Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft
File: i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft (raw, json)
Hash identifier: 4DPAKJm45lE84S5kVfDEMwQSI8Zr2dIIeWBd1/tPzHg=
Subject key identifier: 1C:CE:00:AB:A8:CA:AD:31:E0:2D:0D:AB:A6:F5:59:C6:2F:A2:15:08
Authority key identifier: 8B:7B:E7:A4:76:06:AB:38:39:1F:B2:15:42:B5:F4:06:1F:02:A8:52
Certificate issuer: /CN=8b7be7a47606ab38391fb21542b5f4061f02a852
Certificate serial: 019A73A5F863AA353F743DD2DA069152B335
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft
Manifest number: 0D99
Signing time: Tue 11 Nov 2025 16:00:48 +0000
Manifest this update: Tue 11 Nov 2025 16:00:48 +0000
Manifest next update: Wed 12 Nov 2025 16:00:48 +0000
Files and hashes: 1: i3vnpHYGqzg5H7IVQrX0Bh8CqFI.crl (hash: rhQ9Dv5xi8iHsBLv9cUHgDxhXT4nwcxDl5zXMxweLNs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:a5:f8:63:aa:35:3f:74:3d:d2:da:06:91:52:b3:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b7be7a47606ab38391fb21542b5f4061f02a852
Validity
Not Before: Nov 11 16:00:48 2025 GMT
Not After : Nov 12 16:00:48 2025 GMT
Subject: CN=1cce00aba8caad31e02d0daba6f559c62fa21508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:24:bd:06:c0:00:b0:82:5a:da:1e:0d:b9:39:
d6:72:39:24:8c:48:2d:38:58:52:6a:7a:a6:9a:3e:
f0:85:42:aa:28:08:0d:dd:e4:43:90:83:ee:19:8a:
9c:90:49:f7:43:68:a7:9c:51:e8:0c:5f:b9:7b:bf:
e2:bc:11:96:e9:4b:b2:23:fe:cf:94:9d:37:52:82:
da:6e:a1:d1:88:63:ad:f8:8f:e3:37:8f:5c:99:11:
72:35:c9:08:e8:33:aa:e5:9e:bf:27:ce:95:82:30:
82:20:72:92:b6:98:2d:8b:83:02:56:19:ae:00:f6:
59:0f:c8:c8:23:9b:23:6d:34:52:0d:71:bd:6c:98:
33:46:03:9a:96:b2:d2:ba:85:bf:f9:ba:9e:d1:2d:
9f:63:69:9d:31:4f:63:2f:fa:2f:38:80:f6:84:48:
45:99:b2:ec:ea:b0:a5:fd:be:ae:ad:6b:4d:a0:fa:
d5:cc:82:00:bd:b4:6a:bb:44:c0:e1:c0:a1:52:c7:
83:d2:67:f3:75:41:70:2a:88:a3:03:32:5d:bb:e9:
dc:af:47:2d:ed:02:dc:72:f3:1f:4d:7c:8b:17:11:
23:e5:71:b2:02:fe:4a:89:f5:4a:3d:83:82:21:ad:
2d:31:07:c9:f0:6b:dc:3e:cb:d1:aa:a2:68:a6:72:
fd:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:CE:00:AB:A8:CA:AD:31:E0:2D:0D:AB:A6:F5:59:C6:2F:A2:15:08
X509v3 Authority Key Identifier:
keyid:8B:7B:E7:A4:76:06:AB:38:39:1F:B2:15:42:B5:F4:06:1F:02:A8:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:5b:ec:4e:65:8f:0a:f8:cb:f9:b8:a3:c2:a7:9d:39:cb:e5:
6b:b8:b7:70:7a:93:ac:17:84:81:b4:79:e8:ea:67:41:c8:d0:
ce:97:53:ac:34:63:4b:79:63:56:75:87:4e:94:95:ab:00:b3:
fc:ae:43:04:89:25:86:a8:22:ef:83:d0:f8:0e:11:05:f0:7e:
77:e7:0e:92:42:f1:86:44:2e:b2:5f:d2:0c:5f:b9:15:99:16:
c1:f6:3b:9d:19:72:3c:87:64:28:99:a5:65:96:6c:80:65:e8:
2f:fc:d1:e6:d2:48:47:53:d0:8a:7a:ae:5e:43:a2:d5:80:0d:
79:f0:81:33:93:c6:bd:c4:f0:83:6f:96:94:b7:15:9f:3b:34:
b3:1c:5e:28:fb:c1:2b:3a:74:10:53:6b:30:1e:ae:28:36:3a:
a5:3e:6b:77:f8:53:13:19:a8:21:ff:96:ec:33:d9:39:b6:ad:
25:ac:c8:04:5b:05:10:33:9f:f5:0f:72:68:ee:4c:f4:9e:fe:
d4:13:91:f7:a0:50:8f:7b:75:bd:14:8c:4f:ed:c9:68:2b:ee:
26:52:15:9f:67:eb:13:ab:ff:3e:e5:86:74:b8:96:b4:11:a9:
e2:e0:60:c9:1e:be:a8:7a:20:d3:60:04:41:d6:33:fd:09:b2:
b5:f2:32:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 18:36:12 2025 by rpki-client