Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
File: 4KM3CoQbiT57aPhqOTNjWC4QVkg.mft (raw, json)
Hash identifier: dw8LSqMEgYVaI4rwY348cxt8lOUPAp2XgH44bXI6MC8=
Subject key identifier: 34:32:16:20:C7:55:64:24:42:25:C1:29:F9:35:DA:8D:06:D7:BA:4B
Authority key identifier: E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
Certificate issuer: /CN=e0a3370a841b893e7b68f86a393363582e105648
Certificate serial: 019A7225FD2EE2E938D56A9CBFD9BB6E2C31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
Manifest number: 0BF9
Signing time: Tue 11 Nov 2025 09:01:23 +0000
Manifest this update: Tue 11 Nov 2025 09:01:23 +0000
Manifest next update: Wed 12 Nov 2025 09:01:23 +0000
Files and hashes: 1: 4KM3CoQbiT57aPhqOTNjWC4QVkg.crl (hash: Asn2i4etzg+CkCAN7KBByLkMOT/ieVvB+Fs+ycx+9Cc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:fd:2e:e2:e9:38:d5:6a:9c:bf:d9:bb:6e:2c:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0a3370a841b893e7b68f86a393363582e105648
Validity
Not Before: Nov 11 09:01:23 2025 GMT
Not After : Nov 12 09:01:23 2025 GMT
Subject: CN=34321620c75564244225c129f935da8d06d7ba4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c3:36:4a:e7:02:0d:0e:bf:06:e5:b3:74:a5:
e3:02:ce:e8:ef:38:48:4b:83:14:1e:88:10:7e:e3:
32:0a:f8:05:fd:ea:c1:2f:91:90:e8:51:e9:c3:2c:
89:14:17:29:ff:b0:99:af:9b:a2:9d:1c:ca:f5:06:
b2:d3:77:6a:95:bf:a3:d3:09:fa:95:be:da:b1:e0:
27:13:33:dd:a6:08:89:17:33:fd:7d:46:8c:da:74:
55:ca:a0:c4:1f:6c:61:b8:a1:81:ea:08:1f:5a:4d:
09:67:60:28:15:3d:ad:db:fa:ff:26:45:2f:eb:9a:
08:66:b8:8b:a5:e0:6b:75:f2:36:2d:6d:d7:bd:a6:
92:cb:9d:cb:2d:eb:cf:32:57:27:04:c3:ef:97:21:
91:85:83:87:31:55:25:4e:cf:15:bd:67:da:96:6b:
47:3a:cd:81:12:2c:ad:a0:79:98:76:33:26:d4:25:
12:a6:4d:74:35:38:bf:55:ec:bf:bf:15:ce:20:86:
ad:36:69:f4:4c:19:92:69:ed:48:e8:b6:57:36:95:
1b:1e:91:d0:89:0a:02:e7:66:3b:0d:c0:74:8a:d5:
ff:b3:38:d1:4d:b4:5d:80:0f:93:63:7e:5c:be:43:
46:bc:20:a6:41:5a:cd:77:d8:50:86:29:89:87:87:
3d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:32:16:20:C7:55:64:24:42:25:C1:29:F9:35:DA:8D:06:D7:BA:4B
X509v3 Authority Key Identifier:
keyid:E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:5b:81:81:69:02:e5:80:16:19:95:d0:bc:4c:c2:33:66:71:
be:ba:3a:cc:5e:9c:a2:55:2a:c7:0e:4f:93:9e:38:c8:e0:f4:
fd:72:9b:61:19:fe:b9:e9:bc:28:05:ec:6c:b1:93:3a:c5:76:
1a:7e:0c:7e:bd:91:e4:20:b8:ef:5f:9d:34:e1:7c:bc:90:d5:
65:9e:0a:27:a6:79:56:61:84:2e:ee:9f:c6:85:f4:b6:41:ea:
69:b5:27:aa:a1:bb:81:c8:31:16:0a:40:7d:aa:83:75:eb:0b:
03:d4:3e:d9:08:3b:1c:1b:2f:aa:1e:ec:d4:f8:35:f2:4b:f0:
fb:f6:d1:af:2e:bd:9a:97:eb:0c:c8:81:b1:8f:2a:3c:8b:7d:
83:ec:8b:a8:54:b8:d5:b1:b6:6b:03:9c:97:c1:8b:15:43:4c:
e8:e6:f9:84:97:12:b2:a6:5b:d9:db:53:03:f7:18:bb:e0:19:
39:91:05:4a:75:f8:95:ce:0f:f7:e8:0f:a0:cc:27:7b:36:7e:
b0:5b:7a:c2:bf:7f:23:55:94:d9:75:fc:1a:8c:99:cc:63:82:
0e:0b:39:c3:18:50:eb:a8:ff:f4:b2:93:d0:db:42:32:15:d2:
e4:b1:5d:16:fa:42:c3:01:a7:86:00:e4:be:4c:58:4e:06:a1:
1e:b5:3f:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:46 2025 by rpki-client