Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
File: jR4EozwylZxnL0X0a-EIZLgemEo.mft (raw, json)
Hash identifier: dk7DhV4GvxUWCRIwTPx2wvic8jELpnLo8ETQFknH0iI=
Subject key identifier: 58:46:B2:F7:0B:01:01:31:7F:DF:64:B2:78:98:7C:E7:47:88:88:B7
Authority key identifier: 8D:1E:04:A3:3C:32:95:9C:67:2F:45:F4:6B:E1:08:64:B8:1E:98:4A
Certificate issuer: /CN=8d1e04a33c32959c672f45f46be10864b81e984a
Certificate serial: 019A725CC21E15428B14FE84F7ABCD072A8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
Manifest number: 171A
Signing time: Tue 11 Nov 2025 10:01:12 +0000
Manifest this update: Tue 11 Nov 2025 10:01:12 +0000
Manifest next update: Wed 12 Nov 2025 10:01:12 +0000
Files and hashes: 1: jR4EozwylZxnL0X0a-EIZLgemEo.crl (hash: 4X2TMlfMpyXWO55JVnI0dV/z8VqKs21Z7a6DCLTb5Dw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:c2:1e:15:42:8b:14:fe:84:f7:ab:cd:07:2a:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1e04a33c32959c672f45f46be10864b81e984a
Validity
Not Before: Nov 11 10:01:12 2025 GMT
Not After : Nov 12 10:01:12 2025 GMT
Subject: CN=5846b2f70b0101317fdf64b278987ce7478888b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:27:4e:4d:32:87:13:09:58:b7:fb:23:6d:ed:
d1:c6:87:d4:95:39:13:0e:ad:2b:00:39:d1:19:c4:
89:5d:60:10:84:20:ef:e0:fb:77:e8:90:05:b7:c6:
f2:50:91:46:0b:4b:06:75:f7:2e:f5:0c:a6:71:eb:
ad:49:ac:cb:24:1d:28:5b:9d:67:08:07:b4:cc:e9:
24:41:f4:fc:5a:e6:1e:2a:df:6e:62:6e:d6:29:cd:
80:bb:c3:e4:b6:13:02:6a:71:8a:6e:ce:34:8d:19:
ff:26:dc:66:3f:89:9c:8c:0a:92:e0:23:28:34:c2:
5b:f2:57:39:16:aa:4a:a3:3b:5d:11:f7:42:a7:73:
c6:a7:24:93:1a:70:c5:80:e5:73:0f:7a:f9:38:84:
9d:9b:d7:63:6e:cd:29:77:79:2e:0f:85:7c:77:f8:
dc:75:d2:c8:3c:a8:33:39:7a:39:93:3f:61:5c:55:
69:da:0c:27:2f:ec:11:1e:3b:b1:82:fb:f2:48:5a:
f7:55:e2:0b:11:71:ac:67:76:2a:72:81:fc:74:b3:
af:bd:d6:02:c5:6f:53:ac:e5:43:96:12:6e:b4:1d:
73:a0:99:e5:ca:fc:2a:8e:ad:a3:64:62:49:74:9d:
74:05:de:37:1a:b4:d6:c6:15:2e:59:e2:5e:bd:84:
f4:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:46:B2:F7:0B:01:01:31:7F:DF:64:B2:78:98:7C:E7:47:88:88:B7
X509v3 Authority Key Identifier:
keyid:8D:1E:04:A3:3C:32:95:9C:67:2F:45:F4:6B:E1:08:64:B8:1E:98:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:16:9b:bd:3c:6f:a6:cc:09:9c:b6:28:7a:92:3b:7f:9f:ea:
3e:47:2f:e5:3a:5b:d9:fb:11:0d:3d:4a:c7:3e:ac:af:f9:0e:
cc:fb:8a:fd:66:cf:72:47:2b:69:44:63:31:54:dc:4d:bb:1b:
2a:83:52:66:62:45:2a:b3:57:a9:cf:72:40:a2:e5:64:79:f7:
05:9e:ed:f8:ba:c3:25:08:1b:af:b5:91:b2:7f:c9:64:57:e7:
93:f0:57:26:70:3d:ed:08:d8:99:ea:8a:cc:7c:01:52:db:b0:
cc:ce:8d:91:06:a4:6a:9e:fe:33:dd:18:92:61:00:4b:5f:d7:
6d:b9:8f:c1:13:1a:5a:81:9a:b2:15:47:23:04:71:cb:f0:01:
a0:bd:ef:c8:a0:0f:3a:ba:b0:ba:52:d1:6e:9f:43:bd:51:40:
ea:5a:79:5b:35:0c:10:12:10:53:95:39:ca:ee:96:8b:ab:ff:
f2:01:9b:54:e3:02:da:21:5f:5e:12:1a:b9:2c:d2:95:45:bc:
be:69:7f:54:89:7f:91:86:90:ec:e8:2d:5c:0b:d4:78:bf:da:
db:cf:b7:5c:fb:c7:92:13:70:64:0f:ae:e9:87:2d:25:34:22:
55:b0:7d:c9:a3:c5:cb:c5:cd:1c:4b:1a:b0:41:4d:92:47:8b:
f9:cb:ef:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:52:29 2025 by rpki-client