Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft
File: 6ocBJxa2bugiZCwvChuQFItceyk.mft (raw, json)
Hash identifier: iI7gpq4lok5OTHYRrbsIjoen7/fSISvtmpXDvTSUrEE=
Subject key identifier: F5:8A:90:1F:4C:96:7D:4A:3E:4D:D5:DF:0B:B4:DE:CE:C6:95:AD:55
Authority key identifier: EA:87:01:27:16:B6:6E:E8:22:64:2C:2F:0A:1B:90:14:8B:5C:7B:29
Certificate issuer: /CN=ea87012716b66ee822642c2f0a1b90148b5c7b29
Certificate serial: 019A71B81D994570EDA106D19F1D760CC995
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6ocBJxa2bugiZCwvChuQFItceyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft
Manifest number: 0E6E
Signing time: Tue 11 Nov 2025 07:01:22 +0000
Manifest this update: Tue 11 Nov 2025 07:01:22 +0000
Manifest next update: Wed 12 Nov 2025 07:01:22 +0000
Files and hashes: 1: 6ocBJxa2bugiZCwvChuQFItceyk.crl (hash: Qh1xskumLpCg/RMuBjbRZB36GCRlUlDSjNB/d7N9JDc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/6ocBJxa2bugiZCwvChuQFItceyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:1d:99:45:70:ed:a1:06:d1:9f:1d:76:0c:c9:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea87012716b66ee822642c2f0a1b90148b5c7b29
Validity
Not Before: Nov 11 07:01:22 2025 GMT
Not After : Nov 12 07:01:22 2025 GMT
Subject: CN=f58a901f4c967d4a3e4dd5df0bb4decec695ad55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e3:4b:fc:aa:81:0e:2c:1d:30:ff:c9:2d:64:
11:9e:46:18:24:ce:08:3f:d6:1a:7c:b9:2b:93:d5:
8c:e2:72:f0:30:a4:db:ab:5f:d6:bf:2a:93:03:2c:
13:11:3f:b3:f8:ed:2e:b9:0c:e1:4a:c4:29:51:8e:
3b:77:6b:1d:b7:9f:52:44:d6:08:44:dd:13:c2:63:
0c:e3:2f:65:99:90:df:18:44:38:02:a8:ef:ed:8c:
dd:31:0e:b3:bf:7c:a6:d3:02:22:47:11:ec:e1:b7:
29:12:56:42:12:6e:34:56:5d:7b:3d:94:fa:af:a4:
08:a8:cd:b5:35:74:d0:27:4a:00:06:b5:12:ef:65:
6a:12:a5:6e:d1:ed:dc:47:e4:2e:16:64:7f:b3:bb:
a0:bf:74:ef:05:10:93:c6:b1:73:dc:2d:a4:ee:47:
9f:3d:f6:93:6a:19:ce:31:91:f2:1e:3e:ee:e9:a4:
d3:7b:c4:c9:18:9a:89:70:c7:af:3e:97:9f:bc:d1:
de:59:ea:9d:d5:fd:88:1d:05:d6:71:4b:f0:6d:c1:
41:b7:56:6d:9b:0e:8a:6a:aa:e0:9a:4c:e8:e9:0f:
3d:67:2e:45:91:65:12:aa:20:a3:c8:c0:54:98:71:
f3:ad:25:e8:0f:95:e5:7a:01:a9:27:de:51:7b:22:
cf:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:8A:90:1F:4C:96:7D:4A:3E:4D:D5:DF:0B:B4:DE:CE:C6:95:AD:55
X509v3 Authority Key Identifier:
keyid:EA:87:01:27:16:B6:6E:E8:22:64:2C:2F:0A:1B:90:14:8B:5C:7B:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6ocBJxa2bugiZCwvChuQFItceyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:c0:c3:95:bf:7a:8c:ec:62:31:00:d5:f9:ed:9f:15:fd:79:
c6:ee:5f:10:70:9e:62:37:eb:e0:46:78:80:2f:a5:b5:b7:03:
ca:5b:88:df:af:c8:a3:15:74:29:b2:85:07:76:9e:9d:67:c3:
34:a5:fd:46:ef:63:76:87:7f:d8:26:e9:f4:4f:42:3f:a4:0b:
0e:e9:12:5c:f4:0a:bb:0d:d8:08:f6:7a:ae:26:51:aa:9f:43:
82:8d:e6:81:5a:e2:48:a7:2d:78:12:23:85:9d:6f:e0:6d:e1:
7d:02:8d:6b:5f:bb:16:0b:ae:eb:7f:61:ae:ec:36:bd:8f:48:
4b:db:4d:d0:a0:1f:78:e3:f7:88:9d:02:15:02:e9:43:a0:48:
11:f2:d0:5c:d8:2f:81:75:62:a0:fd:7a:b8:c0:e8:77:fa:0b:
36:26:3d:42:f6:4b:6a:a5:91:95:70:21:6f:9c:4d:31:72:3c:
ca:90:35:7d:83:43:a7:8d:ca:dd:a1:26:65:95:36:35:c2:98:
82:b1:e7:5f:21:60:78:39:c8:a8:c4:16:e0:ea:ba:8c:55:f0:
eb:71:f6:80:72:09:d2:9a:70:a5:bf:90:b6:27:3f:1d:0d:e2:
55:bb:6e:95:73:5b:72:d7:4c:d5:2d:64:cb:31:98:4e:8f:c6:
74:40:aa:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:20:19 2025 by rpki-client