Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
File: F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft (raw, json)
Hash identifier: 6OOsts9zzz1+XrvmGJNYoLmLvKAda7DRrZAHbz36TDk=
Subject key identifier: 1B:3A:64:5D:9F:FA:8D:B4:A5:9D:F7:CF:67:52:F4:51:4D:99:89:30
Authority key identifier: 17:D8:73:12:06:53:B3:CF:E5:51:72:A9:DC:60:57:E8:CC:D0:CB:5C
Certificate issuer: /CN=17d873120653b3cfe55172a9dc6057e8ccd0cb5c
Certificate serial: 019A71B80ED57234AF5C3CC83B1550923EFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9hzEgZTs8_lUXKp3GBX6MzQy1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
Manifest number: 0EC0
Signing time: Tue 11 Nov 2025 07:01:19 +0000
Manifest this update: Tue 11 Nov 2025 07:01:19 +0000
Manifest next update: Wed 12 Nov 2025 07:01:19 +0000
Files and hashes: 1: F9hzEgZTs8_lUXKp3GBX6MzQy1w.crl (hash: hqeQ5t1Bih9bN8EhXRn+z8QrnYQ+Z/dJMJXCOlanLWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/F9hzEgZTs8_lUXKp3GBX6MzQy1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:0e:d5:72:34:af:5c:3c:c8:3b:15:50:92:3e:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d873120653b3cfe55172a9dc6057e8ccd0cb5c
Validity
Not Before: Nov 11 07:01:19 2025 GMT
Not After : Nov 12 07:01:19 2025 GMT
Subject: CN=1b3a645d9ffa8db4a59df7cf6752f4514d998930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ab:d9:c4:24:42:ce:02:34:53:ff:d5:68:17:
e3:bf:e2:75:73:8e:86:93:bf:08:19:5f:85:dd:4b:
fa:28:0a:37:52:73:22:70:6a:47:c8:89:84:24:47:
8e:d1:da:0b:56:9f:09:f5:7b:2a:37:d6:b6:50:2c:
ea:48:0d:be:6c:a0:48:aa:f1:d3:d7:27:85:4d:42:
73:01:15:9d:54:4a:7f:1b:c3:dd:5d:bf:38:71:ab:
f4:ff:eb:da:d4:7d:70:1c:ca:a8:72:f6:80:d0:7d:
8c:3e:6c:f0:aa:d0:b6:73:14:31:61:16:72:1c:b7:
f4:50:83:15:0d:1e:ec:88:05:ee:61:ac:a5:11:1c:
e9:6a:59:f7:37:6f:b6:d6:7c:3d:75:6f:65:75:8f:
47:78:99:2c:33:90:97:b8:38:74:b0:d9:ce:f2:1d:
c3:8f:b4:69:4c:82:30:09:3f:16:0b:03:fc:83:dc:
7c:59:37:2a:43:4f:a8:f2:dd:b1:3c:47:a4:3a:9c:
41:c0:0b:15:e4:39:ca:e4:01:6b:8f:2f:84:99:f3:
4a:36:88:ec:90:b2:47:b7:36:f1:a9:10:f8:56:95:
6a:46:89:81:f8:8a:2c:0c:fa:1e:15:07:53:f0:a1:
f5:00:e4:7f:9a:cc:7d:e9:3d:b3:75:76:ff:7b:c6:
01:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:3A:64:5D:9F:FA:8D:B4:A5:9D:F7:CF:67:52:F4:51:4D:99:89:30
X509v3 Authority Key Identifier:
keyid:17:D8:73:12:06:53:B3:CF:E5:51:72:A9:DC:60:57:E8:CC:D0:CB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9hzEgZTs8_lUXKp3GBX6MzQy1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:be:5d:7d:f9:3e:dd:d2:2e:4e:6a:60:c4:1b:0a:8c:3e:19:
17:e0:58:12:3e:dc:9a:ee:3f:83:8b:64:76:4d:84:d9:04:18:
cc:6d:ab:4e:d0:fa:7f:74:0a:a9:8e:f4:76:5c:45:c1:20:ed:
7f:71:c2:41:0c:85:ba:c6:5f:9a:a0:83:c3:8e:11:f3:9e:63:
58:36:00:6b:a4:80:49:c7:01:e7:e8:f1:0d:61:09:17:2c:25:
7f:fd:c6:3f:25:43:84:46:93:1f:20:cf:76:b2:97:d6:9f:51:
7b:71:45:83:5b:19:87:aa:46:0b:48:5b:b6:de:ea:b1:2a:52:
a2:6f:88:bd:ba:d1:a5:59:4c:80:5e:aa:0e:b5:c6:1b:01:cf:
4e:f2:90:bf:32:96:ae:18:9f:40:ba:6e:36:2e:86:c1:71:de:
6b:4b:02:c0:51:0e:7c:9f:70:96:9b:40:7c:64:f6:cd:f2:e5:
16:f4:b9:d2:0b:f3:01:cd:70:c5:cc:2f:3c:72:c6:fc:16:e3:
a4:df:5f:41:93:e2:8d:08:22:5f:12:5f:b5:93:63:73:5e:8a:
dd:66:09:76:99:5a:1a:7f:76:aa:29:61:de:73:5f:6e:40:7b:
ad:0d:5a:e3:07:73:56:f4:ef:5a:4d:6d:d4:03:19:1f:b8:8c:
4f:28:30:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:05:37 2025 by rpki-client