Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
File: rRIanMsoPqIejQoHCi4LakDph30.mft (raw, json)
Hash identifier: R+RKZ0NlsiqL4AeCy1ooEzdhsyS1EL95DuyN2922tXw=
Subject key identifier: 2C:C1:52:7F:B7:A0:55:F2:D7:6C:58:44:60:19:6C:A7:79:74:93:77
Authority key identifier: AD:12:1A:9C:CB:28:3E:A2:1E:8D:0A:07:0A:2E:0B:6A:40:E9:87:7D
Certificate issuer: /CN=ad121a9ccb283ea21e8d0a070a2e0b6a40e9877d
Certificate serial: 019A71B77D3170CC4A7AF00FC49FDAD19D3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
Manifest number: 171B
Signing time: Tue 11 Nov 2025 07:00:41 +0000
Manifest this update: Tue 11 Nov 2025 07:00:41 +0000
Manifest next update: Wed 12 Nov 2025 07:00:41 +0000
Files and hashes: 1: rRIanMsoPqIejQoHCi4LakDph30.crl (hash: heBxt9F+ILGKPF6tJ0RyZlrfY8qWmqFDDEt8fVTWvco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:7d:31:70:cc:4a:7a:f0:0f:c4:9f:da:d1:9d:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad121a9ccb283ea21e8d0a070a2e0b6a40e9877d
Validity
Not Before: Nov 11 07:00:41 2025 GMT
Not After : Nov 12 07:00:41 2025 GMT
Subject: CN=2cc1527fb7a055f2d76c584460196ca779749377
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:86:d7:57:7c:1f:a2:9b:5d:fb:57:fe:89:03:
dd:c6:8a:40:42:97:c6:eb:cd:d1:e2:92:0f:f7:2d:
52:47:95:af:2b:2c:17:14:65:58:5d:fd:63:5a:b9:
34:68:6d:2e:38:8e:41:28:ad:ba:96:ef:98:ea:1c:
b8:aa:98:bc:f6:15:ab:66:87:8e:6e:63:9a:fb:2c:
4d:19:82:f3:99:e7:81:03:fa:a2:d9:10:68:1c:d6:
10:bf:15:43:b5:32:4a:0e:1c:70:b5:23:08:b0:af:
8e:92:3f:cf:2b:d8:b8:93:d1:a4:c6:44:16:72:ff:
f8:f0:77:42:c6:2f:30:73:bf:6f:ef:26:3f:f4:61:
43:ed:a1:a3:d2:9d:df:63:49:8b:51:fa:ee:a7:5d:
61:74:60:21:1d:35:ce:7c:b6:e5:84:68:1a:09:39:
ca:26:62:fe:18:e9:37:0d:ba:6d:eb:08:ae:4d:2d:
62:9f:e1:8a:29:de:ea:5e:2b:13:d5:e7:e8:d1:9e:
51:ce:57:e2:d1:52:0e:d9:6d:99:ac:34:4a:08:49:
f1:a8:08:a1:18:af:e0:d7:49:97:cb:07:da:1c:05:
26:4b:73:96:63:66:93:9e:66:8f:f7:23:c1:de:3a:
70:1d:44:a1:c1:27:60:c3:a7:a7:29:57:d4:5a:2a:
56:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C1:52:7F:B7:A0:55:F2:D7:6C:58:44:60:19:6C:A7:79:74:93:77
X509v3 Authority Key Identifier:
keyid:AD:12:1A:9C:CB:28:3E:A2:1E:8D:0A:07:0A:2E:0B:6A:40:E9:87:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:73:52:8a:5c:78:54:6a:bd:a3:6c:b6:ee:a5:98:e4:34:45:
43:87:fb:00:e8:5a:d3:17:6f:8a:53:69:ec:02:62:f2:1c:ea:
36:ee:61:b9:d1:11:1a:00:ea:f9:0c:cf:a2:da:1c:71:2b:74:
18:2c:48:56:5d:56:0f:1b:7e:c7:71:e8:b6:16:43:37:a1:74:
72:fc:76:b6:6f:be:ea:73:af:f2:49:55:49:b0:57:d1:1c:f5:
e8:d4:ef:44:e4:ef:a9:ca:5f:51:3c:be:f6:01:8e:eb:97:a9:
1f:18:81:a3:d5:b3:8e:85:be:ed:6f:5c:ee:d9:80:a8:78:02:
c7:02:b9:69:a7:50:f9:ae:4e:70:4d:89:b9:33:b1:ad:65:d8:
a2:0e:86:f5:5c:3e:3a:44:8d:0d:f8:13:48:36:bb:f5:00:77:
99:b0:1c:3f:b7:be:91:a2:db:a3:86:65:b9:4b:26:5d:e6:72:
3b:c5:74:20:41:89:c3:50:53:7d:61:a6:ec:d7:60:e4:d7:03:
71:d7:c2:be:76:49:61:49:e4:96:9f:08:fc:68:c1:bc:1d:3b:
ab:ed:31:86:41:9b:03:8e:1f:84:c2:e9:d8:31:c5:48:63:de:
89:27:56:b3:8e:6d:98:4f:70:85:7a:a7:94:bd:3e:09:69:be:
69:be:32:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:03:38 2025 by rpki-client