Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
File: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft (raw, json)
Hash identifier: NnW1dx588BGKAgwwCKhdi+m8rA2mcWlhhSbvoJhcUhA=
Subject key identifier: AD:31:7E:47:17:CA:43:B5:E5:42:83:FE:60:43:09:A1:10:92:74:B5
Authority key identifier: BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD
Certificate issuer: /CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad
Certificate serial: 0199FCC680CBC61523207B70D53ED1CA0C7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
Manifest number: 03AB
Signing time: Sun 19 Oct 2025 14:01:31 +0000
Manifest this update: Sun 19 Oct 2025 14:01:31 +0000
Manifest next update: Mon 20 Oct 2025 14:01:31 +0000
Files and hashes: 1: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl (hash: RkF2DwpfpH/701a0WUa9OEaOslxRo3Ynpyh7OrfzteY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:80:cb:c6:15:23:20:7b:70:d5:3e:d1:ca:0c:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad
Validity
Not Before: Oct 19 14:01:31 2025 GMT
Not After : Oct 20 14:01:31 2025 GMT
Subject: CN=ad317e4717ca43b5e54283fe604309a1109274b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:46:29:ce:4d:3b:1e:98:f9:eb:2b:3a:80:20:
b9:15:26:fc:fb:ec:6d:cf:6c:74:cf:33:7b:80:dd:
a0:a7:40:0e:c8:3c:20:cf:43:2a:1d:99:c1:5d:d6:
d3:3a:ba:27:29:2f:90:9c:69:7f:e5:9b:2e:91:2c:
0e:79:22:b9:0f:bc:d4:75:fe:14:62:b2:49:39:bf:
94:78:41:e4:25:e0:9e:69:d3:95:b0:58:84:d4:6a:
bd:28:2b:20:cd:65:9b:60:78:6b:08:b3:3a:7d:77:
8a:4e:5b:92:d9:28:4b:3e:1d:93:c7:ee:8f:93:a5:
dc:ca:d5:ad:f3:f3:8c:d4:98:33:36:f2:bc:02:0b:
7f:d6:93:6f:c3:61:c1:34:a9:a4:c8:99:e9:a5:54:
d0:43:0c:bf:28:1a:26:aa:9a:2f:6e:3c:83:9c:ee:
fe:08:fa:46:9a:af:ce:5e:6e:7e:d4:18:f8:ba:d1:
54:36:02:13:b9:2d:69:d1:8f:5e:61:39:5e:ec:4b:
9c:02:6b:16:d4:5c:3e:03:9b:bc:fc:8f:14:c0:c8:
19:b1:23:94:63:8c:87:88:37:91:da:a1:2b:92:da:
2f:37:6c:80:ec:21:ec:59:68:ab:4c:fd:42:7b:52:
0e:80:76:d6:68:73:9f:20:91:75:29:c7:fc:17:ca:
9f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:31:7E:47:17:CA:43:B5:E5:42:83:FE:60:43:09:A1:10:92:74:B5
X509v3 Authority Key Identifier:
keyid:BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:4a:2f:db:c7:39:e0:06:55:5b:39:c6:01:a9:bc:df:ef:08:
e3:8d:50:6b:ff:0d:f0:ba:7e:e5:93:2c:fc:ef:00:fc:48:8c:
9d:7d:76:24:39:37:d3:df:c5:f7:c3:5f:db:46:12:f6:76:8a:
2b:c5:2e:69:38:bd:e2:c4:7e:16:37:31:ea:f5:79:0e:78:73:
68:da:d2:df:06:23:8a:e7:b5:7f:f9:11:9e:3f:80:96:81:7d:
ff:73:0c:bf:eb:79:ea:55:aa:b4:6d:d8:ad:4c:64:f3:f8:44:
15:0f:26:af:f0:43:15:7c:08:97:b3:a9:ab:39:1f:cb:03:58:
91:97:3b:c4:af:52:0f:ea:f4:71:b2:30:64:64:76:df:e7:f6:
bb:fa:e3:09:c5:75:01:f5:42:c8:b3:d9:c4:44:e0:80:fa:30:
14:04:9d:f3:97:e6:a5:55:a0:88:8e:e6:b3:d0:39:1c:d5:42:
c2:ed:f1:4e:7b:01:b5:63:ff:0e:dd:7a:1b:f9:09:ab:51:62:
59:ae:12:10:a6:b5:c1:6c:9c:0d:44:c0:ce:4a:bf:29:00:df:
e6:fa:d4:11:4d:75:03:a4:24:77:94:de:18:44:ed:56:d7:78:
2f:5f:56:4a:72:66:4a:4d:ce:a6:c2:2d:9e:0d:2f:f0:30:6e:
24:ce:fd:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:58:57 2025 by rpki-client