Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft
File: C86QcAXcPrBHC8PbRpCNoQkXuEo.mft (raw, json)
Hash identifier: /h7Xsf55XWItzSg4Q0EV03oWWq+CKk605/w/pryNJ6E=
Subject key identifier: 11:F5:80:CA:34:C7:C9:06:63:70:D6:03:D6:35:82:AF:7E:56:8C:56
Authority key identifier: 0B:CE:90:70:05:DC:3E:B0:47:0B:C3:DB:46:90:8D:A1:09:17:B8:4A
Certificate issuer: /CN=0bce907005dc3eb0470bc3db46908da10917b84a
Certificate serial: 0199FBEA893D26C3D4E22320F16C573829E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C86QcAXcPrBHC8PbRpCNoQkXuEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft
Manifest number: 1091
Signing time: Sun 19 Oct 2025 10:01:15 +0000
Manifest this update: Sun 19 Oct 2025 10:01:15 +0000
Manifest next update: Mon 20 Oct 2025 10:01:15 +0000
Files and hashes: 1: C86QcAXcPrBHC8PbRpCNoQkXuEo.crl (hash: HWgNbNqfPz6Tw2hgCpDZrKI/0EdywkuOAf1klxGg3GM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/C86QcAXcPrBHC8PbRpCNoQkXuEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:89:3d:26:c3:d4:e2:23:20:f1:6c:57:38:29:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bce907005dc3eb0470bc3db46908da10917b84a
Validity
Not Before: Oct 19 10:01:15 2025 GMT
Not After : Oct 20 10:01:15 2025 GMT
Subject: CN=11f580ca34c7c9066370d603d63582af7e568c56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:66:3b:b7:6d:8d:16:82:4f:4b:d6:a9:a6:dd:
de:44:6d:30:c8:d1:17:8f:77:f2:8b:f3:36:49:b1:
c8:0c:dd:3b:83:70:c4:df:c9:bf:57:31:84:a5:dc:
64:ad:0f:c8:a3:5f:1c:1d:de:54:f5:b6:e5:b1:f2:
b8:5e:e4:cb:75:ab:45:97:fc:42:f0:1c:28:03:79:
8d:e3:6f:3a:86:6f:4b:74:c9:08:a7:51:b3:3a:d6:
9f:ca:21:8c:61:56:76:1d:6e:20:13:83:69:6d:b6:
e5:d5:1a:92:5e:3a:ae:47:bb:9b:7a:60:82:01:a2:
b7:75:4c:93:53:69:bf:66:82:4e:a1:fb:8b:3c:03:
f7:dd:a6:a7:68:ba:8b:e2:c5:0d:33:0b:80:0a:15:
71:5f:29:f2:f6:1f:f6:75:7d:77:3d:80:d3:d6:3c:
a1:15:fb:7b:7f:f9:8c:db:0b:19:e6:52:78:ff:4f:
15:21:23:0c:33:8d:a9:81:2e:bf:47:48:6a:5f:ef:
84:46:2f:0a:5f:0b:93:d4:9a:61:eb:eb:69:07:b0:
f9:5c:ff:6a:23:15:a2:76:cb:12:7c:bb:cc:21:a7:
73:05:f5:2a:75:1d:79:f1:15:b5:49:82:4e:33:96:
c3:ad:74:86:91:90:92:73:c6:df:d7:ec:c4:7e:81:
4c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:F5:80:CA:34:C7:C9:06:63:70:D6:03:D6:35:82:AF:7E:56:8C:56
X509v3 Authority Key Identifier:
keyid:0B:CE:90:70:05:DC:3E:B0:47:0B:C3:DB:46:90:8D:A1:09:17:B8:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C86QcAXcPrBHC8PbRpCNoQkXuEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:3e:e9:84:8a:d3:fd:d4:d7:5a:41:7f:af:a8:57:24:d0:31:
3d:53:5f:4b:ba:43:64:be:31:5c:32:64:5a:36:f5:8e:a8:e8:
ff:00:52:c8:7e:52:a7:c3:a9:69:86:cf:a8:d7:b1:d5:58:2a:
0e:ac:71:40:75:07:92:79:35:02:f1:9f:86:da:32:94:d8:bb:
5d:70:01:b3:5a:52:0c:e3:4f:75:16:6a:68:28:e2:e1:54:16:
29:db:e0:c1:0e:bc:25:32:8a:cd:38:a7:c5:63:41:ce:7e:15:
8b:60:eb:a7:21:f3:57:5c:d1:b3:c5:dc:f4:e6:ad:bb:9f:3e:
a7:9d:6b:55:dd:7b:12:4b:4c:54:47:09:7e:bb:5b:99:9c:ef:
1b:ff:5c:5c:66:b3:7a:a6:a5:2d:47:df:ce:b3:e0:c6:b4:42:
3b:96:08:74:d0:4a:0e:e9:84:b2:f4:c4:a6:28:d4:63:4c:01:
72:d5:ac:5d:6a:b9:2f:ab:60:81:81:58:ee:b2:ff:82:71:fd:
c9:f9:ed:e1:a8:be:b1:bd:02:5e:c5:9e:f2:8a:42:75:25:5e:
f5:0e:36:67:36:06:50:d1:8e:d2:22:bd:e6:aa:d7:91:c1:7b:
4b:09:45:a7:f1:70:b3:07:2f:cd:a8:74:89:c7:8a:f5:d9:cf:
e1:99:31:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:33 2025 by rpki-client