Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
File: Cl9hKRQr0Kncad_UAkif8l9bPvI.mft (raw, json)
Hash identifier: epmysWIB5x+LW3XLYH4HeIzn28ybcfr8br00iK0vl3o=
Subject key identifier: 08:E9:5B:C7:50:E1:C3:CC:C1:2A:C9:82:92:0A:CC:B8:A5:94:23:C7
Authority key identifier: 0A:5F:61:29:14:2B:D0:A9:DC:69:DF:D4:02:48:9F:F2:5F:5B:3E:F2
Certificate issuer: /CN=0a5f6129142bd0a9dc69dfd402489ff25f5b3ef2
Certificate serial: 019A71B8EC40DE3849658DC876FAC7536A45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cl9hKRQr0Kncad_UAkif8l9bPvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
Manifest number: 171E
Signing time: Tue 11 Nov 2025 07:02:15 +0000
Manifest this update: Tue 11 Nov 2025 07:02:15 +0000
Manifest next update: Wed 12 Nov 2025 07:02:15 +0000
Files and hashes: 1: Cl9hKRQr0Kncad_UAkif8l9bPvI.crl (hash: 8jb3HatvJzrzgYblgDx9EE+TZe9yg4mAFbzRP6vIrnw=)
2: CuosGZsAQa_atOUfAfS4SUVwI3o.roa (hash: Ah8ug2ZnqIvKy7wR+jjWOatqPL6Ooi9wmYyJPajHlvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cl9hKRQr0Kncad_UAkif8l9bPvI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:ec:40:de:38:49:65:8d:c8:76:fa:c7:53:6a:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a5f6129142bd0a9dc69dfd402489ff25f5b3ef2
Validity
Not Before: Nov 11 07:02:15 2025 GMT
Not After : Nov 12 07:02:15 2025 GMT
Subject: CN=08e95bc750e1c3ccc12ac982920accb8a59423c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:15:ff:b7:18:5a:38:1f:2d:87:1f:57:0e:d9:
a4:cc:7d:5e:78:85:c2:ce:8a:1e:01:d4:ec:72:9d:
f7:8d:88:7b:ad:f0:81:af:e1:72:a4:c1:f6:ec:4a:
6f:7e:ff:62:d3:4a:d2:9c:cc:f2:5f:e7:7d:98:d8:
53:eb:81:35:2a:89:2f:39:89:1c:4f:a2:de:88:f3:
52:30:da:71:57:7e:ce:4d:16:77:d6:a3:e1:1f:02:
e1:c9:50:68:91:cc:52:49:67:15:bb:f7:10:8a:cf:
41:12:1d:f9:fc:4e:01:8a:6f:27:80:db:8b:0d:03:
ed:07:fb:f3:59:69:c0:60:ce:5b:a9:81:c0:ac:05:
c1:bc:8a:f1:8b:76:fb:43:a3:6c:1b:ba:47:e8:3a:
90:01:10:9e:e8:46:da:ed:29:e9:3b:51:c0:91:24:
f7:74:0c:2a:5f:92:26:e3:f5:c6:37:2d:cc:56:c9:
c8:5f:90:d6:96:5c:90:4e:42:bf:09:ca:b9:17:a5:
eb:b8:0d:18:bf:e9:7c:a8:5f:19:75:8e:04:d4:31:
78:91:0a:0b:01:7d:12:ae:22:34:60:fd:36:8e:8f:
44:5c:43:86:10:95:f6:50:d8:9d:6b:f9:aa:b5:3e:
c8:04:7c:ea:16:61:ed:b1:05:22:c8:33:9c:98:9b:
42:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:E9:5B:C7:50:E1:C3:CC:C1:2A:C9:82:92:0A:CC:B8:A5:94:23:C7
X509v3 Authority Key Identifier:
keyid:0A:5F:61:29:14:2B:D0:A9:DC:69:DF:D4:02:48:9F:F2:5F:5B:3E:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cl9hKRQr0Kncad_UAkif8l9bPvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:ba:46:3b:89:dc:55:2a:f6:27:a8:15:a8:7d:6f:09:0f:10:
6f:26:f4:e8:a9:a7:a1:26:a9:aa:37:8b:a7:6c:28:00:7e:b5:
10:a1:88:46:ee:a8:a1:ac:2b:1e:d6:99:09:f2:62:3c:31:e3:
c1:55:a8:45:a9:0b:e2:a6:df:07:82:a6:df:0d:e2:15:88:e9:
d5:6b:51:17:a5:8c:36:16:ae:0f:5d:84:f5:d2:55:c4:50:c4:
ba:ec:6d:d5:e2:fa:24:10:6b:28:b5:04:ab:73:5a:5b:ef:d1:
c8:15:3a:ac:7d:1d:3e:f0:7f:18:21:a7:e6:c2:96:8b:b3:ec:
ba:7d:09:48:5f:05:7c:6f:d9:d3:08:b2:cd:15:89:16:71:c3:
0b:80:ed:53:4a:bf:0e:e3:49:5e:4b:e8:da:cf:6b:1b:17:24:
af:29:ff:56:a5:d7:20:25:00:28:33:64:55:43:3c:af:88:8f:
b6:93:d7:4e:ea:fc:0d:92:a0:b0:09:a9:6f:01:c7:af:c1:4a:
ad:5c:e7:ec:36:96:69:d5:b3:20:e8:c6:e7:7e:e2:99:9b:e3:
3c:eb:c7:4e:e1:40:ff:33:16:9c:5c:65:d2:f7:1c:c3:a1:df:
0a:79:c6:90:f2:18:4b:c9:c6:2e:9c:ad:b8:3e:a2:17:4f:0f:
de:a3:38:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:53:29 2025 by rpki-client