Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft
File: J83PK9CaINK63Tq2yMft-h_Vwsw.mft (raw, json)
Hash identifier: v2KSxDT4q1/CQgirACgg4J4tykAIeNKT4Aku2Ccg2ck=
Subject key identifier: CD:51:D0:3A:FE:5D:07:EA:A2:35:41:01:32:B2:2F:B9:D2:90:69:A3
Authority key identifier: 27:CD:CF:2B:D0:9A:20:D2:BA:DD:3A:B6:C8:C7:ED:FA:1F:D5:C2:CC
Certificate issuer: /CN=27cdcf2bd09a20d2badd3ab6c8c7edfa1fd5c2cc
Certificate serial: 019A1E3EA7D7291B093A3A1D3882891531E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J83PK9CaINK63Tq2yMft-h_Vwsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft
Manifest number: 040D
Signing time: Sun 26 Oct 2025 02:00:13 +0000
Manifest this update: Sun 26 Oct 2025 02:00:13 +0000
Manifest next update: Mon 27 Oct 2025 02:00:13 +0000
Files and hashes: 1: J83PK9CaINK63Tq2yMft-h_Vwsw.crl (hash: lfgeG9DCm7c1G/2Oz65J8ky55H3Z601Vz4kv/lRpKIY=)
2: kxpaHhhuxaN-Jg9For9SY2Nccrk.roa (hash: Q31rgNDFAzRPHBiMS/f4s6A4eZqCkoNUT9MdgG2F6C8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/J83PK9CaINK63Tq2yMft-h_Vwsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:59:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1e:3e:a7:d7:29:1b:09:3a:3a:1d:38:82:89:15:31:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27cdcf2bd09a20d2badd3ab6c8c7edfa1fd5c2cc
Validity
Not Before: Oct 26 02:00:13 2025 GMT
Not After : Oct 27 02:00:13 2025 GMT
Subject: CN=cd51d03afe5d07eaa235410132b22fb9d29069a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5a:1a:86:5a:90:f0:de:ec:d2:3e:61:a2:43:
a7:ee:8a:91:39:a9:e0:41:67:41:30:9c:58:8b:2b:
ad:ae:73:9b:bf:41:96:15:ce:06:55:9c:fb:7f:c5:
15:f2:09:34:d9:3b:2d:8a:2e:87:ea:a2:99:2e:68:
cc:20:ca:a2:4c:10:a6:59:f7:7f:ab:8f:30:b6:69:
6d:ba:50:7a:75:36:93:8b:85:82:44:b1:fa:cc:23:
f6:49:50:ce:ea:31:87:7c:45:40:15:00:7b:69:c6:
7f:8e:f3:4f:6d:27:c0:a0:8b:88:1d:54:32:55:4c:
4c:49:cb:b5:4e:b7:a5:fa:04:80:67:d8:5c:66:bf:
16:6b:ef:7e:e4:32:b2:e4:5e:c8:3c:f0:40:ea:89:
95:b4:58:1e:79:34:a8:bb:b8:85:d3:bf:d0:f2:d9:
fc:df:0d:9e:ea:f2:eb:cc:75:aa:ee:f0:8b:5e:0c:
87:0a:c0:be:62:46:d0:6d:62:a3:da:93:65:47:12:
39:47:4f:16:93:21:c1:f7:7c:6a:23:c5:9a:2d:12:
10:8e:ce:ef:97:76:77:4b:10:c0:ca:89:0d:24:ff:
e9:8a:6f:ff:f3:e2:7e:f8:45:2a:b1:c8:ad:85:05:
99:6d:67:8f:e8:bf:f5:4e:ee:a4:19:a7:91:fc:e0:
d9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:51:D0:3A:FE:5D:07:EA:A2:35:41:01:32:B2:2F:B9:D2:90:69:A3
X509v3 Authority Key Identifier:
keyid:27:CD:CF:2B:D0:9A:20:D2:BA:DD:3A:B6:C8:C7:ED:FA:1F:D5:C2:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J83PK9CaINK63Tq2yMft-h_Vwsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:6d:41:c4:df:08:9d:76:84:39:b1:8d:eb:aa:c7:15:03:2d:
96:8d:8e:c1:e9:9c:c9:f4:56:77:23:1f:0c:98:b4:ac:d5:a8:
4f:0a:45:ec:cc:64:75:f5:48:14:a6:c5:e0:d3:cb:08:b9:8f:
3e:fb:1f:01:39:07:60:01:61:7a:ef:a5:e4:3f:ce:ac:98:79:
cd:0e:ac:08:42:d5:4e:0d:af:70:8e:d1:57:be:95:91:95:f2:
73:b8:77:90:6f:f0:1b:77:ed:49:2e:ba:95:79:0d:52:c6:16:
9b:24:f5:fa:67:b9:62:00:f5:f0:12:1e:67:1b:d1:d4:cc:05:
cf:88:31:da:37:7b:a4:62:76:38:5b:bd:15:b9:f7:e4:06:87:
33:87:1a:43:81:77:b9:1d:60:61:e4:43:81:fd:ba:2f:5c:d9:
58:24:cd:78:30:db:15:f5:42:69:86:07:9e:ff:04:45:8b:41:
a2:18:8a:c2:78:b1:db:02:2e:75:0b:71:2f:f3:35:b5:41:9a:
84:c0:68:ee:5a:ee:67:cb:c9:60:f1:18:d1:a3:42:97:97:af:
75:b3:7d:a0:2b:36:9f:89:d4:d0:04:08:7f:4c:4b:9f:07:d8:
80:31:d6:f9:39:ae:d5:8a:1d:2a:f4:71:17:c6:ed:6e:3a:a4:
84:1f:aa:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 04:23:52 2025 by rpki-client