Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/6ecfca-feb2-4af0-aefe-799509d19ac3/1/Mj4i0VNpL6h29FppimQHCr0puzk.mft
File: Mj4i0VNpL6h29FppimQHCr0puzk.mft (raw, json)
Hash identifier: k7EvmH5Def+UnaspVDzeUwdHPUx20F1WTpWTAtB6+7w=
Subject key identifier: DE:E0:C1:50:02:5C:87:04:22:55:A7:72:41:4F:43:D9:A2:8A:36:98
Authority key identifier: 32:3E:22:D1:53:69:2F:A8:76:F4:5A:69:8A:64:07:0A:BD:29:BB:39
Certificate issuer: /CN=323e22d153692fa876f45a698a64070abd29bb39
Certificate serial: 0199FE474082FEC70B60932DA1B76161A863
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mj4i0VNpL6h29FppimQHCr0puzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/6ecfca-feb2-4af0-aefe-799509d19ac3/1/Mj4i0VNpL6h29FppimQHCr0puzk.mft
Manifest number: 019E
Signing time: Sun 19 Oct 2025 21:01:46 +0000
Manifest this update: Sun 19 Oct 2025 21:01:46 +0000
Manifest next update: Mon 20 Oct 2025 21:01:46 +0000
Files and hashes: 1: Mj4i0VNpL6h29FppimQHCr0puzk.crl (hash: BKYAzK5i8KMCSMiUErW1IT6B3OUodt9xmh/Wpcs5FtM=)
2: UPOmKS-wCVFYZbdnuQ3DjxycBYs.roa (hash: wDCKtOot6cNGvhctv9YJsxtzSFcNno8Vt28nw8UusF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/6ecfca-feb2-4af0-aefe-799509d19ac3/1/Mj4i0VNpL6h29FppimQHCr0puzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/6ecfca-feb2-4af0-aefe-799509d19ac3/1/Mj4i0VNpL6h29FppimQHCr0puzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mj4i0VNpL6h29FppimQHCr0puzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:47:40:82:fe:c7:0b:60:93:2d:a1:b7:61:61:a8:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=323e22d153692fa876f45a698a64070abd29bb39
Validity
Not Before: Oct 19 21:01:46 2025 GMT
Not After : Oct 20 21:01:46 2025 GMT
Subject: CN=dee0c150025c87042255a772414f43d9a28a3698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a3:0f:61:1f:13:84:0d:df:2d:2c:65:95:4f:
f3:39:7b:6f:41:9f:f5:0b:81:48:e7:25:28:2b:a8:
79:63:a6:42:85:00:ca:fc:00:25:20:d5:16:c2:ba:
40:ea:66:28:47:57:06:18:e5:23:a1:ea:09:82:b2:
b7:a4:9d:b4:eb:ac:c9:e2:3a:cd:e4:1a:00:27:77:
fe:0c:90:3d:74:c6:99:82:b0:65:10:d0:79:e0:47:
e5:0e:eb:b4:a5:c9:9d:ee:8f:b1:a2:96:58:71:6d:
07:e9:8f:f8:f0:73:3a:6f:26:a0:70:3b:5f:9f:0b:
7f:ad:88:0d:4a:49:0f:f7:c0:02:0f:75:cc:b7:ac:
b0:22:c7:05:4b:87:34:83:29:44:93:63:21:5e:9c:
a7:68:aa:a4:8c:ff:69:f5:28:13:98:fa:a8:f0:a3:
85:5e:74:5c:78:35:51:fc:4d:67:8e:18:d8:fa:c6:
4b:cc:27:37:c4:b9:05:cb:fc:57:6b:85:14:eb:12:
47:6f:30:fc:c2:cd:92:66:2c:6e:28:97:e4:d4:22:
86:22:61:a5:91:24:fc:4e:96:16:59:07:57:a6:11:
1e:8a:5e:1f:82:78:34:9b:b4:a3:f7:cd:4f:cc:ef:
a3:92:08:62:d6:66:4f:3d:f8:71:f9:ad:9f:b3:b5:
35:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E0:C1:50:02:5C:87:04:22:55:A7:72:41:4F:43:D9:A2:8A:36:98
X509v3 Authority Key Identifier:
keyid:32:3E:22:D1:53:69:2F:A8:76:F4:5A:69:8A:64:07:0A:BD:29:BB:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mj4i0VNpL6h29FppimQHCr0puzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6ecfca-feb2-4af0-aefe-799509d19ac3/1/Mj4i0VNpL6h29FppimQHCr0puzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6ecfca-feb2-4af0-aefe-799509d19ac3/1/Mj4i0VNpL6h29FppimQHCr0puzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:ec:9f:5b:8a:2a:ce:84:6a:37:e4:56:eb:64:01:f7:6d:2c:
f1:56:bb:82:e9:76:c5:60:5b:5b:8a:c3:b6:81:30:94:e8:98:
4a:1e:da:a4:bd:7f:17:92:c6:06:70:86:91:38:4d:72:b0:81:
55:7e:19:44:1d:e8:ea:99:4c:52:68:0d:08:6f:80:4c:85:09:
ba:e1:5a:b2:02:b8:ee:a0:a5:f3:5e:09:db:40:09:8f:59:b7:
65:79:ff:29:3d:e3:ba:d5:f8:7b:89:9b:e2:6e:77:dd:14:73:
f5:cd:c5:e0:46:bf:4d:35:2a:9c:10:d3:9a:17:15:4c:84:99:
ce:fd:f4:70:33:c4:0a:c1:aa:a0:8a:c4:9a:c4:6f:29:dc:34:
7c:23:a3:12:54:8a:22:78:a8:6b:1a:cc:00:be:75:a1:f3:30:
58:98:d7:8c:0b:65:a8:49:16:ad:89:38:73:0a:24:af:66:95:
09:37:16:2b:95:db:47:7f:15:1b:2f:60:d4:8f:b3:f6:ec:44:
69:e5:ef:44:31:60:04:f1:fe:7d:f5:53:1a:c3:89:04:45:10:
e5:e6:b6:08:ac:2a:e2:ce:60:fb:80:91:e4:07:25:38:6f:67:
35:aa:54:dc:ed:6e:6f:d4:df:65:fc:26:d4:9b:28:4b:c5:d0:
ad:15:4a:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:03:10 2025 by rpki-client