Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
File: mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft (raw, json)
Hash identifier: ppe1pusn1wl4Uvv9kGH9qi9Lq35RagAYNc7eHG9e0Xc=
Subject key identifier: 0E:BA:FB:39:3A:44:13:9F:0A:A3:F7:80:7A:D9:A5:6F:56:5C:52:11
Authority key identifier: 98:24:1A:AC:9E:DA:7B:EF:69:08:9F:64:7B:5D:8F:77:4F:F4:3A:26
Certificate issuer: /CN=98241aac9eda7bef69089f647b5d8f774ff43a26
Certificate serial: 0199FD34946D4EE6116857E6DF245BA58DDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
Manifest number: 0E17
Signing time: Sun 19 Oct 2025 16:01:45 +0000
Manifest this update: Sun 19 Oct 2025 16:01:45 +0000
Manifest next update: Mon 20 Oct 2025 16:01:45 +0000
Files and hashes: 1: mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl (hash: hTY9sYJ8PuFuB2r1Vz2il93Bly9VYK2iKd0CIs0n9W8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:94:6d:4e:e6:11:68:57:e6:df:24:5b:a5:8d:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98241aac9eda7bef69089f647b5d8f774ff43a26
Validity
Not Before: Oct 19 16:01:45 2025 GMT
Not After : Oct 20 16:01:45 2025 GMT
Subject: CN=0ebafb393a44139f0aa3f7807ad9a56f565c5211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f7:5c:77:c4:4b:f6:26:10:01:57:1b:ff:97:
3f:82:87:f2:57:c5:31:92:c1:84:8f:a4:58:ba:57:
a9:38:0e:97:2c:3d:fd:53:55:ec:00:50:63:d6:81:
18:12:60:b5:ab:ea:fc:eb:a1:ae:ce:34:e7:0a:1a:
a5:45:6b:f2:af:84:c8:f8:45:8f:03:6e:68:e5:4a:
39:70:5f:b5:a1:d7:2f:74:a0:a2:90:ed:8b:ae:db:
08:b0:30:8c:2e:04:e5:38:59:df:af:7a:23:ca:27:
48:df:2f:78:6b:0d:66:7f:4a:af:7a:ba:b5:c2:e9:
5d:1a:1f:df:63:f4:da:c5:63:01:81:28:0e:15:5d:
f0:b1:78:31:5f:80:82:c4:28:bd:00:ad:a8:41:00:
ba:33:bf:26:87:0b:64:73:b2:03:96:fd:a2:0c:a5:
e0:a9:22:a3:6d:83:b9:4e:e4:95:ce:d2:b0:b8:e8:
5a:00:c2:62:89:9f:e1:fb:91:88:f4:da:c9:84:bb:
5d:65:81:95:aa:42:cb:98:31:98:d0:d5:61:aa:77:
68:17:ad:25:8f:80:09:78:a2:23:d0:61:d3:c7:7c:
0f:59:f7:d6:e6:7e:66:6f:25:9c:43:97:23:9b:54:
41:b2:7b:39:18:c0:6f:21:7f:85:b0:56:9f:f3:a8:
4c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:BA:FB:39:3A:44:13:9F:0A:A3:F7:80:7A:D9:A5:6F:56:5C:52:11
X509v3 Authority Key Identifier:
keyid:98:24:1A:AC:9E:DA:7B:EF:69:08:9F:64:7B:5D:8F:77:4F:F4:3A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:68:cd:18:85:39:a2:01:98:f7:9b:07:27:31:de:13:f3:9e:
99:45:4d:c0:67:61:d4:ea:90:92:fd:f9:d8:4f:86:65:a3:76:
d1:30:db:bb:99:fc:ca:65:75:37:1c:84:fe:df:1f:5e:d2:f9:
2a:75:14:4a:53:37:72:ee:21:bf:99:ec:99:10:4e:ff:cf:d8:
b9:a9:91:0a:ea:52:ff:9f:be:34:42:3a:a1:8c:59:9e:2e:77:
6f:2c:62:a8:75:1b:01:b6:2e:0c:01:eb:45:72:aa:1a:e0:c3:
85:e0:66:75:6a:51:3e:bc:79:dc:fc:a2:9c:e8:0d:ce:ef:2a:
03:b0:04:70:5e:9f:2e:c2:a4:da:cc:a6:ef:84:be:94:de:a9:
05:90:30:1b:d8:b6:0b:d7:43:d6:d1:67:75:20:66:63:29:9b:
e4:a1:65:4f:20:0e:af:e4:27:41:6e:90:19:45:7a:98:f0:68:
d0:eb:6b:a4:72:86:f4:de:c7:69:76:93:ae:aa:6e:5a:76:d4:
30:a0:4e:13:e8:3a:00:45:c0:ce:30:5d:79:6e:d6:c2:ac:9b:
5d:b9:62:bb:07:53:d1:4a:da:2b:2a:cd:bd:00:84:76:ca:dc:
d8:c6:6e:ba:e4:0a:f1:fd:00:d6:95:c2:c8:a1:22:64:1a:51:
b4:8e:3e:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:40:37 2025 by rpki-client