Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
File: 1bFX6mgu908PHvZ_oekWDRfNLpM.mft (raw, json)
Hash identifier: sANQPrQn22KjLR/GO5+iz/4ZDuieFzvdjyKmKbz5+Hk=
Subject key identifier: 36:E3:79:64:7E:93:05:26:08:55:1D:6E:E8:5F:34:2D:B6:7D:EA:6C
Authority key identifier: D5:B1:57:EA:68:2E:F7:4F:0F:1E:F6:7F:A1:E9:16:0D:17:CD:2E:93
Certificate issuer: /CN=d5b157ea682ef74f0f1ef67fa1e9160d17cd2e93
Certificate serial: 019A71B869A3BD8F8C2D84672DFADA03311F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1bFX6mgu908PHvZ_oekWDRfNLpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
Manifest number: 1721
Signing time: Tue 11 Nov 2025 07:01:42 +0000
Manifest this update: Tue 11 Nov 2025 07:01:42 +0000
Manifest next update: Wed 12 Nov 2025 07:01:42 +0000
Files and hashes: 1: 1bFX6mgu908PHvZ_oekWDRfNLpM.crl (hash: yaUw5swaHhp+tTQyge4gGuJv9Kzm0zyDnYWNfwpLR5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
rsync://rpki.ripe.net/repository/DEFAULT/1bFX6mgu908PHvZ_oekWDRfNLpM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:69:a3:bd:8f:8c:2d:84:67:2d:fa:da:03:31:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5b157ea682ef74f0f1ef67fa1e9160d17cd2e93
Validity
Not Before: Nov 11 07:01:42 2025 GMT
Not After : Nov 12 07:01:42 2025 GMT
Subject: CN=36e379647e93052608551d6ee85f342db67dea6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:62:20:86:83:8c:cf:e5:ac:0b:13:ef:2f:90:
1c:72:32:19:9b:51:de:db:b9:37:ee:24:1d:d7:22:
6e:b3:b1:74:47:01:20:da:b3:5f:fd:55:b4:50:7c:
68:6b:72:76:4b:3a:6f:08:0f:6d:72:94:99:15:32:
1b:51:b8:24:6c:b4:fb:b7:80:9b:0f:ea:c1:eb:51:
ec:5d:b4:d3:61:3d:8a:3e:08:1b:5f:86:d3:6c:ce:
d7:5a:5c:ab:ba:e2:4a:e2:af:8a:9f:5a:01:9f:9a:
47:22:59:f1:d6:16:a4:83:8a:c5:bd:08:ab:6e:1a:
ad:d2:a9:21:a1:8f:1f:a1:f3:9e:09:21:81:2e:8e:
c2:ff:e8:b6:6a:fc:52:62:cc:6a:52:80:c4:08:f9:
b8:b8:df:66:aa:7d:f1:ad:a4:e2:bc:da:aa:4a:94:
38:2f:04:87:60:4b:95:7d:42:f3:88:66:76:2f:5a:
b9:28:2f:b3:0b:95:5f:19:61:a1:98:a0:33:54:11:
d6:24:10:da:f0:7a:1c:31:f2:a5:7b:60:df:e8:5a:
2c:c0:60:7d:9b:24:91:b5:29:0d:1c:77:44:50:c1:
58:2b:f0:15:2c:91:07:38:f8:56:6f:1a:50:75:73:
3a:80:ba:74:6d:18:38:23:78:17:be:e3:d1:76:20:
b8:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:E3:79:64:7E:93:05:26:08:55:1D:6E:E8:5F:34:2D:B6:7D:EA:6C
X509v3 Authority Key Identifier:
keyid:D5:B1:57:EA:68:2E:F7:4F:0F:1E:F6:7F:A1:E9:16:0D:17:CD:2E:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1bFX6mgu908PHvZ_oekWDRfNLpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:69:72:45:69:1c:2a:71:80:93:ac:23:b0:e3:5c:97:e7:fe:
0a:9c:dc:43:f5:21:73:46:0e:7e:52:37:a9:7d:87:e8:e1:7e:
72:bf:c9:fe:e9:b6:af:e3:80:9e:b4:33:f6:5c:de:f9:01:3b:
e4:1f:30:0b:22:11:55:a6:ba:74:20:16:fd:e5:4b:1b:f8:0b:
c5:cf:48:cb:fc:14:95:1b:28:23:bd:88:cb:ae:a0:a4:55:09:
d2:d7:bf:96:21:3f:79:46:94:19:81:ff:85:93:22:8e:2b:f7:
dd:ff:d2:6b:cb:18:b2:4d:c2:52:f3:c6:1f:f1:45:fe:f8:1e:
9b:52:b2:33:e4:e1:94:11:54:d2:c2:91:15:4e:02:9b:a9:e5:
ed:b3:4d:78:73:2e:9d:d9:c0:ca:d1:5e:ab:68:1a:d9:5b:a3:
33:83:4b:f4:ff:40:d9:69:89:5f:db:4d:71:7e:77:a4:99:4c:
47:88:ec:1e:83:f8:c8:70:99:d2:c8:34:03:76:75:29:1f:20:
a7:57:72:39:73:24:d1:d9:d9:f5:d6:21:41:3e:fb:cc:f6:51:
14:d6:62:6e:7c:8e:17:20:e7:37:ce:84:21:e5:28:cd:08:15:
7d:97:c2:ea:42:53:05:47:13:67:4d:52:fa:4b:95:2f:7b:93:
a1:e4:1e:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:38:14 2025 by rpki-client