Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft
File: cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft (raw, json)
Hash identifier: e6Q47RtqCgGUfuN0WLImMBSTVw3PvHp+J4Cv5TKm6K4=
Subject key identifier: 6F:D7:C8:C7:F6:7D:7E:BE:13:9C:37:BE:9C:D9:B7:3A:C6:7E:E4:38
Authority key identifier: 70:EA:97:D1:62:6B:12:6F:59:1C:6F:B3:1E:8E:CB:89:39:DB:42:2A
Certificate issuer: /CN=70ea97d1626b126f591c6fb31e8ecb8939db422a
Certificate serial: 019A72257AA8E05D9BB978EE2478A6D77532
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOqX0WJrEm9ZHG-zHo7LiTnbQio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft
Manifest number: 49
Signing time: Tue 11 Nov 2025 09:00:50 +0000
Manifest this update: Tue 11 Nov 2025 09:00:50 +0000
Manifest next update: Wed 12 Nov 2025 09:00:50 +0000
Files and hashes: 1: cOqX0WJrEm9ZHG-zHo7LiTnbQio.crl (hash: PS/qY0LSmzrKR/dIWfkyvg4HQ47kFMOdiQzrbNtyScY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft
rsync://rpki.ripe.net/repository/DEFAULT/cOqX0WJrEm9ZHG-zHo7LiTnbQio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:7a:a8:e0:5d:9b:b9:78:ee:24:78:a6:d7:75:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70ea97d1626b126f591c6fb31e8ecb8939db422a
Validity
Not Before: Nov 11 09:00:50 2025 GMT
Not After : Nov 12 09:00:50 2025 GMT
Subject: CN=6fd7c8c7f67d7ebe139c37be9cd9b73ac67ee438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:59:5d:7b:da:41:8e:9c:01:cf:d6:1c:fc:14:
16:79:80:d5:8a:6f:92:3b:cf:66:0b:b4:da:66:25:
7f:48:26:98:39:a7:84:7b:1d:0d:89:58:07:52:a1:
01:2d:ee:d7:70:8d:07:19:95:07:61:cf:2c:b4:ce:
47:8b:22:17:35:87:be:25:7a:c3:ac:10:4e:66:ef:
7d:6f:9e:25:e2:3b:24:16:a9:c2:95:84:b1:3f:c4:
56:33:a1:91:fa:b7:a6:25:44:08:25:e3:a4:0f:d4:
46:04:48:33:cc:8d:8c:9f:86:02:7f:79:a1:ff:48:
0d:ff:a8:f3:86:b4:d6:b7:bd:2a:de:02:4f:ed:44:
fa:18:3b:4a:85:1a:5a:b8:79:5a:ed:ff:c4:8b:3d:
12:7f:8d:9d:74:64:d0:72:b2:3c:f7:04:3a:b3:b8:
29:69:e7:4e:e2:2c:19:fa:6a:f2:d0:77:79:12:a6:
63:6b:b7:6b:f1:1a:3b:f5:81:34:e3:c1:cf:69:8f:
1c:64:38:6a:ac:70:1f:84:1b:d4:7d:b9:60:b5:ce:
8d:3e:ca:46:00:00:7f:b4:51:68:57:53:32:9e:8c:
12:d4:71:cb:23:1e:10:63:ed:fa:f2:0c:c6:bc:11:
7d:3f:6b:71:c0:74:a1:d3:a3:d8:28:43:fe:29:99:
af:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D7:C8:C7:F6:7D:7E:BE:13:9C:37:BE:9C:D9:B7:3A:C6:7E:E4:38
X509v3 Authority Key Identifier:
keyid:70:EA:97:D1:62:6B:12:6F:59:1C:6F:B3:1E:8E:CB:89:39:DB:42:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOqX0WJrEm9ZHG-zHo7LiTnbQio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:54:b2:9c:86:b8:97:57:ac:9a:37:0a:3b:c7:ae:83:80:63:
b1:00:8f:5f:2a:6c:8b:3d:13:1a:2b:c8:46:6a:c2:04:02:13:
72:f5:7a:91:2e:11:3f:ea:f9:37:44:bd:f7:70:ce:b3:a3:d5:
10:28:71:48:88:0d:33:62:db:2f:eb:1b:9c:29:22:a5:ef:9e:
39:80:b5:9e:d4:ac:8d:a4:c9:ef:f4:fa:6a:aa:e7:1f:3b:fe:
8f:35:7c:a9:71:61:30:03:18:69:fc:35:67:b3:0b:f5:b3:54:
c4:b1:e5:5e:bf:52:0d:3a:57:a0:68:9e:77:e1:7c:0c:6a:4f:
30:87:b0:b6:a5:95:45:2b:8a:4a:0a:6b:b5:dd:14:ef:74:c8:
b9:b4:91:4d:a0:31:15:9a:67:90:88:4e:b0:45:da:8e:cb:fa:
d8:e4:98:c0:ec:12:69:b7:9f:25:27:6a:91:7a:13:cc:bc:b1:
db:b6:73:17:3c:63:42:0f:05:49:0e:9f:63:8e:89:7b:e6:62:
fa:6c:50:a7:f0:91:48:c9:09:bf:bd:72:b5:26:b4:82:c8:b5:
a1:14:1e:8d:ec:6c:6b:60:ac:fe:22:e1:d2:84:32:81:33:92:
ab:b3:82:03:f6:c1:bf:fb:5f:83:0a:c4:16:91:2c:2b:1f:88:
14:98:b6:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:37:37 2025 by rpki-client