Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
File: IPdQab1W78UXA4PtMcrSJGT98DA.mft (raw, json)
Hash identifier: LLxrVNe8mmjI8FDmjMwVsrUpET1zkawtsyDJmYiw9lY=
Subject key identifier: 0E:8F:23:C3:33:A5:29:85:51:DA:46:D7:FF:37:2C:C0:5C:96:65:FA
Authority key identifier: 20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
Certificate issuer: /CN=20f75069bd56efc5170383ed31cad22464fdf030
Certificate serial: 0199FC8F75D7549EE14513B56AFA0B283903
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
Manifest number: 0491
Signing time: Sun 19 Oct 2025 13:01:24 +0000
Manifest this update: Sun 19 Oct 2025 13:01:24 +0000
Manifest next update: Mon 20 Oct 2025 13:01:24 +0000
Files and hashes: 1: IPdQab1W78UXA4PtMcrSJGT98DA.crl (hash: RPsv9rgRd/HtgPXLj6YjZtFFs5R0OIKifmsycZ87JDY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:75:d7:54:9e:e1:45:13:b5:6a:fa:0b:28:39:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f75069bd56efc5170383ed31cad22464fdf030
Validity
Not Before: Oct 19 13:01:24 2025 GMT
Not After : Oct 20 13:01:24 2025 GMT
Subject: CN=0e8f23c333a5298551da46d7ff372cc05c9665fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:85:4d:7f:fa:d5:c5:03:10:02:9e:01:ab:8d:
96:21:78:13:34:9b:93:95:9e:0b:55:4d:64:21:65:
0b:25:fb:76:5f:21:23:3e:89:4d:75:0d:25:bf:59:
86:f5:ec:fe:35:60:e4:54:55:17:35:6f:98:b7:05:
c4:a2:65:eb:5a:c2:d8:57:41:14:68:e2:bb:5d:8d:
94:b1:5a:23:ba:ea:0d:50:73:e8:e0:94:7e:60:79:
66:93:ab:fa:12:e8:a0:7b:e3:89:31:f9:b0:64:6a:
ff:37:79:ca:05:8a:e7:e2:ae:3c:f2:e6:97:86:09:
a3:70:59:98:9e:86:f8:bf:b3:6b:bf:55:73:e9:af:
b5:c9:66:b7:82:0a:23:b1:d9:b0:bc:4c:5f:1c:dd:
f5:c7:cd:51:2d:86:93:21:ba:eb:70:23:c1:8c:61:
52:46:be:68:92:45:ec:1f:78:d1:5e:d6:01:6b:fb:
ca:cc:7b:2d:c8:c6:ea:d0:a5:9a:59:dc:3b:9e:2c:
a1:05:fc:1f:da:b0:1c:31:f6:c0:07:2b:87:9a:8d:
a3:ed:4c:a7:67:1a:55:9e:8a:96:e6:cd:27:0e:13:
88:b5:f5:a5:cf:af:fc:08:a3:66:f8:f3:53:8e:35:
a9:a7:7e:5a:f4:54:82:a7:6b:5b:67:cf:59:9e:3a:
5d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:8F:23:C3:33:A5:29:85:51:DA:46:D7:FF:37:2C:C0:5C:96:65:FA
X509v3 Authority Key Identifier:
keyid:20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:d6:07:0b:81:44:19:e4:df:2f:a7:fa:3e:e3:0b:48:f0:3b:
04:9f:4a:65:fe:86:33:b4:43:f7:12:e1:74:26:45:49:b5:b8:
03:7f:fe:25:59:ad:80:86:3e:d3:52:ad:d2:16:7f:03:fb:be:
bb:12:25:6a:88:a9:a9:3a:a3:a7:2d:62:1a:1a:73:e1:58:7c:
bf:4e:8e:80:2f:00:1e:5e:37:60:ee:e0:aa:f0:7a:62:db:02:
a7:4a:83:96:70:45:55:84:32:8a:5b:07:fb:be:ae:7f:0f:a8:
65:5b:a1:4e:82:0c:67:14:fd:bf:13:64:fd:32:bc:81:d8:f6:
7a:86:4c:fb:5e:ac:01:b7:1e:5f:b3:7f:33:11:ac:39:f4:c0:
26:9e:c7:cd:13:38:26:96:2f:54:aa:a7:f5:42:b7:2e:7b:a6:
40:bc:38:1c:cf:1b:78:34:cd:ba:5d:24:2d:52:e0:88:0f:75:
a5:54:72:2c:b6:fa:3d:7a:c7:b8:01:74:b9:50:0e:01:b7:f5:
08:9b:4b:bc:ef:f0:d9:14:e7:d5:50:9f:57:0e:05:2c:5b:a6:
1f:72:02:0a:1e:04:b3:f2:b2:fd:a5:c4:ca:da:82:01:95:f0:
90:60:f5:17:6d:fd:78:43:66:a3:ae:46:eb:02:3a:37:22:23:
78:f1:13:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:37 2025 by rpki-client