Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
File: 09XiCPMtcw1DHUpNTtgJWx59lDE.mft (raw, json)
Hash identifier: TXpiqRogdShKAxNA1Te3faoKObahrIzvm8n3MmNZEBI=
Subject key identifier: 9E:61:6B:D3:99:CD:A2:7E:61:71:E3:74:EE:89:8B:54:D9:05:BD:6F
Authority key identifier: D3:D5:E2:08:F3:2D:73:0D:43:1D:4A:4D:4E:D8:09:5B:1E:7D:94:31
Certificate issuer: /CN=d3d5e208f32d730d431d4a4d4ed8095b1e7d9431
Certificate serial: 019A71B8280F931F132C75AEAE81C4B41A8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/09XiCPMtcw1DHUpNTtgJWx59lDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
Manifest number: 024C
Signing time: Tue 11 Nov 2025 07:01:25 +0000
Manifest this update: Tue 11 Nov 2025 07:01:25 +0000
Manifest next update: Wed 12 Nov 2025 07:01:25 +0000
Files and hashes: 1: 09XiCPMtcw1DHUpNTtgJWx59lDE.crl (hash: NKZCXHyB1Nze/hF904FtwjhSp+ZHp/lUwJEb6abn5Co=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/09XiCPMtcw1DHUpNTtgJWx59lDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:28:0f:93:1f:13:2c:75:ae:ae:81:c4:b4:1a:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3d5e208f32d730d431d4a4d4ed8095b1e7d9431
Validity
Not Before: Nov 11 07:01:25 2025 GMT
Not After : Nov 12 07:01:25 2025 GMT
Subject: CN=9e616bd399cda27e6171e374ee898b54d905bd6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:98:48:a7:a7:7b:32:38:bf:f3:ed:53:85:be:
fc:56:51:75:79:7c:d5:10:e7:7f:f8:6e:2e:07:9a:
e6:76:23:36:5c:b5:7c:d2:ae:35:72:db:f4:15:17:
75:3c:e3:68:80:e8:85:0b:b9:9c:9d:03:e7:68:d7:
c7:4d:11:61:14:bf:3f:3a:ea:c4:1b:d3:ec:53:2f:
54:9a:b5:ce:9a:60:32:5e:62:9e:8e:57:b1:06:69:
01:8e:e5:33:b8:f9:ed:79:95:df:ff:a1:74:04:18:
71:41:56:f8:5a:57:16:47:2d:d9:76:68:a9:f7:0e:
e6:68:01:cf:ad:0a:8f:a3:6e:26:37:ca:88:43:01:
39:a0:e6:f6:f3:e7:83:05:19:2a:5b:20:ac:36:03:
f1:3e:37:c3:bc:bc:57:33:3a:41:f6:ce:88:e7:30:
0d:72:aa:66:5d:d3:0b:4b:cc:ca:b9:f2:b0:22:01:
53:99:89:20:c3:a6:b8:a5:c9:09:d9:f0:66:9d:ce:
b7:14:f5:c3:80:53:47:07:e4:5c:e7:32:52:b7:69:
74:5d:6e:62:88:7a:08:f1:6b:03:95:ee:fe:2c:47:
d3:62:03:6c:c2:1d:13:a5:6a:1d:aa:1e:36:31:ff:
1b:6e:c6:8e:af:15:b3:e3:88:a5:58:d9:bc:53:ed:
fc:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:61:6B:D3:99:CD:A2:7E:61:71:E3:74:EE:89:8B:54:D9:05:BD:6F
X509v3 Authority Key Identifier:
keyid:D3:D5:E2:08:F3:2D:73:0D:43:1D:4A:4D:4E:D8:09:5B:1E:7D:94:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/09XiCPMtcw1DHUpNTtgJWx59lDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:e2:ea:0b:cf:c5:dd:f5:bd:01:49:a4:24:19:4a:7b:2c:b5:
99:de:68:d6:90:a8:76:5b:44:d8:4a:d7:f3:56:6a:34:84:51:
ee:0d:54:8d:6e:28:3c:9b:46:0b:d1:67:1f:77:ba:1b:8a:f7:
0b:a5:0a:5a:69:23:d2:9f:e6:24:90:15:27:02:51:06:e2:99:
b7:47:26:91:aa:98:d6:f2:04:7c:85:46:f7:e8:f0:39:b9:48:
15:83:e3:68:b7:10:af:31:62:bc:ff:37:64:e9:d8:d0:4f:2c:
19:9b:2a:69:aa:d5:89:a0:ff:40:0a:34:ce:1b:fa:4a:7d:1b:
c7:54:79:02:79:7e:ee:17:9b:58:77:db:4d:07:23:7d:84:de:
99:0d:83:2b:f8:87:fa:fb:b6:3b:92:6e:c2:3b:bb:c1:6b:ce:
71:65:f7:f9:8e:ab:f8:00:95:a8:b0:97:91:77:7a:2f:7c:28:
71:5d:5e:1b:51:cd:cb:b0:ca:70:45:d8:be:28:c6:59:9b:ad:
58:3c:48:2a:80:44:94:0e:2b:59:1f:ed:71:b4:b5:59:70:dc:
80:78:59:d5:b1:00:2e:58:31:87:d2:c4:e5:6c:b0:eb:c1:52:
2e:ca:81:0b:5a:90:69:d7:d8:92:40:10:cb:01:5e:2c:5b:30:
50:b9:74:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:09 2025 by rpki-client