Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.mft
File: H38fQMjrspNo9ug7-d3QZ14H1O0.mft (raw, json)
Hash identifier: ZUb8ruE1YZnE//uRybLZ1bTqh6xkiwaIWdYOSqxSdH4=
Subject key identifier: 5D:CE:07:E2:63:E1:EA:D2:72:8E:31:83:15:55:85:6E:CA:88:20:9E
Authority key identifier: 1F:7F:1F:40:C8:EB:B2:93:68:F6:E8:3B:F9:DD:D0:67:5E:07:D4:ED
Certificate issuer: /CN=1f7f1f40c8ebb29368f6e83bf9ddd0675e07d4ed
Certificate serial: 019A71B945E78F42A58A2464C78446A83A20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H38fQMjrspNo9ug7-d3QZ14H1O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.mft
Manifest number: 0FDF
Signing time: Tue 11 Nov 2025 07:02:38 +0000
Manifest this update: Tue 11 Nov 2025 07:02:38 +0000
Manifest next update: Wed 12 Nov 2025 07:02:38 +0000
Files and hashes: 1: H38fQMjrspNo9ug7-d3QZ14H1O0.crl (hash: oJhOqP1Qf8xOvbR2yeHPxN2qAp+k6KRRncLwJpJk2+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.mft
rsync://rpki.ripe.net/repository/DEFAULT/H38fQMjrspNo9ug7-d3QZ14H1O0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:45:e7:8f:42:a5:8a:24:64:c7:84:46:a8:3a:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f7f1f40c8ebb29368f6e83bf9ddd0675e07d4ed
Validity
Not Before: Nov 11 07:02:38 2025 GMT
Not After : Nov 12 07:02:38 2025 GMT
Subject: CN=5dce07e263e1ead2728e31831555856eca88209e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d2:c7:1f:db:3d:49:2d:f1:69:1c:02:d1:5d:
a2:4d:c1:ca:80:b1:40:be:ef:c9:4f:97:06:41:89:
9c:b8:c4:e0:56:f0:bd:45:58:02:4a:43:63:2c:7b:
29:a9:16:f1:24:bd:ec:86:92:f7:db:08:7f:c3:bd:
79:91:02:91:1a:ce:6e:f1:d8:ae:58:1f:a0:c4:05:
a7:3c:7d:33:65:4b:04:06:10:25:4a:0c:f3:0b:3f:
38:08:d5:ee:dd:24:83:1e:6c:75:9e:c2:ab:07:b9:
b2:a6:01:3b:4f:a1:f9:ee:4c:fc:64:84:af:46:38:
b8:56:35:70:a4:0f:29:e0:1d:e3:9e:3b:be:73:03:
0e:1e:f3:f2:92:fa:00:6f:5a:2c:7f:70:51:6f:9a:
87:b8:b7:4c:5e:00:6d:ca:9b:9e:6b:1c:67:0e:fd:
95:dd:96:34:95:ce:92:8d:0c:21:40:72:eb:35:eb:
86:60:fb:b8:51:36:a7:db:71:04:ac:8b:d3:e4:1f:
c1:fa:41:b1:6a:c6:10:af:4f:4e:c1:a1:1f:39:70:
9a:8f:ea:53:5d:27:ce:46:8d:6f:74:5b:34:71:6b:
bb:33:d3:5a:89:c0:8c:ec:21:a2:c4:83:9b:f7:85:
de:58:60:07:c3:57:50:25:d2:73:08:e6:03:aa:57:
cc:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:CE:07:E2:63:E1:EA:D2:72:8E:31:83:15:55:85:6E:CA:88:20:9E
X509v3 Authority Key Identifier:
keyid:1F:7F:1F:40:C8:EB:B2:93:68:F6:E8:3B:F9:DD:D0:67:5E:07:D4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H38fQMjrspNo9ug7-d3QZ14H1O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:2b:c6:24:4c:b9:3c:58:cf:02:5a:fc:9d:3a:14:2f:8a:a4:
ba:19:f1:c5:26:b1:3d:d4:2e:36:f2:25:b2:46:d7:71:86:55:
67:48:67:b7:be:b9:92:2f:9e:83:7e:c4:22:98:e1:e2:ee:16:
b3:1f:2d:a2:87:f8:1d:d3:1b:c2:a9:fa:fd:4c:9f:cb:79:81:
0a:1a:84:f5:c8:cd:be:81:b1:83:b8:e6:5a:20:b5:a6:58:29:
75:35:36:73:fc:ca:29:16:4c:fb:8a:79:f9:cd:1c:83:6b:18:
43:2b:6c:1d:f3:9a:68:c9:7b:81:e5:a9:7c:9f:d6:3b:fe:1a:
46:b5:fc:11:91:32:d0:cd:42:c8:7e:a8:c3:61:a2:80:3b:5d:
ac:19:4f:9b:d5:9b:c4:d4:47:51:30:99:6f:c4:13:95:a0:37:
45:e5:79:5d:93:5b:bc:55:57:75:46:5d:79:5f:5d:79:6f:0e:
e2:b9:9c:0f:30:ec:41:a5:9a:b8:c7:b1:ec:7c:c5:7b:ba:a2:
22:9d:4c:88:8b:81:e9:1e:11:4f:2e:5f:32:d6:7f:cf:9e:80:
2d:f2:e6:d1:5a:f4:05:54:cb:78:c8:7e:2a:24:77:60:e4:bb:
12:3f:ba:64:39:11:22:71:9b:45:85:99:12:38:70:1e:6c:e5:
d9:fc:b3:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:36:53 2025 by rpki-client