Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft
File: dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft (raw, json)
Hash identifier: queZe4mCTaQELa37YvVWl2vOIhSIUcMHtEIvSsS/J3A=
Subject key identifier: 5B:F9:C7:7E:4F:5D:54:A0:A7:F6:4B:E3:96:CA:38:06:5B:D9:45:D8
Authority key identifier: 74:23:0D:14:2E:EC:7F:6A:99:B0:DB:40:96:F9:3A:04:20:48:3F:E6
Certificate issuer: /CN=74230d142eec7f6a99b0db4096f93a0420483fe6
Certificate serial: 019A71B924BBB759782BBDD343F56B854E73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft
Manifest number: 0914
Signing time: Tue 11 Nov 2025 07:02:30 +0000
Manifest this update: Tue 11 Nov 2025 07:02:30 +0000
Manifest next update: Wed 12 Nov 2025 07:02:30 +0000
Files and hashes: 1: dCMNFC7sf2qZsNtAlvk6BCBIP-Y.crl (hash: JX1OmXSYp4bF5ewibqYHL5O6U/kHhIMEb0rkIpCmlw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:24:bb:b7:59:78:2b:bd:d3:43:f5:6b:85:4e:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74230d142eec7f6a99b0db4096f93a0420483fe6
Validity
Not Before: Nov 11 07:02:30 2025 GMT
Not After : Nov 12 07:02:30 2025 GMT
Subject: CN=5bf9c77e4f5d54a0a7f64be396ca38065bd945d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:43:5d:8f:53:ff:e1:d6:56:6a:77:22:ab:82:
83:68:af:a1:d9:da:73:2e:4d:08:86:18:39:a7:9e:
57:c6:72:59:1e:cd:cb:73:c8:57:a0:98:1b:a5:da:
e4:2f:42:fb:95:15:16:61:fb:7a:21:fd:44:20:fd:
05:67:f4:a7:a6:14:fd:73:54:4e:5e:ce:cb:85:af:
8f:11:44:1d:f9:fc:dc:94:be:7f:2b:1a:73:e3:d7:
8d:67:83:d5:ac:43:a2:f8:06:ce:8b:ac:e1:46:28:
c6:88:4e:db:30:4f:45:5c:f4:27:bf:48:8c:2d:5c:
31:48:7c:ea:65:6c:25:ef:b0:e6:b5:a1:68:fd:b8:
4a:cc:fc:71:d6:4a:24:9f:41:7d:90:29:1e:c4:80:
5c:29:6e:ae:a6:56:35:27:42:62:50:e7:0e:0d:ae:
8b:d3:50:be:0b:47:aa:e3:e4:6f:a4:8e:99:eb:33:
ca:3a:39:e2:d8:ee:64:2f:41:4b:51:f5:44:9c:c6:
ff:53:e0:18:91:ee:f9:44:6d:a7:e2:29:50:53:27:
d3:82:92:69:0d:ff:d0:72:5e:bd:27:bf:ec:07:0c:
11:24:9d:d8:1d:7e:cf:c6:0e:1e:55:ce:16:68:3e:
8f:2d:2d:4d:17:68:11:4a:0d:e5:c2:dc:b1:76:ef:
57:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:F9:C7:7E:4F:5D:54:A0:A7:F6:4B:E3:96:CA:38:06:5B:D9:45:D8
X509v3 Authority Key Identifier:
keyid:74:23:0D:14:2E:EC:7F:6A:99:B0:DB:40:96:F9:3A:04:20:48:3F:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:8c:f0:cb:7b:b9:ff:9c:a4:57:c0:e4:e8:85:ea:a8:bf:3b:
f8:18:e3:48:6b:da:27:1d:73:2a:b4:76:c0:39:0b:93:45:5f:
9c:fe:3f:1a:16:b4:6d:ba:14:4c:cb:ab:e8:cb:9e:88:05:54:
37:b1:91:9b:8a:70:6c:79:8b:cc:45:7d:c4:b3:60:04:d6:ef:
7c:29:d5:43:f1:1b:cf:d5:78:d7:b2:a4:43:26:65:d1:6d:dc:
8c:da:71:b6:bb:ed:11:51:ff:bc:dd:40:7a:ee:a8:32:86:64:
b8:8a:83:fd:af:51:75:7b:7d:c7:f2:52:54:48:52:b0:39:61:
95:d0:58:54:fc:09:db:46:16:0f:95:3b:0f:f2:7d:b8:7a:df:
cf:e7:13:a6:74:94:24:44:37:97:2c:ba:a6:7b:8d:ac:c2:7d:
e6:f7:c0:c9:c2:69:d9:d5:2a:82:ce:f8:88:ae:3b:a8:f7:f8:
1d:e6:06:60:f0:c1:09:a5:64:a3:7d:fc:8b:f0:3f:0e:8b:5d:
c2:81:c4:e9:f2:b1:3a:30:ad:5d:a4:da:8d:c3:85:c9:07:22:
fb:2e:ae:63:07:a0:b9:43:04:b3:da:26:66:66:d7:8f:a0:4b:
48:21:f0:71:96:a1:21:16:40:93:37:bc:0e:a9:1a:0a:20:ed:
af:45:79:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:35:06 2025 by rpki-client