Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
File: bQ1uHM2JDfL16cFF7LpGiZzOs70.mft (raw, json)
Hash identifier: GxcDcyUg/KHzw5C9pExBOYJzYpVfR1j89VyvtQl6FPE=
Subject key identifier: 3C:FB:AA:AA:2B:75:8F:B0:5E:C9:73:F5:10:61:78:1D:63:E4:EB:D9
Authority key identifier: 6D:0D:6E:1C:CD:89:0D:F2:F5:E9:C1:45:EC:BA:46:89:9C:CE:B3:BD
Certificate issuer: /CN=6d0d6e1ccd890df2f5e9c145ecba46899cceb3bd
Certificate serial: 0199FC5850ACFB7B2C6ACABDB08CA5009426
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
Manifest number: 1372
Signing time: Sun 19 Oct 2025 12:01:10 +0000
Manifest this update: Sun 19 Oct 2025 12:01:10 +0000
Manifest next update: Mon 20 Oct 2025 12:01:10 +0000
Files and hashes: 1: bQ1uHM2JDfL16cFF7LpGiZzOs70.crl (hash: 9wi2Nl3/VouGaoGO0uWKEjEkDHOi7m8IJgP0yPe/MPk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:50:ac:fb:7b:2c:6a:ca:bd:b0:8c:a5:00:94:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d0d6e1ccd890df2f5e9c145ecba46899cceb3bd
Validity
Not Before: Oct 19 12:01:10 2025 GMT
Not After : Oct 20 12:01:10 2025 GMT
Subject: CN=3cfbaaaa2b758fb05ec973f51061781d63e4ebd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ad:ff:06:3e:9e:6b:40:c1:60:76:df:f9:44:
0d:76:09:e3:f8:4d:71:2d:b9:c1:ac:a5:04:b4:53:
50:c4:16:3f:48:85:2a:90:cf:03:3a:ba:2c:d7:11:
32:45:cf:aa:6f:01:eb:3c:d5:4f:78:85:69:d0:c9:
7c:f8:02:a7:b9:eb:be:d8:62:e3:01:f5:d5:e0:9d:
f4:81:9e:4c:31:91:1f:fa:3a:c4:fb:78:c8:96:d2:
e0:88:8b:25:3c:e5:b5:8e:55:c6:ea:5e:25:fd:79:
6a:6b:98:fb:1f:b2:d3:5d:92:2b:57:e9:c7:2f:48:
a2:36:24:ce:3b:38:ff:1f:dd:15:e4:cb:ff:0f:dc:
1a:98:50:ef:d3:09:c3:4d:e1:c8:1d:71:30:f0:ff:
72:ff:30:7e:d3:62:bb:0a:af:3d:c6:01:59:66:28:
df:7a:2c:8f:54:e7:e7:05:68:9a:df:6f:78:cc:79:
98:4e:17:c9:51:0a:da:c5:e6:9f:78:a6:32:34:70:
ed:4f:cb:32:71:d2:6c:e4:15:73:53:6f:66:64:5e:
6c:11:d1:ba:a1:e6:41:93:5d:e1:cd:86:59:e0:53:
a1:cb:89:48:3c:c4:aa:f8:58:9b:55:7f:41:06:8d:
e8:f0:ba:fd:db:07:63:fe:dd:43:07:79:c6:cc:94:
29:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:FB:AA:AA:2B:75:8F:B0:5E:C9:73:F5:10:61:78:1D:63:E4:EB:D9
X509v3 Authority Key Identifier:
keyid:6D:0D:6E:1C:CD:89:0D:F2:F5:E9:C1:45:EC:BA:46:89:9C:CE:B3:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:ba:52:af:ac:fd:2a:b8:ce:58:16:eb:b8:55:04:d3:7c:18:
d8:c1:37:0a:16:67:13:4c:f5:0d:31:1f:73:51:2c:ac:74:cb:
3a:69:5f:6b:43:e1:f5:7d:e4:03:36:b3:90:ec:94:ea:61:28:
f7:e0:71:91:04:cd:bf:ea:80:8c:1b:0a:60:72:14:59:7c:65:
45:9f:c4:b0:45:7d:1f:0b:e5:e0:2d:39:a5:4c:83:3b:a9:f2:
04:c9:60:3f:23:5e:ce:36:01:30:06:05:4f:c2:fc:68:02:11:
7a:f8:42:3b:69:3d:ef:36:f0:01:98:7e:bc:b0:90:c1:dd:f1:
ce:00:87:cf:a6:2c:9d:a0:00:5c:4f:e9:30:10:fe:d7:da:21:
bf:ed:f8:e6:09:d1:52:61:ad:8a:b2:1f:82:2d:6e:f1:b9:40:
4c:9d:fe:93:63:44:74:d9:5f:0f:7b:9d:e2:c4:24:0c:24:d9:
67:79:9a:00:05:49:bf:cf:9b:26:7a:71:b4:b0:4c:8c:b2:e2:
65:06:f1:c3:5f:05:0a:fc:ed:21:c3:e6:e8:e4:2f:6f:d9:7f:
55:bb:8d:82:a8:a0:c3:59:76:91:c8:49:63:1f:46:e0:35:5c:
71:8d:be:d5:09:25:6a:6d:36:35:82:9f:41:9a:84:20:77:13:
d0:d5:0a:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:37:47 2025 by rpki-client