Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft
File: JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft (raw, json)
Hash identifier: jyY96M831mB7+fEgdT//ykOYJ7wyZiTenIaFnV9vzwI=
Subject key identifier: 7D:9C:07:E3:5D:2C:75:F8:13:D7:CC:98:99:59:F5:0A:0B:48:22:91
Authority key identifier: 25:BA:87:95:F3:E7:E2:D2:C7:C9:0F:1C:36:66:CF:7F:92:83:DA:9E
Certificate issuer: /CN=25ba8795f3e7e2d2c7c90f1c3666cf7f9283da9e
Certificate serial: 019A71B8B778BBEB8DC8FC8832D8AE27A9F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft
Manifest number: 1719
Signing time: Tue 11 Nov 2025 07:02:02 +0000
Manifest this update: Tue 11 Nov 2025 07:02:02 +0000
Manifest next update: Wed 12 Nov 2025 07:02:02 +0000
Files and hashes: 1: JbqHlfPn4tLHyQ8cNmbPf5KD2p4.crl (hash: uqRuR6toW6RWJmcklI4erk6GILmntO9IuKxtl4gd7zw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:b7:78:bb:eb:8d:c8:fc:88:32:d8:ae:27:a9:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25ba8795f3e7e2d2c7c90f1c3666cf7f9283da9e
Validity
Not Before: Nov 11 07:02:02 2025 GMT
Not After : Nov 12 07:02:02 2025 GMT
Subject: CN=7d9c07e35d2c75f813d7cc989959f50a0b482291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7e:01:1d:50:b4:c0:79:c9:3a:26:f4:fd:11:
fc:0f:a8:30:79:e2:bc:88:35:54:ec:b5:48:f2:64:
14:f1:30:7a:0a:27:68:ef:ef:8d:a9:61:19:29:66:
5c:1a:8b:e8:04:7f:e4:57:1a:05:9c:75:29:81:00:
52:7c:2c:0f:9c:02:31:72:33:63:5e:e0:d0:39:0d:
3a:b3:28:5b:b1:d8:f2:4e:06:24:8f:45:36:9c:42:
8d:b8:d3:b0:3f:01:82:00:5c:7a:95:47:d5:d7:a1:
2c:7b:b4:b0:c5:bf:91:1d:d0:56:22:ea:0c:e9:13:
a6:5f:7b:99:d1:bf:37:e9:49:45:c5:ed:71:62:bb:
0d:1e:d9:3e:76:80:97:a0:f8:74:6f:34:37:ef:37:
b5:2f:7a:25:0f:f8:6f:61:a0:1a:d6:ae:54:42:d3:
31:f0:ef:b2:84:e9:2d:23:3a:e8:2e:06:1f:2d:53:
37:6a:db:16:21:e9:0c:0b:c0:4d:ff:4d:2b:5a:dc:
c5:fe:fe:bb:97:3e:bf:e2:47:a4:a0:43:ea:d3:6f:
0c:18:a0:5a:2f:2a:10:ed:41:bd:96:ea:92:f7:ad:
53:26:3d:62:f5:c0:2b:29:e5:07:0c:16:d3:23:d5:
e3:2a:8f:70:49:5b:a1:3a:5c:dc:48:7e:1f:be:04:
f1:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:9C:07:E3:5D:2C:75:F8:13:D7:CC:98:99:59:F5:0A:0B:48:22:91
X509v3 Authority Key Identifier:
keyid:25:BA:87:95:F3:E7:E2:D2:C7:C9:0F:1C:36:66:CF:7F:92:83:DA:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:8f:7f:1c:58:3c:5b:16:a2:68:3c:04:51:34:87:ef:6a:8b:
6a:c6:93:1c:e3:4d:5f:12:38:37:00:66:90:d2:8c:2e:d6:c1:
fb:5e:59:f2:18:28:2d:f7:37:f7:3b:fb:fe:04:bb:d4:ea:ee:
f5:7b:ff:b3:96:75:dc:2d:ef:52:93:83:46:ef:45:ce:2b:ef:
4c:52:0b:ca:ad:cd:28:80:fa:b5:23:02:52:1e:62:80:ba:aa:
31:92:44:ec:99:82:e2:76:86:20:a2:88:15:42:d7:92:56:64:
19:e8:82:7c:70:30:80:45:0e:11:b4:a3:d3:a0:04:5b:43:93:
f3:26:5d:fa:45:2b:8a:ad:e7:92:6e:d1:72:a6:48:65:c4:6b:
68:ee:68:50:0f:cf:0e:b3:e0:15:2d:e9:02:35:a9:4f:f2:92:
20:7f:f4:ad:2c:4e:fa:05:b4:9b:6d:20:2c:1f:cb:c2:83:d2:
ed:c6:12:f2:ba:72:bb:5d:46:25:a7:02:39:bd:2e:e5:a2:1c:
98:ed:2b:9e:23:b9:e8:3b:72:9e:ec:3a:c1:f9:80:e2:0c:22:
1f:15:19:2a:12:ad:5b:62:d5:51:c0:ce:d1:6f:54:8d:e4:38:
2a:63:dd:21:94:4a:38:00:00:b6:b7:4e:a1:6d:81:fe:46:41:
19:8b:61:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuLd4u+uNyPyIMtiuJ6nyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1YmE4Nzk1ZjNlN2UyZDJjN2M5MGYxYzM2NjZjZjdmOTI4
M2RhOWUwHhcNMjUxMTExMDcwMjAyWhcNMjUxMTEyMDcwMjAyWjAzMTEwLwYDVQQD
Eyg3ZDljMDdlMzVkMmM3NWY4MTNkN2NjOTg5OTU5ZjUwYTBiNDgyMjkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1X4BHVC0wHnJOib0/RH8D6gweeK8
iDVU7LVI8mQU8TB6Cido7++NqWEZKWZcGovoBH/kVxoFnHUpgQBSfCwPnAIxcjNj
XuDQOQ06syhbsdjyTgYkj0U2nEKNuNOwPwGCAFx6lUfV16Ese7Swxb+RHdBWIuoM
6ROmX3uZ0b836UlFxe1xYrsNHtk+doCXoPh0bzQ37ze1L3olD/hvYaAa1q5UQtMx
8O+yhOktIzroLgYfLVM3atsWIekMC8BN/00rWtzF/v67lz6/4kekoEPq028MGKBa
LyoQ7UG9luqS961TJj1i9cArKeUHDBbTI9XjKo9wSVuhOlzcSH4fvgTx2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH2cB+NdLHX4E9fMmJlZ9QoLSCKRMB8GA1UdIwQY
MBaAFCW6h5Xz5+LSx8kPHDZmz3+Sg9qeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSmJxSGxmUG40dExIeVE4Y05tYlBmNUtEMnA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS81NDg0MTctNWIwMS00ZjVlLWI5YjMt
NGVkZGJlYjgzODdiLzEvSmJxSGxmUG40dExIeVE4Y05tYlBmNUtEMnA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS81NDg0MTctNWIwMS00ZjVlLWI5YjMtNGVkZGJlYjgzODdi
LzEvSmJxSGxmUG40dExIeVE4Y05tYlBmNUtEMnA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi49/HFg8
WxaiaDwEUTSH72qLasaTHONNXxI4NwBmkNKMLtbB+15Z8hgoLfc39zv7/gS71Oru
9Xv/s5Z13C3vUpODRu9FzivvTFILyq3NKID6tSMCUh5igLqqMZJE7JmC4naGIKKI
FULXklZkGeiCfHAwgEUOEbSj06AEW0OT8yZd+kUriq3nkm7RcqZIZcRraO5oUA/P
DrPgFS3pAjWpT/KSIH/0rSxO+gW0m20gLB/LwoPS7cYS8rpyu11GJacCOb0u5aIc
mO0rniO56Dtynuw6wfmA4gwiHxUZKhKtW2LVUcDO0W9UjeQ4KmPdIZRKOAAAtrdO
oW2B/kZBGYthLg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:47:39 2025 by rpki-client