Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft
File: gz8MJRPUNTtAzvg5F57r-HOCRcY.mft (raw, json)
Hash identifier: 4MF+K/ipTkbC2G3PFfvOZjpaueMLZRyDbzMo7hb1bPI=
Subject key identifier: 74:D6:24:CF:B0:54:93:E0:2F:5C:51:48:34:42:C2:2C:3C:91:87:7A
Authority key identifier: 83:3F:0C:25:13:D4:35:3B:40:CE:F8:39:17:9E:EB:F8:73:82:45:C6
Certificate issuer: /CN=833f0c2513d4353b40cef839179eebf8738245c6
Certificate serial: 019A01B4ADC7829F95E70E8B72947B0753CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz8MJRPUNTtAzvg5F57r-HOCRcY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft
Manifest number: 11B9
Signing time: Mon 20 Oct 2025 13:00:09 +0000
Manifest this update: Mon 20 Oct 2025 13:00:09 +0000
Manifest next update: Tue 21 Oct 2025 13:00:09 +0000
Files and hashes: 1: gz8MJRPUNTtAzvg5F57r-HOCRcY.crl (hash: ixvwyK3IPcfB8E7942kHL2rSlq3r7+KYJmY4gbJx8W8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft
rsync://rpki.ripe.net/repository/DEFAULT/gz8MJRPUNTtAzvg5F57r-HOCRcY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:b4:ad:c7:82:9f:95:e7:0e:8b:72:94:7b:07:53:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833f0c2513d4353b40cef839179eebf8738245c6
Validity
Not Before: Oct 20 13:00:09 2025 GMT
Not After : Oct 21 13:00:09 2025 GMT
Subject: CN=74d624cfb05493e02f5c51483442c22c3c91877a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:07:4b:e4:86:7e:36:07:f2:d1:15:6f:86:94:
d5:8e:34:ef:cd:fb:58:d9:2f:80:09:84:97:b0:e1:
90:7a:89:35:0c:22:6f:6e:0b:85:2e:a6:6b:77:7a:
70:f0:3c:50:e3:5d:9e:28:c2:07:b1:11:b6:8a:f1:
39:a5:74:22:eb:52:64:cf:ab:ff:6e:c0:e1:e5:3a:
aa:3d:b0:0f:27:d0:64:8a:34:3a:c1:80:f0:e1:61:
66:3f:62:15:97:f6:3e:ab:64:ba:5a:5c:68:c0:aa:
8e:38:7a:51:99:11:75:5b:42:ac:d4:cc:d7:d6:b2:
18:84:4a:1c:98:47:28:d0:50:7c:d7:b7:b0:c5:ca:
f0:c8:a2:0e:15:99:d3:66:55:93:aa:41:9b:02:78:
66:11:66:fa:b8:b5:ba:c8:97:b0:4a:02:61:71:11:
03:54:cb:2a:c5:e4:64:dd:0e:2a:bf:2b:a0:bf:6e:
5e:4e:db:68:7c:88:f1:7d:22:de:b6:bd:32:ec:3f:
72:0a:ff:64:f8:f6:c4:04:2f:96:96:19:10:b0:3b:
06:b1:e8:96:ec:9f:68:16:9d:7a:b1:b9:1a:4e:28:
22:f7:cc:d2:7a:0d:95:c3:5e:dd:30:83:a1:4d:85:
1f:ab:04:25:f3:7d:b8:49:31:45:0b:26:d7:ef:73:
86:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:D6:24:CF:B0:54:93:E0:2F:5C:51:48:34:42:C2:2C:3C:91:87:7A
X509v3 Authority Key Identifier:
keyid:83:3F:0C:25:13:D4:35:3B:40:CE:F8:39:17:9E:EB:F8:73:82:45:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz8MJRPUNTtAzvg5F57r-HOCRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:6b:a6:ac:f7:a4:88:a8:6b:19:c2:ce:e8:02:d1:3a:c4:18:
a9:c3:4b:33:b0:0b:8a:a1:0b:64:7d:1a:af:e3:12:a5:00:71:
ea:d2:cd:eb:90:be:3f:6e:37:82:a2:4b:14:b6:5e:d2:17:10:
cc:cb:3e:85:78:c2:10:90:0d:3e:c5:c0:34:68:58:74:2b:94:
8b:82:22:ca:b3:31:85:5b:03:91:b7:8f:e2:39:3a:a4:6b:d8:
9d:60:e0:f1:f8:35:99:e2:12:bc:3a:59:9a:95:52:c1:02:dd:
be:42:18:32:b5:69:05:ee:2f:38:31:69:8a:5e:fd:8f:36:ba:
30:90:d1:65:c8:2a:84:88:da:6a:3b:e0:9c:f9:4b:9d:f5:66:
a2:49:97:bc:fa:07:2a:75:4c:53:5a:18:aa:bd:67:f0:2a:ee:
77:b3:e5:71:0e:42:e0:0b:af:4f:84:e5:3d:69:e9:44:19:d7:
48:57:a9:87:4d:23:8c:b4:e5:20:aa:fa:2e:89:f7:eb:a1:f5:
07:42:a0:7a:4e:8c:c2:4f:da:21:6d:0a:23:94:e0:63:77:17:
fe:84:8d:c6:d7:32:d2:03:c1:5f:10:6e:47:a8:d9:00:cf:2a:
87:85:d9:72:4e:c9:4d:bc:61:dc:92:4c:64:a6:ee:d4:fb:0d:
36:a9:99:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:29:07 2025 by rpki-client