Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
File: 9j_pwTQEHOvaVoufkI4q7zirf3U.mft (raw, json)
Hash identifier: XCBxTNuWMK5GcXBDlyKi1ubcEqGc7LVagMY5KajqjVo=
Subject key identifier: 8C:A6:25:D2:86:26:A1:CF:B2:4A:FA:9B:8D:85:45:A2:9E:56:50:EF
Authority key identifier: F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
Certificate issuer: /CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Certificate serial: 0199FDD9B831E9FC7CC5AECB9578D02F5592
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
Manifest number: 0D37
Signing time: Sun 19 Oct 2025 19:02:07 +0000
Manifest this update: Sun 19 Oct 2025 19:02:07 +0000
Manifest next update: Mon 20 Oct 2025 19:02:07 +0000
Files and hashes: 1: 9j_pwTQEHOvaVoufkI4q7zirf3U.crl (hash: 9kIcvVHp64TKEHMTq0Uq8pfpd5UhJdPDtAYLxGaSGbg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:02:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:b8:31:e9:fc:7c:c5:ae:cb:95:78:d0:2f:55:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Validity
Not Before: Oct 19 19:02:07 2025 GMT
Not After : Oct 20 19:02:07 2025 GMT
Subject: CN=8ca625d28626a1cfb24afa9b8d8545a29e5650ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:cd:05:83:bb:36:a5:cb:a5:69:38:1d:c6:03:
8b:4e:7e:4a:e0:c7:d1:61:e1:c2:c5:96:60:5a:7d:
89:ac:61:81:42:a0:8f:63:b2:f4:8b:c3:56:e4:18:
3b:ec:b8:51:76:60:cb:1e:13:2b:49:35:ca:71:2a:
1f:8e:01:cb:50:8c:4f:e1:f8:82:99:e5:cf:05:d1:
ff:71:22:d6:59:57:cf:96:20:1f:bd:bf:ac:aa:70:
98:83:05:56:c3:49:34:69:52:aa:b9:f3:f0:f7:d9:
f8:bb:f4:a9:33:a2:43:a8:68:75:53:14:f5:79:04:
d5:f1:32:89:f3:3a:7b:a0:ec:1e:c5:cd:80:71:d1:
4a:eb:42:96:35:40:58:b3:1b:38:39:40:ff:13:72:
8b:cc:10:6b:97:e8:ef:29:66:9c:87:b8:c2:3b:d6:
40:a8:a6:09:d0:c7:fa:23:42:4c:62:ee:cb:0e:dd:
d3:96:f9:a0:f1:b2:9d:ee:ba:7a:c3:0b:ca:c9:99:
52:87:b4:51:b3:e5:0f:15:41:49:f8:49:4f:bc:9d:
c8:3e:19:b8:e5:d9:ec:70:74:0d:95:29:4a:12:e3:
92:cd:e2:be:27:f6:55:fc:0e:03:89:b8:1a:ed:0f:
ec:c6:75:00:8f:ac:d4:ba:9e:10:44:60:d0:60:24:
81:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A6:25:D2:86:26:A1:CF:B2:4A:FA:9B:8D:85:45:A2:9E:56:50:EF
X509v3 Authority Key Identifier:
keyid:F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:ac:00:99:d9:a1:27:b1:88:df:83:ea:19:d5:49:67:9b:30:
ae:a5:d2:aa:92:4d:8e:0a:a0:c9:ca:fd:fb:85:0e:6c:79:62:
04:f4:03:73:f5:90:2b:10:c1:bd:ce:22:f4:62:23:45:ab:7f:
91:26:ed:b9:70:93:79:34:ce:41:bc:74:03:c0:71:f7:48:61:
37:ae:68:b5:92:d5:8a:f6:c5:c2:a2:f4:c7:ab:24:19:40:e8:
a7:8b:b1:6f:27:17:73:0c:de:80:8f:b6:10:e0:35:a3:a7:f4:
7a:fe:d0:fb:61:99:be:4e:e7:57:8e:b8:4a:fe:54:dd:62:a5:
0e:29:6a:c6:a4:81:a1:bc:5a:99:f8:51:1b:cc:4e:f4:92:22:
08:cf:be:a3:9e:f0:aa:4f:39:13:f8:33:cd:73:09:83:37:cc:
fd:d7:50:5e:11:5c:3a:b4:52:62:01:6a:62:8f:8c:04:52:bd:
97:df:47:13:dd:6d:f4:4e:61:39:f6:8a:2f:b5:12:14:af:78:
6d:f5:c0:5a:8b:28:de:24:2b:2a:99:46:1b:0d:0c:f7:f1:6c:
59:a9:1e:22:70:82:e5:41:4f:b9:39:04:55:e0:fb:48:43:f0:
59:8e:1f:37:c0:96:d5:4f:9a:b3:a2:0c:70:0a:e3:ec:43:8b:
b3:e6:71:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92bgx6fx8xa7LlXjQL1WSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY2M2ZlOWMxMzQwNDFjZWJkYTU2OGI5ZjkwOGUyYWVmMzhh
YjdmNzUwHhcNMjUxMDE5MTkwMjA3WhcNMjUxMDIwMTkwMjA3WjAzMTEwLwYDVQQD
Eyg4Y2E2MjVkMjg2MjZhMWNmYjI0YWZhOWI4ZDg1NDVhMjllNTY1MGVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3M0Fg7s2pculaTgdxgOLTn5K4MfR
YeHCxZZgWn2JrGGBQqCPY7L0i8NW5Bg77LhRdmDLHhMrSTXKcSofjgHLUIxP4fiC
meXPBdH/cSLWWVfPliAfvb+sqnCYgwVWw0k0aVKqufPw99n4u/SpM6JDqGh1UxT1
eQTV8TKJ8zp7oOwexc2AcdFK60KWNUBYsxs4OUD/E3KLzBBrl+jvKWach7jCO9ZA
qKYJ0Mf6I0JMYu7LDt3Tlvmg8bKd7rp6wwvKyZlSh7RRs+UPFUFJ+ElPvJ3IPhm4
5dnscHQNlSlKEuOSzeK+J/ZV/A4Dibga7Q/sxnUAj6zUup4QRGDQYCSB+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIymJdKGJqHPskr6m42FRaKeVlDvMB8GA1UdIwQY
MBaAFPY/6cE0BBzr2laLn5COKu84q391MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9iMzlkM2EtMjc4NC00MjU1LTkwNjYt
NWFlYzc2NmE0OWI0LzEvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9iMzlkM2EtMjc4NC00MjU1LTkwNjYtNWFlYzc2NmE0OWI0
LzEvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADawAmdmh
J7GI34PqGdVJZ5swrqXSqpJNjgqgycr9+4UObHliBPQDc/WQKxDBvc4i9GIjRat/
kSbtuXCTeTTOQbx0A8Bx90hhN65otZLVivbFwqL0x6skGUDop4uxbycXcwzegI+2
EOA1o6f0ev7Q+2GZvk7nV464Sv5U3WKlDilqxqSBobxamfhRG8xO9JIiCM++o57w
qk85E/gzzXMJgzfM/ddQXhFcOrRSYgFqYo+MBFK9l99HE91t9E5hOfaKL7USFK94
bfXAWoso3iQrKplGGw0M9/FsWakeInCC5UFPuTkEVeD7SEPwWY4fN8CW1U+as6IM
cArj7EOLs+ZxMw==
-----END CERTIFICATE-----
Generated at Mon Oct 20 05:55:22 2025 by rpki-client