Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
File: iX81rEgorqlfpdLYBNM6ewz_RYo.mft (raw, json)
Hash identifier: DlNzbqEoDU5q1A2kuNfkpHp1jp0dJCDEcOstpWqpYoo=
Subject key identifier: 0B:DF:DA:6B:C0:B0:98:7D:17:6A:C1:5A:18:F6:D8:B6:22:C5:4D:AF
Authority key identifier: 89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
Certificate issuer: /CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Certificate serial: 019A7149BF1F1B50346D0855F8A860F2E27A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
Manifest number: 05E0
Signing time: Tue 11 Nov 2025 05:00:49 +0000
Manifest this update: Tue 11 Nov 2025 05:00:49 +0000
Manifest next update: Wed 12 Nov 2025 05:00:49 +0000
Files and hashes: 1: iX81rEgorqlfpdLYBNM6ewz_RYo.crl (hash: zq8Yn1S/fFRRW8RHt1RpZmoNuvOL5UBFnlBGr5IaKZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:bf:1f:1b:50:34:6d:08:55:f8:a8:60:f2:e2:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Validity
Not Before: Nov 11 05:00:49 2025 GMT
Not After : Nov 12 05:00:49 2025 GMT
Subject: CN=0bdfda6bc0b0987d176ac15a18f6d8b622c54daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b8:a2:c1:ea:5c:68:dc:1d:42:1f:8c:7b:3c:
4b:53:ba:19:2a:6c:7e:c2:ad:90:fa:15:1f:3c:60:
e9:bc:23:e6:fc:f1:a7:28:18:48:59:a4:86:36:7f:
9c:97:84:75:0e:0b:55:fa:83:fd:9a:db:99:a3:4e:
f5:17:0f:f8:67:90:d0:cc:77:6b:53:1f:b8:d7:95:
0e:5b:63:17:a9:c6:6e:fb:14:a6:f7:44:c5:9c:f9:
5b:a5:a9:89:32:04:dc:bc:82:db:8b:09:31:d6:f6:
43:e4:5f:e9:eb:79:4a:50:f1:f5:55:ce:bb:fa:87:
ce:65:d9:ac:23:36:9a:eb:aa:d3:69:df:62:38:83:
00:02:c0:71:57:84:e7:02:e3:aa:aa:8f:e3:3d:d8:
42:c7:9d:f7:58:4a:07:f5:e2:ec:17:f4:d1:83:9c:
a7:6c:50:6c:90:fd:48:0a:13:06:36:52:0e:f1:c1:
26:8b:81:43:b3:12:f6:80:b6:cb:1f:12:66:dd:b6:
0f:27:70:88:b2:fa:8b:5a:99:00:89:4a:a6:6c:58:
4c:f1:0e:d1:ab:60:5c:2d:11:30:50:11:2f:23:d6:
7f:18:d9:3c:9f:dd:ea:69:70:ce:fe:4e:64:33:71:
24:a6:eb:33:97:94:96:6b:75:69:a6:ff:67:59:27:
d3:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:DF:DA:6B:C0:B0:98:7D:17:6A:C1:5A:18:F6:D8:B6:22:C5:4D:AF
X509v3 Authority Key Identifier:
keyid:89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:60:9b:f9:18:c2:2f:ce:3a:c5:7f:c5:72:55:81:26:ad:f8:
1a:1c:f6:86:3d:96:86:20:35:b3:b8:46:71:7c:de:10:7a:96:
cb:ff:a9:71:86:56:12:28:dd:20:a8:b7:ee:00:f6:9a:d6:ec:
95:de:8a:ec:88:dc:cc:2d:52:aa:c1:46:dc:cf:20:4e:f3:18:
34:06:4c:81:1b:79:91:d0:e2:cd:6e:71:e0:4d:f0:4e:a6:2a:
ab:58:46:ec:18:06:74:82:ba:16:c9:c3:ae:aa:0b:ed:1b:23:
97:b7:34:09:c8:7c:3b:f0:c9:bd:95:b4:d1:62:b6:d9:c5:a8:
18:26:e0:3b:ba:66:2c:6b:a0:42:87:8c:a8:7b:b3:30:5d:a6:
ad:9e:ff:3c:b5:eb:22:c7:9f:da:99:81:7b:14:18:10:b9:83:
55:53:5a:6d:f5:a0:3b:67:68:ed:2e:dc:e1:e7:88:55:98:64:
3c:1c:cd:82:dc:7d:f5:bf:05:01:54:76:89:36:05:76:d7:03:
30:75:f4:19:55:cf:81:9f:74:1e:1d:2f:06:0b:39:f4:b4:6e:
32:93:32:66:a5:72:6c:6e:d5:6d:82:23:9a:29:aa:d5:5a:77:
03:f6:88:4c:e7:1b:df:15:3b:aa:a2:cd:d7:64:c4:09:fa:3e:
04:ff:d5:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:56 2025 by rpki-client