Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
File: rjRcTQnm4iTh2vRmV9PHEYewIjY.mft (raw, json)
Hash identifier: RTJHQOQxe1oWSJtSrLaCwF/NugLPrVEkQ4zA0aq2dFQ=
Subject key identifier: 13:04:8F:09:F2:FE:29:D4:12:2C:2A:3E:2C:F6:63:15:8E:58:51:C2
Authority key identifier: AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
Certificate issuer: /CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Certificate serial: 0199FCFD2C36E7114B2F367340CC90E7404B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
Manifest number: 062C
Signing time: Sun 19 Oct 2025 15:01:14 +0000
Manifest this update: Sun 19 Oct 2025 15:01:14 +0000
Manifest next update: Mon 20 Oct 2025 15:01:14 +0000
Files and hashes: 1: rjRcTQnm4iTh2vRmV9PHEYewIjY.crl (hash: 97ND8t+c4k3l04SnWxjYD4yK9HMroonWFfmNJxmovRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:2c:36:e7:11:4b:2f:36:73:40:cc:90:e7:40:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Validity
Not Before: Oct 19 15:01:14 2025 GMT
Not After : Oct 20 15:01:14 2025 GMT
Subject: CN=13048f09f2fe29d4122c2a3e2cf663158e5851c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:75:7d:c8:99:86:36:9d:3b:c1:93:cb:d0:22:
79:85:c5:85:a2:15:62:55:8b:92:c3:a8:86:ae:94:
bc:e6:93:46:de:1d:99:82:59:dd:18:54:c1:a9:46:
88:72:60:b4:aa:8b:b5:de:7f:a8:87:c6:a3:30:ee:
80:6e:21:d9:10:ee:6e:23:40:99:6a:47:8e:67:d0:
40:5c:5c:89:e0:15:ae:a7:2f:88:df:bc:e4:dc:b4:
41:a5:00:fb:13:55:94:5e:dd:e6:72:ab:9e:ed:e7:
b9:9d:e7:12:66:d9:e0:ae:5a:c2:1a:98:92:0a:6f:
6f:27:50:b4:90:ae:9a:6f:42:4f:75:93:d8:75:78:
05:4c:05:53:00:58:a3:ba:0a:97:d9:df:fd:97:b6:
e1:bb:c9:b2:f8:60:21:03:6f:7a:84:91:35:ce:eb:
5f:4e:22:2e:b2:6f:f8:14:99:dc:77:f7:da:61:3f:
51:82:69:b1:52:07:6a:17:7d:aa:39:9e:fc:90:92:
0c:71:68:24:1b:ae:58:55:4c:7e:bc:e2:33:7c:30:
97:71:aa:86:a5:c0:64:65:90:79:8e:08:d2:c2:92:
4d:42:95:39:72:38:8a:b8:e0:62:28:f6:8c:c5:39:
54:b5:45:fd:b7:71:1d:be:f3:d5:a9:25:26:87:ad:
0a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:04:8F:09:F2:FE:29:D4:12:2C:2A:3E:2C:F6:63:15:8E:58:51:C2
X509v3 Authority Key Identifier:
keyid:AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:d6:c8:49:19:19:3d:3b:0b:b5:1c:7a:12:11:6e:e0:c2:34:
7d:20:7e:74:86:f5:05:54:f2:d9:24:61:6e:42:f7:ef:3c:29:
3b:d0:79:aa:d0:bc:6b:f0:e2:3f:40:f1:b5:2c:c7:f7:03:3f:
f8:f1:d0:74:ca:56:f8:2f:2b:ea:ff:4f:1d:aa:02:89:6f:b9:
1b:f8:4b:cc:1c:d4:8e:a0:b4:03:1f:35:b0:7b:35:22:38:6e:
b1:b8:0e:de:fd:a3:51:86:04:6e:25:4d:fa:dd:7a:24:4c:9c:
d8:db:b3:d5:2c:70:a6:78:05:35:32:df:66:3b:99:23:d4:49:
da:30:63:7d:ab:55:0d:a1:84:39:61:5f:92:44:fb:9c:06:b7:
04:cf:e5:24:d6:6d:06:ec:03:48:b0:5b:c9:64:c2:03:88:4f:
00:e1:2a:b3:37:b2:5a:6a:81:09:f0:c6:ec:90:d6:6b:f9:a3:
f4:07:de:d4:6e:30:06:95:01:15:89:4c:3e:0a:4b:9d:43:e6:
14:6a:bc:2f:45:8b:98:89:5e:bc:56:0f:82:4b:e5:a1:37:1a:
a7:57:f7:6f:7d:af:3c:ad:15:cb:45:67:2c:48:d8:69:cd:21:
9f:68:4e:22:32:59:57:1b:97:c1:0b:89:4f:b7:91:85:cd:b7:
da:30:b1:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:02:10 2025 by rpki-client