
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/30ba36-834e-4c04-a702-72ec3086f0e8/1/SPEmUDG2es3hHypnONAjRpnRgBc.mft
File: SPEmUDG2es3hHypnONAjRpnRgBc.mft (raw, json)
Hash identifier: VL8fWYTkDaecLVDo13sn34M5DGIytshG9uKovHNUpnI=
Subject key identifier: AB:36:29:EE:24:D6:08:81:94:4F:1F:6A:4B:EF:3F:88:5E:CB:FB:9C
Authority key identifier: 48:F1:26:50:31:B6:7A:CD:E1:1F:2A:67:38:D0:23:46:99:D1:80:17
Certificate issuer: /CN=48f1265031b67acde11f2a6738d0234699d18017
Certificate serial: 0199FBEAC05F5A43CB5BFAA0F64CB388FEBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SPEmUDG2es3hHypnONAjRpnRgBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/30ba36-834e-4c04-a702-72ec3086f0e8/1/SPEmUDG2es3hHypnONAjRpnRgBc.mft
Manifest number: F9
Signing time: Sun 19 Oct 2025 10:01:29 +0000
Manifest this update: Sun 19 Oct 2025 10:01:29 +0000
Manifest next update: Mon 20 Oct 2025 10:01:29 +0000
Files and hashes: 1: SPEmUDG2es3hHypnONAjRpnRgBc.crl (hash: kRpQA29DVfvMp6cIMwXSaZ8GxIAA7KBnIojtA7NDePo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/30ba36-834e-4c04-a702-72ec3086f0e8/1/SPEmUDG2es3hHypnONAjRpnRgBc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/30ba36-834e-4c04-a702-72ec3086f0e8/1/SPEmUDG2es3hHypnONAjRpnRgBc.mft
rsync://rpki.ripe.net/repository/DEFAULT/SPEmUDG2es3hHypnONAjRpnRgBc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:c0:5f:5a:43:cb:5b:fa:a0:f6:4c:b3:88:fe:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48f1265031b67acde11f2a6738d0234699d18017
Validity
Not Before: Oct 19 10:01:29 2025 GMT
Not After : Oct 20 10:01:29 2025 GMT
Subject: CN=ab3629ee24d60881944f1f6a4bef3f885ecbfb9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a6:1a:4b:3e:23:96:85:89:66:3c:45:05:a7:
e1:8b:8c:ca:f5:78:ef:9d:ba:d4:be:f1:58:4f:7c:
01:2a:27:50:bd:bc:17:e4:f6:ae:48:1f:cd:57:da:
74:9d:9f:56:1d:05:0b:61:3e:7f:3b:af:bb:f5:08:
a6:75:8b:27:99:56:20:f0:ed:cc:1c:15:fb:c3:81:
8e:fb:7f:a9:0c:5e:57:91:a4:06:12:4c:c0:b5:2a:
99:d2:a8:50:b3:0c:52:b2:03:aa:77:cf:c8:67:d1:
06:c4:88:d7:19:61:4d:c5:0e:fa:6a:2b:6e:c1:45:
d7:d8:41:35:35:e1:8f:42:78:03:50:a8:ca:d1:a2:
9a:87:79:cc:33:8f:d7:50:86:54:4a:c8:b3:a8:c4:
4e:3f:ef:7b:8a:cb:5b:58:64:32:49:b5:f7:8f:e3:
df:7c:fb:b5:23:c1:51:d8:f7:3d:cd:87:94:33:c1:
4d:60:14:18:7c:e6:10:13:09:75:f9:5f:11:40:d7:
0c:92:02:30:d2:61:43:a2:e5:93:e2:d4:91:3d:df:
77:27:f7:44:d0:ff:ab:41:25:04:ec:ba:88:c3:4f:
01:b5:2d:d0:32:c5:39:c4:70:ed:40:9d:5d:a8:16:
00:fe:7d:7a:38:e5:e3:0c:26:55:89:c5:29:1a:d8:
a9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:36:29:EE:24:D6:08:81:94:4F:1F:6A:4B:EF:3F:88:5E:CB:FB:9C
X509v3 Authority Key Identifier:
keyid:48:F1:26:50:31:B6:7A:CD:E1:1F:2A:67:38:D0:23:46:99:D1:80:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SPEmUDG2es3hHypnONAjRpnRgBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/30ba36-834e-4c04-a702-72ec3086f0e8/1/SPEmUDG2es3hHypnONAjRpnRgBc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/30ba36-834e-4c04-a702-72ec3086f0e8/1/SPEmUDG2es3hHypnONAjRpnRgBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:a3:25:6c:3f:2e:66:6c:de:23:fe:f2:1f:14:45:e6:60:48:
3e:ae:f6:14:b9:d4:8e:79:ab:f5:86:46:5c:10:c4:3d:14:e4:
be:e4:d2:27:02:c8:f7:c8:2d:f7:13:45:78:dd:37:60:fe:db:
49:ac:48:48:20:a4:1a:be:ed:65:dc:0b:2e:19:09:2b:8a:43:
6a:fb:bb:1d:77:65:b5:da:df:77:7b:3c:c7:e0:ea:6d:5c:a2:
4a:8a:5d:db:0e:bd:a4:85:07:67:23:2b:15:74:9f:c7:fc:40:
74:86:36:2a:2d:5c:82:4f:32:a9:27:b8:e8:d2:22:33:5e:4c:
65:19:a5:66:a5:29:54:bc:b6:e2:c2:63:3c:22:32:6b:5f:d4:
2a:bd:e0:7d:ca:ab:10:d2:e4:c1:d1:21:de:e8:1e:33:77:81:
4b:92:6a:2e:96:7c:a4:95:6a:0f:b1:1f:19:2c:6c:c0:44:2c:
c0:07:d8:96:15:52:b1:1c:04:d9:e9:25:a9:98:08:9e:94:ed:
4d:21:44:57:87:d4:99:95:4d:75:2d:e3:ea:bd:2b:68:9f:e3:
c0:e8:15:ed:5b:8e:6c:55:5c:8c:df:3f:22:a8:91:23:91:39:
04:21:7d:f8:48:48:ae:9b:ec:8e:3d:66:cc:97:da:e2:5d:4a:
02:12:1b:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:56 2025 by rpki-client