f3:06:a3:99:fd:ae:b2:7b:2d:74:85:4f:99:da:d4:73:67:
34:02:f1:90:59:a3:6c:56:f9:26:e7:ff:5a:67:4d:38:39:7a:
fa:dd:ad:6d:b9:54:a7:06:42:98:14:4a:6c:04:ae:ce:df:22:
0f:2d:e0:84:21:ff:08:f1:65:5c:fe:05:42:d9:28:83:83:f4:
fc:af:28:1f:72:a1:1c:b1:dc:3e:22:71:ef:a8:ba:e2:d7:c5:
8f:7a:37:1e:e4:ca:3b:ea:c7:64:df:18:58:ca:e1:0d:c3:e7:
44:f8:77:9d:f1:4e:1b:04:cc:94:20:db:55:e0:f5:5f:99:42:
52:fc:37:5d:9c:4f:a2:3a:d1:1d:0c:ec:1d:d7:4e:2d:50:e5:
2b:f9:eb:d3:a6:04:b6:2c:d8:ed:32:ec:51:87:6d:67:69:3c:
6b:95:26:7e:3e:e6:06:24:b0:f6:44:b6:cf:1e:62:54:1a:2d:
b2:b3:aa:c9:a5:ac:84:bc:54:b1:19:47:50:51:0f:21:c2:ac:
b0:41:7a:4e:22:bf:e7:4c:04:f1:a1:90:45:d4:a6:8c:12:e8:
d1:a6:ba:80:c3:08:76:84:52:3c:06:f5:70:68:c7:cf:8d:12:
0e:99:11:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:15:04 2025 by rpki-client