Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft
File: FLklHG89i7aaegPOrN0q58LIzjc.mft (raw, json)
Hash identifier: DGmsPTkjEndhHMcJFBEgDCYvcY5L+BUkxBSCES6D+wM=
Subject key identifier: 78:09:14:AD:FC:95:1E:2F:2B:BC:5A:7D:47:1E:8C:86:96:52:E5:BF
Authority key identifier: 14:B9:25:1C:6F:3D:8B:B6:9A:7A:03:CE:AC:DD:2A:E7:C2:C8:CE:37
Certificate issuer: /CN=14b9251c6f3d8bb69a7a03ceacdd2ae7c2c8ce37
Certificate serial: 0199FBEB7B5D82FD31224C4635EAD0C8BFBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FLklHG89i7aaegPOrN0q58LIzjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft
Manifest number: 024C
Signing time: Sun 19 Oct 2025 10:02:17 +0000
Manifest this update: Sun 19 Oct 2025 10:02:17 +0000
Manifest next update: Mon 20 Oct 2025 10:02:17 +0000
Files and hashes: 1: FLklHG89i7aaegPOrN0q58LIzjc.crl (hash: RHSxvkJXAXdGP0N1YO/pgA+46PqgIRqWhy1iqA2mMZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FLklHG89i7aaegPOrN0q58LIzjc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:7b:5d:82:fd:31:22:4c:46:35:ea:d0:c8:bf:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14b9251c6f3d8bb69a7a03ceacdd2ae7c2c8ce37
Validity
Not Before: Oct 19 10:02:17 2025 GMT
Not After : Oct 20 10:02:17 2025 GMT
Subject: CN=780914adfc951e2f2bbc5a7d471e8c869652e5bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8d:af:f7:7e:05:a9:e2:44:ae:ee:42:7f:00:
78:90:49:11:10:4b:5c:85:f0:3f:9e:f7:3a:3e:1c:
fe:49:91:72:e9:83:9e:9f:c5:1d:d4:d3:c7:f5:b5:
49:d8:27:eb:e8:c2:86:6e:d4:da:5f:ed:20:b1:7a:
97:5b:0d:d6:c8:2e:c7:71:65:f3:1d:6f:13:ed:ee:
60:e1:05:00:7d:a4:a8:c2:5c:07:60:9f:45:7d:55:
14:ea:00:d2:7d:c2:51:67:58:6c:59:fd:50:2f:78:
65:25:12:85:aa:f2:aa:c5:84:ca:c5:7a:0a:05:79:
a4:1d:3a:cd:7a:4f:41:91:08:18:d7:41:32:76:94:
b4:4d:9d:40:4e:1f:42:f3:81:06:d9:ff:85:6e:6c:
2c:85:92:18:4d:cd:cc:1b:26:83:b8:b6:36:0b:ec:
4f:08:3a:f3:6f:68:cd:3c:c6:ea:ad:89:16:32:39:
96:be:38:c1:93:f0:58:96:33:bd:e7:f4:36:5c:94:
85:3f:0d:41:8d:0c:85:c9:42:1f:90:9c:b8:59:4d:
2d:1d:d5:85:67:16:66:2f:32:58:0c:23:d9:24:c9:
c3:b3:9f:be:8b:f2:48:a0:b6:d9:b2:35:8e:d0:f1:
65:5d:f2:d2:a1:a0:02:d9:8c:7c:9d:9e:4b:43:b0:
6e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:09:14:AD:FC:95:1E:2F:2B:BC:5A:7D:47:1E:8C:86:96:52:E5:BF
X509v3 Authority Key Identifier:
keyid:14:B9:25:1C:6F:3D:8B:B6:9A:7A:03:CE:AC:DD:2A:E7:C2:C8:CE:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FLklHG89i7aaegPOrN0q58LIzjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:e0:da:40:62:fb:79:8c:80:ed:f3:a8:21:c9:b7:30:8d:0d:
28:b6:2e:83:0b:87:76:c5:cc:26:a2:3d:a7:37:d2:0f:08:06:
1d:5c:bd:07:c8:2b:8f:df:5a:56:56:b3:22:ea:5c:c9:ca:d0:
c4:34:c2:ac:fb:8a:ea:a3:7f:cf:95:7e:fb:c6:ed:0c:79:32:
8b:d1:54:c1:25:8e:9a:97:46:01:ea:8f:e0:53:e0:48:16:2c:
8a:7a:10:00:28:90:29:7c:21:18:74:99:d0:31:43:aa:85:86:
87:ce:06:e1:ed:07:28:92:4e:88:22:0e:c7:05:45:99:c6:37:
61:f0:58:1d:63:b4:42:be:e3:20:4f:54:05:13:74:1c:67:63:
d6:95:bb:d8:0c:42:e2:6e:7d:3c:fb:b8:a3:6d:8c:37:a6:72:
53:cb:1d:c8:1e:ee:88:d8:dd:3f:8d:e9:d3:d7:37:88:3e:51:
2b:08:fe:73:e2:fc:3a:a5:18:fa:1a:b6:b7:b5:9a:ae:98:e7:
b1:de:fd:63:ef:6e:36:ec:fb:c2:c8:2b:df:7c:07:33:d5:4c:
68:5e:b4:ce:6a:2e:74:f6:08:9e:26:f3:73:0c:50:b4:6d:f6:
c5:dd:c4:f4:86:40:ad:0b:42:80:d6:22:32:5c:4b:b4:cd:1e:
69:7f:fc:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:27:05 2025 by rpki-client