Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.mft
File: ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.mft (raw, json)
Hash identifier: 6B1j4wMVZN38NPXLEdvhFw2pF3DnKBfz1MR3xQc/dAM=
Subject key identifier: AA:75:1C:78:0F:88:D3:51:0A:8A:33:73:E0:52:A6:E2:6B:6E:13:92
Authority key identifier: 72:20:2E:64:5F:72:CD:70:AA:81:43:B7:3B:CC:0D:DD:93:BF:E9:1A
Certificate issuer: /CN=72202e645f72cd70aa8143b73bcc0ddd93bfe91a
Certificate serial: 019A71B785755554E63B0929D90A38F44B49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.mft
Manifest number: 046E
Signing time: Tue 11 Nov 2025 07:00:43 +0000
Manifest this update: Tue 11 Nov 2025 07:00:43 +0000
Manifest next update: Wed 12 Nov 2025 07:00:43 +0000
Files and hashes: 1: ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.crl (hash: CfCwThq1WL47IoUyFzzmUED5rx70S/9eZUad+nk0JeY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.mft
rsync://rpki.ripe.net/repository/DEFAULT/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:85:75:55:54:e6:3b:09:29:d9:0a:38:f4:4b:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72202e645f72cd70aa8143b73bcc0ddd93bfe91a
Validity
Not Before: Nov 11 07:00:43 2025 GMT
Not After : Nov 12 07:00:43 2025 GMT
Subject: CN=aa751c780f88d3510a8a3373e052a6e26b6e1392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:28:32:9e:44:af:ad:47:2a:24:26:b5:df:c8:
05:a2:fd:e6:b8:18:e9:07:41:f6:8e:4a:9c:21:ed:
36:d2:c0:56:40:96:61:e0:4e:8d:2a:db:b7:d9:da:
3d:8b:08:77:16:72:10:6f:34:94:0f:e7:ad:bb:66:
65:16:3a:04:c0:69:c1:76:52:4d:3e:c0:45:3c:e8:
fa:6a:2a:7e:0b:e2:7a:02:34:7b:59:48:a6:59:7b:
aa:70:1c:67:25:73:28:3d:4d:03:ba:7e:76:f3:b3:
d8:b6:cf:fe:65:d4:6e:48:ba:cf:d4:a3:b9:76:58:
e6:62:21:bd:8b:29:cf:4b:2c:14:e9:07:b9:f7:9c:
b4:69:88:13:ea:7a:80:69:74:5e:db:59:c7:11:3b:
b5:8b:d5:79:22:23:6a:7c:92:2c:d4:07:03:5a:38:
a6:06:f8:a4:73:0d:21:a3:d4:50:0c:4c:19:98:94:
8a:ec:18:51:0c:b0:21:3b:3f:83:64:5b:45:13:a2:
62:2c:b9:3e:51:fa:2a:1f:0b:f2:8d:49:0a:fb:1e:
87:dc:02:4e:db:76:5b:23:ca:61:39:c4:8f:7a:f4:
1f:3f:fe:f4:ec:71:da:46:7d:95:b6:84:1c:a7:26:
a0:e9:a6:4d:a3:8d:2e:4d:4a:8d:ac:7e:d1:1c:4e:
2b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:75:1C:78:0F:88:D3:51:0A:8A:33:73:E0:52:A6:E2:6B:6E:13:92
X509v3 Authority Key Identifier:
keyid:72:20:2E:64:5F:72:CD:70:AA:81:43:B7:3B:CC:0D:DD:93:BF:E9:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:21:7b:a8:45:91:75:b0:dd:e4:bf:07:24:3d:f7:48:03:b8:
8a:07:a8:c6:6d:85:d7:88:0c:c4:70:35:a5:57:8e:58:fb:eb:
8c:40:d3:78:c7:ec:e9:57:7b:82:2e:91:5a:c7:43:4b:6d:fa:
72:f3:dd:5d:4b:1c:f0:18:67:9f:83:ea:7f:76:de:b9:76:b1:
4b:02:40:17:30:f2:54:ed:e2:c1:7b:78:eb:1d:22:80:11:f8:
a8:6e:8c:6b:a7:93:32:10:70:11:1f:62:9f:40:9f:d7:86:b7:
de:de:93:6c:88:bd:7b:bd:ae:a0:7b:4b:73:50:8a:f4:00:77:
49:7f:a5:2e:d6:24:7c:ae:7e:c9:78:65:64:1b:16:f7:e4:9f:
23:bf:16:1b:df:1d:f7:ad:71:f4:35:a7:f5:6d:48:75:d4:a4:
6b:7a:30:78:4a:b6:7a:65:4e:9b:77:31:9f:9c:c4:38:f2:a5:
f4:0b:cb:ff:14:47:6c:a8:b8:10:4b:89:43:d0:3d:24:cb:74:
06:18:33:5c:b6:fc:56:96:65:2a:3f:07:df:5e:4f:c2:f7:88:
71:13:86:03:cb:e8:73:8b:ac:25:c3:80:05:29:88:48:ba:c1:
0d:d4:11:16:f7:b4:4c:c1:2f:72:6e:27:a9:26:96:01:a1:68:
3c:62:a7:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:15:31 2025 by rpki-client