Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/d23344-b281-42d2-bc33-ecbf7f17f604/1/xBHDOVke38lmej55EY3SPEAr6H8.mft
File: xBHDOVke38lmej55EY3SPEAr6H8.mft (raw, json)
Hash identifier: D7HewLMGCgcW1PrK2Dx3+Tvh3VIbp3nUiGyBWcoB44w=
Subject key identifier: CB:0F:62:12:97:06:9F:CA:0C:9C:31:1F:E1:FE:9A:1E:28:A3:2E:29
Authority key identifier: C4:11:C3:39:59:1E:DF:C9:66:7A:3E:79:11:8D:D2:3C:40:2B:E8:7F
Certificate issuer: /CN=c411c339591edfc9667a3e79118dd23c402be87f
Certificate serial: 019A725CEA278F98630F569C98FAA00C2A59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBHDOVke38lmej55EY3SPEAr6H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/d23344-b281-42d2-bc33-ecbf7f17f604/1/xBHDOVke38lmej55EY3SPEAr6H8.mft
Manifest number: 0719
Signing time: Tue 11 Nov 2025 10:01:23 +0000
Manifest this update: Tue 11 Nov 2025 10:01:23 +0000
Manifest next update: Wed 12 Nov 2025 10:01:23 +0000
Files and hashes: 1: xBHDOVke38lmej55EY3SPEAr6H8.crl (hash: IwHCHhY/Aj4KDy1Vle7boJMntPSpal0buddtGh8/+Tk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/d23344-b281-42d2-bc33-ecbf7f17f604/1/xBHDOVke38lmej55EY3SPEAr6H8.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/d23344-b281-42d2-bc33-ecbf7f17f604/1/xBHDOVke38lmej55EY3SPEAr6H8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBHDOVke38lmej55EY3SPEAr6H8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:ea:27:8f:98:63:0f:56:9c:98:fa:a0:0c:2a:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c411c339591edfc9667a3e79118dd23c402be87f
Validity
Not Before: Nov 11 10:01:23 2025 GMT
Not After : Nov 12 10:01:23 2025 GMT
Subject: CN=cb0f621297069fca0c9c311fe1fe9a1e28a32e29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c5:94:58:c1:88:f2:f0:7f:1b:18:c4:35:c9:
11:c9:91:65:7c:d1:5b:00:b6:27:84:57:85:55:7e:
4a:5d:6e:47:5a:dc:6d:61:50:c0:e7:86:38:a7:1e:
fb:2e:7b:5d:f1:a2:16:bb:2b:ff:69:e5:3f:34:d8:
af:86:36:f5:9e:45:06:9a:3a:6d:17:76:b9:e7:ae:
6d:bd:0b:30:33:55:91:20:44:00:22:01:86:98:de:
20:02:6b:28:7d:37:97:3a:72:ea:da:26:87:9b:83:
b4:07:61:5a:14:70:f2:e9:f4:dd:58:87:0e:98:61:
8f:7d:a4:55:38:a3:0c:88:72:3c:84:f2:03:58:30:
2e:9d:03:89:e4:11:50:9b:66:27:1a:1f:02:e3:3d:
d4:6c:bd:6c:38:a7:b7:62:f6:11:16:19:e4:ea:91:
0b:f6:b1:bc:97:d6:3d:2e:58:7c:ec:36:73:18:79:
75:fe:e7:75:b0:e3:3c:a6:78:a4:20:b1:8b:5f:d2:
a2:f5:f0:76:9e:fd:1e:14:9e:3d:41:c7:6b:eb:63:
5c:79:f5:b1:e0:1e:db:78:3c:97:e9:6e:7f:54:37:
a9:7d:df:66:97:2c:11:49:94:46:03:a1:16:6e:bb:
1e:20:88:84:07:d7:5b:c7:8e:6a:93:ad:82:c1:9e:
20:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:0F:62:12:97:06:9F:CA:0C:9C:31:1F:E1:FE:9A:1E:28:A3:2E:29
X509v3 Authority Key Identifier:
keyid:C4:11:C3:39:59:1E:DF:C9:66:7A:3E:79:11:8D:D2:3C:40:2B:E8:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBHDOVke38lmej55EY3SPEAr6H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d23344-b281-42d2-bc33-ecbf7f17f604/1/xBHDOVke38lmej55EY3SPEAr6H8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d23344-b281-42d2-bc33-ecbf7f17f604/1/xBHDOVke38lmej55EY3SPEAr6H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:d2:4a:8b:d3:32:ba:14:c5:48:ae:fc:54:f7:dc:3c:16:27:
e2:e4:e8:a2:78:f7:06:68:84:40:b0:fc:7f:3b:34:c8:18:84:
3b:ec:a8:3f:dd:18:c2:8f:11:5a:b1:4a:9f:9c:a9:dc:00:b5:
99:b6:b8:e2:41:a5:f9:a6:3a:e7:d3:d3:96:15:3c:b0:06:2c:
17:e1:b0:c2:bf:ff:68:f8:e3:2e:85:4c:ea:a1:2e:73:96:8b:
b1:df:10:91:18:cf:83:19:a0:05:73:5e:ce:a5:cb:e1:5e:38:
31:50:9d:51:dd:3f:59:b5:c4:c0:08:aa:b4:25:f7:2e:38:a1:
66:1b:d7:9a:f3:7c:d2:ff:4e:93:e9:da:2e:60:1f:35:0c:b9:
e9:8b:25:69:9b:ee:c5:13:8e:1f:2d:66:52:ca:43:60:b6:09:
49:99:0d:f5:8a:bd:1c:a4:a7:39:08:a8:7b:ec:ce:55:da:3a:
7d:40:6e:eb:18:54:33:00:ac:27:c3:19:75:0d:7e:b1:33:c3:
c6:9b:b5:4a:09:8a:d2:69:1a:78:0b:96:2d:8a:d4:53:8f:f7:
42:6e:2b:e5:6a:90:8f:22:a8:8d:54:cb:ad:24:05:a0:f7:29:
f1:6e:e7:0f:be:7d:b7:d0:eb:8c:4a:dd:fd:be:1e:fe:2f:bc:
ee:24:4b:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:48 2025 by rpki-client