
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft
File: jR3ulkqib4m9ECJ21GVjP7guqig.mft (raw, json)
Hash identifier: naxnuMQjjDITpv5/3XpJm9aJ5eJH/fX4b4jlkA2DweQ=
Subject key identifier: E8:5F:3F:9A:B4:12:92:52:1F:97:66:6D:FA:A6:93:D7:19:AA:71:19
Authority key identifier: 8D:1D:EE:96:4A:A2:6F:89:BD:10:22:76:D4:65:63:3F:B8:2E:AA:28
Certificate issuer: /CN=8d1dee964aa26f89bd102276d465633fb82eaa28
Certificate serial: 0199FE7DA9D1A19AC46FA77D128397C0C759
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jR3ulkqib4m9ECJ21GVjP7guqig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft
Manifest number: 0B43
Signing time: Sun 19 Oct 2025 22:01:12 +0000
Manifest this update: Sun 19 Oct 2025 22:01:12 +0000
Manifest next update: Mon 20 Oct 2025 22:01:12 +0000
Files and hashes: 1: jR3ulkqib4m9ECJ21GVjP7guqig.crl (hash: G+w5HL2rcxmrYUcNcGW9wE8Q7qJBkN7NQO7a7Pq/22I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft
rsync://rpki.ripe.net/repository/DEFAULT/jR3ulkqib4m9ECJ21GVjP7guqig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7d:a9:d1:a1:9a:c4:6f:a7:7d:12:83:97:c0:c7:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1dee964aa26f89bd102276d465633fb82eaa28
Validity
Not Before: Oct 19 22:01:12 2025 GMT
Not After : Oct 20 22:01:12 2025 GMT
Subject: CN=e85f3f9ab41292521f97666dfaa693d719aa7119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:92:e7:78:38:a3:47:03:3e:a2:ea:a6:04:99:
0f:94:19:2f:06:77:76:b9:09:4c:49:c8:58:3d:ae:
dd:3b:36:66:b2:8c:d3:45:33:81:95:d8:64:bc:98:
f4:9f:b2:2e:ef:e5:2c:e8:ed:f6:2e:a6:ce:ba:40:
32:1d:3e:ea:31:e1:4a:21:ba:78:29:85:55:a0:33:
6d:1e:09:2e:4c:c4:e6:d6:b5:cb:c0:1e:78:e0:81:
54:09:f0:3c:8f:8f:b6:9b:ce:de:fe:00:0e:77:65:
81:6c:24:61:dd:e4:35:3e:19:17:79:4c:38:97:fb:
e3:2e:14:7e:8c:4a:bc:55:62:2f:b4:30:7b:21:73:
3f:a3:76:48:66:c0:dc:68:25:ae:c0:9a:b6:e0:f0:
af:8b:14:12:b9:28:e7:54:fb:c7:99:40:b1:cf:74:
4c:43:35:ab:9c:9b:c3:e7:5e:2d:4d:1a:0d:21:ed:
df:55:0a:11:a1:55:39:4c:9f:11:8b:47:b3:3d:d3:
a8:b7:bc:1a:61:a7:bd:50:89:a8:89:6d:97:ee:d3:
20:56:03:b9:58:f8:2d:02:97:e1:21:de:f6:66:0a:
68:44:94:9b:68:b8:9c:18:25:fa:1e:88:7a:30:e4:
5c:34:6b:1c:19:46:69:5b:20:c8:02:0a:ee:41:b4:
f8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:5F:3F:9A:B4:12:92:52:1F:97:66:6D:FA:A6:93:D7:19:AA:71:19
X509v3 Authority Key Identifier:
keyid:8D:1D:EE:96:4A:A2:6F:89:BD:10:22:76:D4:65:63:3F:B8:2E:AA:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jR3ulkqib4m9ECJ21GVjP7guqig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:90:09:8b:5b:e8:51:64:5f:84:21:ad:f7:79:bc:a4:2b:cf:
16:69:f0:f2:eb:4b:fe:44:36:b3:c9:ec:8f:48:8d:08:55:a4:
4f:4c:5f:11:72:d8:6c:30:4f:7f:fc:c6:34:94:ba:95:0c:b4:
e5:ab:ae:68:61:d9:3f:09:2d:aa:29:3c:86:da:4c:6b:57:ea:
8f:80:b7:fd:98:16:3c:a5:fd:05:8e:9a:85:75:07:80:8b:3d:
5d:ae:de:5a:34:84:fc:e6:df:1a:70:07:3e:4e:ac:22:02:87:
07:90:2d:ba:94:eb:86:c7:2d:e8:ee:22:8d:0b:a7:53:9c:a5:
8c:a1:ff:b0:a3:07:41:c2:08:86:a8:a5:e6:74:8c:0a:6b:87:
22:8a:15:ea:08:aa:aa:31:5a:33:20:80:33:fb:46:27:25:0b:
49:a1:49:9d:2d:e1:57:a5:3e:0a:34:df:9c:c4:bd:54:9a:56:
3b:5d:07:02:36:75:87:dd:55:51:62:ab:62:73:af:97:e4:0f:
41:22:9c:26:f4:9e:05:9f:7f:49:c7:84:8a:30:ef:f2:1e:27:
f4:9c:67:8e:43:44:f6:b4:c9:4b:3a:55:aa:e8:db:d8:b6:5a:
27:15:7f:43:ae:82:69:8e:dd:1d:f3:58:27:59:80:88:3f:65:
d2:c1:2a:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:13:53 2025 by rpki-client