Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/299522-932c-487a-af3d-eb9300672ae4/1/0AvU1Wgs5gjifL4iGiZ37LUHSX0.mft
File: 0AvU1Wgs5gjifL4iGiZ37LUHSX0.mft (raw, json)
Hash identifier: Di8hU0uXNlNdROdWJTJ/7ULBRGYUBf+yZ6OGGu2ZVHM=
Subject key identifier: 19:DF:B5:7B:D8:42:6B:6E:CB:83:58:8E:FD:A6:12:01:F8:40:55:A7
Authority key identifier: D0:0B:D4:D5:68:2C:E6:08:E2:7C:BE:22:1A:26:77:EC:B5:07:49:7D
Certificate issuer: /CN=d00bd4d5682ce608e27cbe221a2677ecb507497d
Certificate serial: 019A725CC081132EC0C638F862C55F98760A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0AvU1Wgs5gjifL4iGiZ37LUHSX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/299522-932c-487a-af3d-eb9300672ae4/1/0AvU1Wgs5gjifL4iGiZ37LUHSX0.mft
Manifest number: 165B
Signing time: Tue 11 Nov 2025 10:01:12 +0000
Manifest this update: Tue 11 Nov 2025 10:01:12 +0000
Manifest next update: Wed 12 Nov 2025 10:01:12 +0000
Files and hashes: 1: 0AvU1Wgs5gjifL4iGiZ37LUHSX0.crl (hash: MFbzdhu/oPxDwLmDlsD91cc2wIjzb4RtV8HMlTRt9P0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/299522-932c-487a-af3d-eb9300672ae4/1/0AvU1Wgs5gjifL4iGiZ37LUHSX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/299522-932c-487a-af3d-eb9300672ae4/1/0AvU1Wgs5gjifL4iGiZ37LUHSX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0AvU1Wgs5gjifL4iGiZ37LUHSX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:c0:81:13:2e:c0:c6:38:f8:62:c5:5f:98:76:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d00bd4d5682ce608e27cbe221a2677ecb507497d
Validity
Not Before: Nov 11 10:01:12 2025 GMT
Not After : Nov 12 10:01:12 2025 GMT
Subject: CN=19dfb57bd8426b6ecb83588efda61201f84055a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:02:50:fb:96:5b:ef:ba:03:74:56:ed:88:fb:
6f:90:12:1b:ef:d6:e0:f1:76:1b:25:6a:ac:ec:9b:
fb:6c:cb:b8:61:7e:2c:da:f1:0c:0a:ee:e8:a5:9d:
f0:23:4a:83:3f:54:e2:31:52:e6:20:1a:22:6e:f5:
eb:2d:12:37:5e:17:94:49:57:04:6d:09:d6:44:63:
3e:10:55:d1:d0:70:a3:ca:9b:e9:98:2a:f5:d5:63:
8c:76:21:aa:2a:6b:3f:00:0f:30:c8:c3:60:dd:7a:
75:e4:f2:75:3b:a1:be:b5:ab:92:ad:2c:11:49:e6:
02:02:5f:42:65:ac:94:2a:26:87:b2:72:9a:db:6c:
87:9f:e9:f7:2a:9b:22:50:ee:b6:c9:0a:03:4f:9e:
d3:2d:41:ac:c0:e9:8d:42:be:34:29:77:58:2c:18:
19:04:53:b6:d3:35:ac:4c:e4:0f:ea:6c:cf:b7:b1:
77:e8:9d:57:2b:9d:68:91:51:bd:37:05:b6:7e:d5:
4a:4a:06:5b:46:e5:c2:7c:3a:5d:78:5a:1c:e0:0c:
f3:c8:68:c8:f0:9a:7e:0a:01:1e:e6:e9:23:46:d9:
12:e5:4c:a3:40:da:df:a4:9e:11:c4:bf:c0:98:22:
b6:a7:18:1f:6e:f2:1a:e0:2c:24:51:ee:fa:f7:f6:
10:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:DF:B5:7B:D8:42:6B:6E:CB:83:58:8E:FD:A6:12:01:F8:40:55:A7
X509v3 Authority Key Identifier:
keyid:D0:0B:D4:D5:68:2C:E6:08:E2:7C:BE:22:1A:26:77:EC:B5:07:49:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0AvU1Wgs5gjifL4iGiZ37LUHSX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/299522-932c-487a-af3d-eb9300672ae4/1/0AvU1Wgs5gjifL4iGiZ37LUHSX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/299522-932c-487a-af3d-eb9300672ae4/1/0AvU1Wgs5gjifL4iGiZ37LUHSX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:71:49:fc:da:4f:de:59:27:d6:39:9b:55:af:6f:6d:cd:41:
10:2b:32:18:06:a4:ad:99:85:19:65:ce:f0:e3:61:73:ce:52:
81:04:30:8e:99:09:26:47:c2:7b:a3:34:b4:84:92:5d:df:41:
fc:de:f8:9c:29:aa:1a:dd:d3:97:a7:f5:44:6d:2d:f8:72:3c:
65:7e:14:33:f9:e1:ad:9f:a9:ff:2f:e5:e7:59:fb:fb:bb:68:
70:80:bc:3c:c2:f3:12:ab:35:1f:45:33:7b:86:b1:c3:75:4f:
f1:f4:ee:55:86:e1:3b:8b:f7:3f:42:bd:30:98:c5:87:4d:5c:
c6:7e:69:87:fe:58:61:8c:99:33:03:73:0e:89:bf:86:a1:22:
fc:a2:de:73:2c:c9:66:19:a4:d5:14:66:05:89:d9:80:bb:25:
62:f6:e8:df:a9:4e:ed:e9:34:e8:28:89:6c:61:4e:e0:53:e4:
6e:19:98:a5:6b:68:bc:0f:d5:0d:7a:45:23:4b:f2:d5:69:a0:
8b:02:05:5a:81:88:60:2b:5d:21:b7:69:be:ed:2e:a3:c6:b4:
aa:34:3e:64:a2:ca:21:8f:ca:d7:a7:6e:c0:68:96:a6:ba:fd:
da:0e:72:ae:b3:1a:29:71:09:fd:a3:e5:93:dd:71:01:17:3f:
76:05:f7:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:53:52 2025 by rpki-client