Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/0a18f6-0b80-40e9-82ae-8df124cf0ea9/1/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.mft
File: RQ9eqXd4ka1M9BKK5zQE8YvWdVU.mft (raw, json)
Hash identifier: Pxvj4FbvuIJ3JqUInTSRQbeNwwMEgxo1ouXqtHpogY4=
Subject key identifier: 0C:69:5F:D1:1C:E3:C1:26:39:9E:E0:59:F9:BD:CE:3A:CD:F7:45:4A
Authority key identifier: 45:0F:5E:A9:77:78:91:AD:4C:F4:12:8A:E7:34:04:F1:8B:D6:75:55
Certificate issuer: /CN=450f5ea9777891ad4cf4128ae73404f18bd67555
Certificate serial: 019A71809033BE82A02887A1396FEA610294
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/0a18f6-0b80-40e9-82ae-8df124cf0ea9/1/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.mft
Manifest number: 32
Signing time: Tue 11 Nov 2025 06:00:41 +0000
Manifest this update: Tue 11 Nov 2025 06:00:41 +0000
Manifest next update: Wed 12 Nov 2025 06:00:41 +0000
Files and hashes: 1: RQ9eqXd4ka1M9BKK5zQE8YvWdVU.crl (hash: EiQf5neEN9RqqvHP+cJXTaJchDPCoHaQBNudzfXpqCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/0a18f6-0b80-40e9-82ae-8df124cf0ea9/1/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/0a18f6-0b80-40e9-82ae-8df124cf0ea9/1/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 06:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:80:90:33:be:82:a0:28:87:a1:39:6f:ea:61:02:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=450f5ea9777891ad4cf4128ae73404f18bd67555
Validity
Not Before: Nov 11 06:00:41 2025 GMT
Not After : Nov 12 06:00:41 2025 GMT
Subject: CN=0c695fd11ce3c126399ee059f9bdce3acdf7454a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6b:39:f1:33:a2:8e:ed:86:6b:46:b6:3f:6a:
bd:71:34:5b:8a:c4:78:2d:d9:3d:c6:c7:3e:ee:45:
36:c4:07:20:c7:a3:3d:da:2e:e7:a0:02:49:ed:0c:
0b:19:fc:d0:ee:84:ea:3d:09:e2:ea:39:3b:90:b7:
f0:54:1d:99:e2:cf:6b:e0:ad:8a:a2:45:8a:14:47:
ca:41:1c:cc:64:c9:65:8d:ed:85:40:23:a3:9c:86:
b5:d6:96:bc:b5:2c:bf:aa:cc:1d:42:ad:77:ad:17:
a3:cc:63:72:9f:01:a6:41:3e:d0:71:81:48:62:06:
2b:67:17:50:ad:4f:29:8b:bc:60:ce:53:f8:5d:a2:
53:ec:8e:27:a0:62:5a:18:20:c8:07:fe:b5:fc:a1:
e5:09:c0:90:de:51:92:09:27:1a:fe:fd:db:f0:4e:
6a:a0:9d:a9:f4:40:63:e9:35:98:76:51:79:5d:0f:
35:96:49:86:7e:23:92:8d:55:08:34:e9:1e:36:f1:
eb:23:13:3e:8f:a9:68:32:b5:e1:45:db:86:f8:47:
27:fc:37:70:66:e9:f4:16:ce:1c:3a:6a:ec:b3:ee:
8a:8d:d1:5a:ea:d1:b4:1f:55:e8:bb:f5:53:80:fb:
4d:b0:1d:b1:de:3f:c4:db:23:c2:25:3b:1f:25:a9:
8c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:69:5F:D1:1C:E3:C1:26:39:9E:E0:59:F9:BD:CE:3A:CD:F7:45:4A
X509v3 Authority Key Identifier:
keyid:45:0F:5E:A9:77:78:91:AD:4C:F4:12:8A:E7:34:04:F1:8B:D6:75:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/0a18f6-0b80-40e9-82ae-8df124cf0ea9/1/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/0a18f6-0b80-40e9-82ae-8df124cf0ea9/1/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:32:61:34:b5:17:1e:32:87:4a:a7:d5:7a:75:c3:4a:78:6e:
cc:3d:d7:eb:01:b2:d9:ed:26:10:12:8f:e1:b5:0c:2a:62:f1:
49:62:1a:ad:7a:85:6f:70:df:08:65:44:bc:34:cc:c1:d0:7f:
60:0a:19:4f:a2:a9:19:b4:0c:b6:8c:32:b7:df:c8:5c:af:4f:
1d:1d:5a:91:63:99:82:95:8a:dd:ac:14:a0:70:8c:89:95:a1:
3d:83:d6:f9:77:d3:33:1e:0c:b6:ca:ed:76:31:45:de:1c:df:
81:04:1e:2b:1d:9d:51:08:94:ef:f7:49:15:de:13:fb:da:c7:
af:d7:a1:6d:8b:4d:d4:65:4c:86:91:6e:ae:91:dc:a4:72:e7:
d3:c3:27:ac:bb:2f:f4:c8:f8:70:d6:c4:fd:8f:0e:54:d7:7a:
33:47:76:42:18:96:94:9b:eb:e5:6d:ff:4c:84:9a:c3:85:64:
8a:20:10:6a:ec:3e:84:07:81:2a:aa:b5:77:27:9f:9c:92:b4:
e3:2b:31:33:a1:fa:34:aa:7d:82:33:a2:e5:7d:59:09:d9:c6:
9c:2b:32:2d:c9:e6:25:d7:f6:5d:4f:96:01:fe:dc:b0:87:c3:
f8:0e:d6:f7:ed:3a:09:6c:48:f9:e6:72:46:5d:1d:04:8a:49:
c6:59:4e:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:24:43 2025 by rpki-client