Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft
File: JwBs1Oq8VbNskwifFND6bg-gzG0.mft (raw, json)
Hash identifier: C5W0NATI6GUm0HiKAhh4lHtVGsprVwRJuzGiuVWmGLM=
Subject key identifier: 6E:FA:D6:F1:FA:38:F7:A2:A9:71:97:41:07:52:0E:1C:C1:96:F5:A6
Authority key identifier: 27:00:6C:D4:EA:BC:55:B3:6C:93:08:9F:14:D0:FA:6E:0F:A0:CC:6D
Certificate issuer: /CN=27006cd4eabc55b36c93089f14d0fa6e0fa0cc6d
Certificate serial: 0199FCC679C83491B15783615814B6F1AF86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JwBs1Oq8VbNskwifFND6bg-gzG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft
Manifest number: 11E3
Signing time: Sun 19 Oct 2025 14:01:29 +0000
Manifest this update: Sun 19 Oct 2025 14:01:29 +0000
Manifest next update: Mon 20 Oct 2025 14:01:29 +0000
Files and hashes: 1: JwBs1Oq8VbNskwifFND6bg-gzG0.crl (hash: iRy38AFnlXpoMdcDXnYBV9y6P9+eYGD55zl5tQJ7qXw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/JwBs1Oq8VbNskwifFND6bg-gzG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:79:c8:34:91:b1:57:83:61:58:14:b6:f1:af:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27006cd4eabc55b36c93089f14d0fa6e0fa0cc6d
Validity
Not Before: Oct 19 14:01:29 2025 GMT
Not After : Oct 20 14:01:29 2025 GMT
Subject: CN=6efad6f1fa38f7a2a971974107520e1cc196f5a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:55:02:98:7c:13:c2:c3:2e:c6:99:04:79:98:
ff:a0:3d:b7:f0:f0:87:51:0b:1f:c5:72:24:ef:b9:
e2:3a:e6:d8:60:f4:49:b2:67:a4:38:38:2b:30:16:
7b:da:e4:09:6b:5c:c3:94:50:10:e8:8b:aa:20:b3:
02:20:93:14:34:de:4e:8e:88:52:6b:89:ba:eb:c5:
79:28:58:89:08:93:b9:7f:53:be:3b:38:53:1d:df:
7d:7f:97:df:c6:ad:a3:cf:30:f2:ab:f5:9b:c8:4f:
43:70:d9:df:d9:01:73:fe:bc:49:23:ca:4a:3c:32:
28:e8:c4:0b:a7:31:86:f1:f6:93:8b:97:b4:4b:b5:
a1:44:be:ce:05:fd:16:13:4b:92:53:0f:5b:55:71:
f7:e5:af:c9:1f:7d:d4:e4:78:41:9e:9f:0e:3f:3a:
15:63:15:7d:03:2c:d2:86:37:9d:83:4d:11:04:ec:
5b:8e:87:7e:c9:17:36:e7:2e:5d:83:64:81:43:c6:
eb:a2:38:5b:27:11:c2:57:e1:7e:f4:16:50:91:4e:
2c:c8:1f:38:a4:99:e0:63:19:44:ed:80:8d:54:93:
8f:8c:b1:ae:13:ea:63:bd:08:35:f2:33:03:79:37:
a1:c9:1a:6b:c5:b6:d0:11:f3:e8:6d:25:c2:9e:61:
e7:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:FA:D6:F1:FA:38:F7:A2:A9:71:97:41:07:52:0E:1C:C1:96:F5:A6
X509v3 Authority Key Identifier:
keyid:27:00:6C:D4:EA:BC:55:B3:6C:93:08:9F:14:D0:FA:6E:0F:A0:CC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JwBs1Oq8VbNskwifFND6bg-gzG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:4a:78:06:96:02:3b:5f:a0:ec:77:1e:98:d9:0c:e6:7f:ba:
1e:8a:3a:ae:6f:e3:f4:69:28:1b:68:36:77:0a:fd:13:0b:bb:
f6:e9:f8:5e:a6:a9:01:94:ca:da:9e:2a:db:5e:70:1d:55:33:
7f:03:0c:86:a3:45:02:26:8f:25:24:47:ce:57:64:ba:ea:e3:
86:6a:8a:47:b4:c7:7c:b2:e3:fa:cd:df:d7:65:c1:5f:13:ea:
9f:e2:6b:53:34:a2:59:fc:dc:41:bd:70:1a:c5:9a:3a:ca:4e:
3b:58:fb:1d:8f:fa:4d:23:9d:25:d5:17:e4:a2:fe:9f:15:2e:
3e:bc:60:3c:b8:2c:02:49:ef:ca:5f:2a:92:71:32:00:f2:fc:
5b:13:84:d0:c5:3a:23:91:eb:5c:04:8c:64:b9:2c:cc:f3:a2:
7d:e1:e0:a5:7c:51:55:e7:1a:c6:ca:e5:9e:27:82:9d:05:16:
72:12:b9:37:35:c9:d4:29:65:61:8c:13:d9:09:47:73:f4:5e:
8c:04:f5:db:bb:d1:98:99:5e:bc:5f:3f:20:18:a4:1d:f4:40:
60:56:97:0c:6a:bf:8f:26:4b:d6:2c:2a:1f:f3:e7:1a:8c:14:
17:da:6f:e9:a5:89:2e:ab:76:7a:1e:dd:9f:92:e7:5c:fd:1d:
bb:9c:f1:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:07:14 2025 by rpki-client