Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/f3994e-0b10-4383-b34c-eb6b13c5e268/1/bDg245a8UGRDYGuf1zN6kg5x3tE.mft
File: bDg245a8UGRDYGuf1zN6kg5x3tE.mft (raw, json)
Hash identifier: MQM273EYe4zVRSFd38UcN0jCEC1gg64X7yb+Wqn/Syw=
Subject key identifier: C0:0B:68:8E:D8:60:71:72:4D:C1:A4:2E:01:FB:1B:6F:1B:D7:DE:EF
Authority key identifier: 6C:38:36:E3:96:BC:50:64:43:60:6B:9F:D7:33:7A:92:0E:71:DE:D1
Certificate issuer: /CN=6c3836e396bc506443606b9fd7337a920e71ded1
Certificate serial: 019A1D62C5A9104728ACA06AE7A2FC88B99B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bDg245a8UGRDYGuf1zN6kg5x3tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/f3994e-0b10-4383-b34c-eb6b13c5e268/1/bDg245a8UGRDYGuf1zN6kg5x3tE.mft
Manifest number: 1575
Signing time: Sat 25 Oct 2025 22:00:03 +0000
Manifest this update: Sat 25 Oct 2025 22:00:03 +0000
Manifest next update: Sun 26 Oct 2025 22:00:03 +0000
Files and hashes: 1: bDg245a8UGRDYGuf1zN6kg5x3tE.crl (hash: P3G8k32QvDUTWg5OEfKcy9xRMZNrxi3OCNJpYPaFd+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/f3994e-0b10-4383-b34c-eb6b13c5e268/1/bDg245a8UGRDYGuf1zN6kg5x3tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/f3994e-0b10-4383-b34c-eb6b13c5e268/1/bDg245a8UGRDYGuf1zN6kg5x3tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/bDg245a8UGRDYGuf1zN6kg5x3tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:59:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1d:62:c5:a9:10:47:28:ac:a0:6a:e7:a2:fc:88:b9:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c3836e396bc506443606b9fd7337a920e71ded1
Validity
Not Before: Oct 25 22:00:03 2025 GMT
Not After : Oct 26 22:00:03 2025 GMT
Subject: CN=c00b688ed86071724dc1a42e01fb1b6f1bd7deef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e2:0f:0b:ca:50:22:f6:40:d2:10:12:7f:44:
16:9a:27:51:e7:a6:05:47:97:11:17:94:f4:c0:93:
73:de:be:d1:9f:f2:fe:9e:7c:4c:77:31:b2:48:77:
99:32:c2:1c:9f:16:b5:b8:92:1e:d5:27:00:0b:1a:
fd:2e:eb:3e:38:74:7b:35:5d:fe:be:cc:45:5f:d6:
ba:28:05:c1:9d:d5:3f:da:2f:10:07:a8:93:e4:4b:
ed:b5:2b:c6:c4:5c:54:f4:1e:f9:cd:b5:eb:62:a2:
8f:10:7c:bb:4e:d7:97:5a:66:64:07:9d:61:69:d8:
69:42:dc:0d:42:82:ff:2b:32:25:cc:49:ae:e4:c6:
95:7d:7d:07:37:d1:a7:e6:65:4e:82:16:80:5e:75:
53:ff:5d:dd:f4:dc:75:c2:97:f0:ff:82:92:94:99:
6a:c1:e7:6d:2c:33:fd:a1:00:ae:c3:d8:16:8d:6e:
dc:d1:f7:0a:ab:62:c0:43:82:16:52:ab:60:5e:86:
e2:2d:bb:19:67:4f:74:f8:71:3f:71:cf:5a:66:6d:
59:08:2b:dd:e6:20:43:b5:a7:84:ad:63:de:41:88:
c1:0a:72:bf:08:64:ac:fb:e4:92:04:c6:66:af:31:
25:a8:27:80:36:2a:a4:8d:99:17:a3:06:7f:4d:17:
75:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:0B:68:8E:D8:60:71:72:4D:C1:A4:2E:01:FB:1B:6F:1B:D7:DE:EF
X509v3 Authority Key Identifier:
keyid:6C:38:36:E3:96:BC:50:64:43:60:6B:9F:D7:33:7A:92:0E:71:DE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bDg245a8UGRDYGuf1zN6kg5x3tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/f3994e-0b10-4383-b34c-eb6b13c5e268/1/bDg245a8UGRDYGuf1zN6kg5x3tE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/f3994e-0b10-4383-b34c-eb6b13c5e268/1/bDg245a8UGRDYGuf1zN6kg5x3tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:7d:7e:1d:05:8a:27:21:ba:5e:72:f2:30:d3:6e:c4:46:60:
15:22:4e:1d:4a:95:be:95:ea:af:9d:a7:e9:a5:5f:eb:76:06:
fd:4d:61:83:89:a1:69:72:45:ad:e3:ed:38:aa:12:ab:aa:e2:
58:2d:0d:03:5a:1a:7b:98:2a:ed:72:97:19:f3:60:0b:90:87:
6d:6e:01:52:4b:db:03:f2:35:e2:65:44:ed:64:dc:ea:c9:c9:
c0:be:69:c9:4f:e6:48:61:74:fc:d3:9b:e7:bc:7c:5d:31:e7:
f1:41:e7:c4:7b:ff:72:c1:e9:47:a1:ab:1b:f9:9e:b1:eb:79:
2f:b6:70:46:39:c1:b1:67:1b:a3:8e:bb:5f:85:39:a8:26:2a:
e1:69:7e:0f:72:e0:27:a0:05:a6:7b:d9:60:59:90:3d:3c:e2:
b6:de:db:c9:94:63:58:ae:cc:40:2d:7c:7e:25:ba:b6:48:7f:
40:2b:9a:73:af:79:c5:85:dc:cb:62:d7:fb:63:14:0b:ab:46:
1b:98:1a:b1:fb:51:7d:b2:f8:72:ff:c4:76:9c:34:07:ac:45:
4a:f6:e0:d9:c9:0b:1f:f1:79:98:45:42:9a:b6:6a:91:e2:db:
1a:01:1b:37:cd:be:0d:f1:fd:a2:3f:e5:27:b7:bf:cd:e5:7f:
1d:d9:e2:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 01:05:27 2025 by rpki-client