Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft
File: rIpdP4uUYpQnOEoSDHdHYFY611o.mft (raw, json)
Hash identifier: DtbQq4sILHrLFreqBI9ZFGbkOpeTsYq1+ToEY4Zaa8w=
Subject key identifier: CE:24:82:6A:A2:FE:A9:C0:D4:A0:83:2F:82:A7:F7:77:B8:4A:F3:0C
Authority key identifier: AC:8A:5D:3F:8B:94:62:94:27:38:4A:12:0C:77:47:60:56:3A:D7:5A
Certificate issuer: /CN=ac8a5d3f8b94629427384a120c774760563ad75a
Certificate serial: 019A2C31AF5A7B9CCE3CEB72590B751331F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIpdP4uUYpQnOEoSDHdHYFY611o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft
Manifest number: 10D8
Signing time: Tue 28 Oct 2025 19:00:44 +0000
Manifest this update: Tue 28 Oct 2025 19:00:44 +0000
Manifest next update: Wed 29 Oct 2025 19:00:44 +0000
Files and hashes: 1: rIpdP4uUYpQnOEoSDHdHYFY611o.crl (hash: BoiFga82ZIkhxYyQohlzG1J/eCUVmUWlRlLJr0/Ghu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft
rsync://rpki.ripe.net/repository/DEFAULT/rIpdP4uUYpQnOEoSDHdHYFY611o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 14:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2c:31:af:5a:7b:9c:ce:3c:eb:72:59:0b:75:13:31:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac8a5d3f8b94629427384a120c774760563ad75a
Validity
Not Before: Oct 28 19:00:44 2025 GMT
Not After : Oct 29 19:00:44 2025 GMT
Subject: CN=ce24826aa2fea9c0d4a0832f82a7f777b84af30c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7a:a5:e2:5c:58:6a:4d:7d:62:cc:36:01:97:
23:4d:72:bf:e5:4d:ea:39:ec:5c:26:e7:be:b0:f4:
25:b6:59:02:d2:ff:91:13:fb:c1:54:cd:1e:4f:de:
b1:81:df:8b:c6:21:12:79:07:c0:cb:c5:f2:67:aa:
3e:88:88:d5:a1:1c:3c:c7:b5:55:a6:b3:3d:ac:07:
30:70:c9:a3:8e:fa:3c:58:02:21:40:a8:71:5f:72:
81:fd:92:5c:b1:38:f0:1d:af:1c:ae:85:4f:9b:8e:
e4:bb:e4:67:69:4e:79:35:ac:2a:2a:4f:11:eb:a9:
78:3b:65:d8:4c:01:59:84:4e:ff:34:d5:80:01:a2:
51:5a:a8:96:71:12:83:ca:a6:0b:f6:9a:f5:ba:95:
29:ae:ca:c0:db:15:14:a0:7a:eb:b2:af:0f:ed:a1:
35:b7:7b:d3:15:2a:6d:64:df:ea:ac:bd:4e:8f:0f:
34:f3:d2:1a:f8:44:c6:5d:87:bb:9f:6b:aa:f9:aa:
be:37:a0:7f:8b:cb:68:13:ee:99:9e:a0:aa:60:79:
7a:92:53:20:37:ca:02:ef:5c:8f:a5:b5:cd:17:ff:
c1:ba:f7:de:cb:54:4b:23:5d:2d:54:21:f0:76:3d:
f1:1f:b4:10:94:ce:f0:de:7c:e0:a8:c5:56:c6:d8:
94:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:24:82:6A:A2:FE:A9:C0:D4:A0:83:2F:82:A7:F7:77:B8:4A:F3:0C
X509v3 Authority Key Identifier:
keyid:AC:8A:5D:3F:8B:94:62:94:27:38:4A:12:0C:77:47:60:56:3A:D7:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIpdP4uUYpQnOEoSDHdHYFY611o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:36:a5:74:c8:12:17:bf:61:b9:af:18:bc:e1:99:4b:29:c5:
75:3b:8f:49:e4:36:60:98:b1:11:e4:33:71:24:fb:d5:6d:6d:
14:17:d2:8c:70:02:61:a4:bc:b5:42:87:02:ac:09:da:c9:13:
38:c3:d3:75:66:4e:e5:4b:b6:49:9d:d6:f4:5a:16:45:84:d7:
c4:6d:ce:f5:6a:d4:00:47:e5:a4:4a:d3:f5:3a:19:41:bc:fe:
34:80:18:80:96:4c:9b:13:99:83:7e:db:40:01:00:05:c6:28:
4b:16:28:3a:15:81:e2:8c:73:b2:d0:e6:57:f6:7d:b9:23:7f:
f6:f7:88:18:1e:75:5d:06:a3:de:6d:89:dc:19:f4:9d:e4:b3:
20:40:97:dd:a3:b9:9f:b2:93:38:5d:0b:d2:75:13:ff:c4:39:
5e:89:7a:ac:35:33:94:d7:af:b0:65:e0:09:7a:db:61:0a:a2:
85:b5:42:34:23:b4:85:2b:0c:47:73:a9:1d:74:0a:86:9d:d9:
fd:6b:41:94:d4:0d:f9:c2:d0:12:1f:ca:aa:57:f4:fa:7b:49:
a7:9b:ad:b2:53:73:98:7e:26:18:f8:12:11:a2:19:89:0c:49:
ac:b2:3e:f3:0e:cb:38:ed:34:af:03:29:86:a9:6e:15:24:d8:
cc:74:e0:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 21:13:53 2025 by rpki-client