
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft
File: pU3VdP7HLUOUwlU2uoUyydOPQLo.mft (raw, json)
Hash identifier: IkhgOwH/h1QE7G16npb4oLkG6qCjRgawMOmZ1AVkGVw=
Subject key identifier: D6:16:22:D6:92:2C:4D:7B:2F:C2:C7:F4:AE:3C:B4:0E:E7:8D:E7:91
Authority key identifier: A5:4D:D5:74:FE:C7:2D:43:94:C2:55:36:BA:85:32:C9:D3:8F:40:BA
Certificate issuer: /CN=a54dd574fec72d4394c25536ba8532c9d38f40ba
Certificate serial: 0199FBEC0F4B0FB4F55C2FE8A389DFC22511
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft
Manifest number: 09F7
Signing time: Sun 19 Oct 2025 10:02:55 +0000
Manifest this update: Sun 19 Oct 2025 10:02:55 +0000
Manifest next update: Mon 20 Oct 2025 10:02:55 +0000
Files and hashes: 1: pU3VdP7HLUOUwlU2uoUyydOPQLo.crl (hash: LBf/dVJ6Gc1nW662Jr2nfHEVx20SwlQR366oTkD3zHc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:0f:4b:0f:b4:f5:5c:2f:e8:a3:89:df:c2:25:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a54dd574fec72d4394c25536ba8532c9d38f40ba
Validity
Not Before: Oct 19 10:02:55 2025 GMT
Not After : Oct 20 10:02:55 2025 GMT
Subject: CN=d61622d6922c4d7b2fc2c7f4ae3cb40ee78de791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c5:4b:96:3c:a0:0d:e7:a8:c3:da:f7:d4:ef:
39:85:e3:b5:c7:92:d6:df:16:9b:14:f1:65:40:db:
eb:15:40:ae:52:4e:34:06:c1:3c:6c:87:f4:9a:f2:
47:a2:a4:e7:29:d7:1a:9c:a9:0b:1a:dd:77:90:85:
f7:f4:d5:ad:4d:b0:94:b2:67:8a:4d:1a:67:f0:c2:
6b:6b:f2:2e:53:31:c1:5d:98:94:fa:11:20:6d:c1:
38:95:c2:14:52:5c:41:87:f2:8f:20:4d:c4:e3:e3:
4b:30:10:7f:2c:dd:42:87:26:17:76:57:16:6b:b8:
87:41:06:b6:ac:e0:45:42:2d:9d:53:cb:18:2e:d5:
c2:a1:1b:50:f6:f3:f2:c3:0b:57:34:db:ed:5c:7c:
43:cd:ef:1a:6f:d7:67:5c:5b:6e:ac:38:c0:e3:71:
00:da:1a:ab:ac:29:25:e5:3f:19:71:32:67:de:ba:
79:c1:5c:de:c5:31:1e:77:60:84:0a:79:d2:ee:56:
a4:26:ec:8a:72:57:0e:12:77:0b:dd:90:c4:1c:05:
20:2a:bf:2f:c5:02:85:b9:4d:9e:a5:4c:fa:c6:2e:
c5:fa:32:c3:69:22:7d:16:d9:0a:0c:c4:a9:bd:ad:
7d:c7:0c:e8:ce:88:c4:30:4f:17:25:2a:76:ba:4b:
34:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:16:22:D6:92:2C:4D:7B:2F:C2:C7:F4:AE:3C:B4:0E:E7:8D:E7:91
X509v3 Authority Key Identifier:
keyid:A5:4D:D5:74:FE:C7:2D:43:94:C2:55:36:BA:85:32:C9:D3:8F:40:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:55:41:24:ec:9f:83:1c:36:d2:4c:bc:89:56:ad:ca:46:ad:
53:99:d9:af:bd:5b:9a:85:b8:46:f1:8f:55:ff:97:62:2b:a2:
a6:e2:0e:34:71:17:4f:dd:0e:7e:34:1c:54:93:16:1e:51:4d:
dc:9d:28:1b:c7:77:b6:7c:8c:41:50:e5:39:43:86:b9:cd:ea:
34:fc:bd:ec:60:62:ca:c3:12:c3:d8:35:53:4a:ea:52:f3:de:
3c:90:45:b9:df:13:f7:44:01:6d:5b:65:ba:0a:c9:9e:7f:1a:
aa:a0:c9:5b:a0:23:f1:88:62:c6:a1:b6:c3:4d:db:d6:1e:5d:
26:ca:df:56:64:c8:39:07:47:e5:10:08:04:73:4d:f1:4a:74:
c6:20:e0:a5:dc:2c:23:4d:93:58:e3:b8:53:8c:4a:96:6b:bf:
69:fe:5d:17:5c:9c:c1:8b:2e:cf:26:83:3e:14:f4:a8:55:c0:
00:1b:86:cc:a8:33:50:ec:c6:66:98:f2:6c:90:32:4f:c9:fa:
48:b2:cf:ed:0d:fa:40:08:bd:bf:c7:27:e4:f5:0a:eb:a1:73:
63:98:0b:7a:17:e5:25:7d:a4:58:cb:a2:d6:6e:48:08:48:dd:
f6:f1:98:84:64:b3:e8:0a:80:f9:50:94:a6:71:c9:11:30:91:
39:96:71:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:06:10 2025 by rpki-client