Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
File: 96wXOfUp2vTMczgkibgFl-ugf0E.mft (raw, json)
Hash identifier: bjoGrlhqs4pQMElDcEGvG8xJAMtzimPsH1U0p0qbSnw=
Subject key identifier: 29:70:DB:C5:D5:2D:5A:E5:2B:C6:3A:08:DE:40:F1:9F:9A:0E:F4:80
Authority key identifier: F7:AC:17:39:F5:29:DA:F4:CC:73:38:24:89:B8:05:97:EB:A0:7F:41
Certificate issuer: /CN=f7ac1739f529daf4cc73382489b80597eba07f41
Certificate serial: 019A725CBDA9FB665F7A9308317B85D2CD75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
Manifest number: 0958
Signing time: Tue 11 Nov 2025 10:01:11 +0000
Manifest this update: Tue 11 Nov 2025 10:01:11 +0000
Manifest next update: Wed 12 Nov 2025 10:01:11 +0000
Files and hashes: 1: 96wXOfUp2vTMczgkibgFl-ugf0E.crl (hash: muc3CaxsTwTb58KR365/wNKzJCrCqgeKadnZi8cPBCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:bd:a9:fb:66:5f:7a:93:08:31:7b:85:d2:cd:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7ac1739f529daf4cc73382489b80597eba07f41
Validity
Not Before: Nov 11 10:01:11 2025 GMT
Not After : Nov 12 10:01:11 2025 GMT
Subject: CN=2970dbc5d52d5ae52bc63a08de40f19f9a0ef480
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c5:fe:6c:dd:1c:28:ad:8f:43:ed:b8:a3:27:
a0:e3:f9:5c:87:6f:e3:80:2c:b9:84:b1:24:92:01:
2f:a2:8b:01:ae:72:f7:f8:54:f6:15:34:4d:9f:ce:
ad:e4:ca:75:4e:b7:ac:20:40:92:91:3c:3c:a9:64:
ee:0e:56:8d:18:ec:6c:6b:bc:35:5b:dd:bc:50:63:
c5:f7:4a:1a:30:72:a2:58:82:d9:9b:f2:22:72:c4:
d9:cf:1f:0c:e0:b9:50:08:06:5a:8a:af:31:c5:f2:
48:4a:bb:c9:99:27:9a:fd:d7:79:ff:56:91:03:3c:
19:62:38:2a:eb:ee:59:0a:c7:62:ea:c5:97:b7:99:
86:5f:26:0a:8b:ab:10:86:b9:e3:c9:4d:8a:96:cb:
0e:97:83:1d:b0:5e:86:74:94:eb:e5:5a:a7:90:e1:
f6:cf:77:ff:0e:70:7c:96:fc:35:86:1e:e0:b7:c1:
b5:dd:0c:a0:d3:37:97:4f:26:91:2f:52:a8:d8:71:
4f:dc:1d:75:2d:b2:82:34:55:06:d0:78:91:5d:03:
26:85:7a:75:8d:ed:65:2f:e4:fa:81:8e:d3:b8:df:
d4:c2:9c:8c:b8:6b:f0:56:57:f1:b0:0a:03:f1:a9:
42:f5:39:b3:c5:d4:ac:54:8f:e7:25:bb:45:f6:1b:
3c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:70:DB:C5:D5:2D:5A:E5:2B:C6:3A:08:DE:40:F1:9F:9A:0E:F4:80
X509v3 Authority Key Identifier:
keyid:F7:AC:17:39:F5:29:DA:F4:CC:73:38:24:89:B8:05:97:EB:A0:7F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:3c:c6:2e:11:34:b0:d3:b5:46:ca:4d:55:74:72:f4:9d:76:
64:32:8c:89:d4:83:12:7d:e8:c1:6d:c1:8b:f6:2b:52:ff:40:
c5:13:f0:9c:42:1c:1e:f2:3c:41:6f:95:f2:cb:cd:bb:16:f1:
e7:cc:fb:60:d5:79:4f:56:3d:11:c1:c6:43:56:6c:2e:63:45:
f6:48:9b:89:0a:22:4a:08:c4:e6:cb:b9:ef:2b:59:49:fb:4b:
25:95:94:ad:b0:27:fc:9d:27:39:48:6d:3c:4d:65:55:1f:f5:
36:f4:3f:23:c1:dc:09:fb:fb:2f:9f:8f:a8:a8:f1:15:45:f5:
52:71:bd:87:a0:47:93:8d:82:cc:14:ac:78:4b:e4:e5:d9:60:
e7:a3:6e:ce:3a:28:2c:bd:59:59:45:d0:f1:cb:20:3e:bd:25:
6f:b8:97:7a:74:e2:fe:34:67:f3:73:33:95:af:e9:7d:30:47:
a2:32:88:f9:dc:5f:93:95:7d:c7:f9:a6:02:8a:79:a6:62:e0:
63:71:d9:32:48:6c:a5:34:22:cb:5a:a8:22:44:af:16:07:8d:
ce:f4:37:71:67:ef:38:f3:f0:6c:0d:71:36:90:97:a7:77:fa:
2f:3b:5d:42:3a:be:e3:81:9a:ed:de:99:de:ab:6c:f4:75:57:
c1:e7:3b:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:36:21 2025 by rpki-client