Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/587b7b-071c-430b-9eb2-6ec62690b19b/1/mXIUjHNiwsk5m7OvdBWSxCUWxUc.mft
File: mXIUjHNiwsk5m7OvdBWSxCUWxUc.mft (raw, json)
Hash identifier: H7NzbqfzRHcqwyF4pIBnBwuIQD1AqBdcp1ckrqk9v9o=
Subject key identifier: E5:67:E1:32:53:4B:B1:B6:15:FF:48:12:03:87:DE:83:D9:90:41:B7
Authority key identifier: 99:72:14:8C:73:62:C2:C9:39:9B:B3:AF:74:15:92:C4:25:16:C5:47
Certificate issuer: /CN=9972148c7362c2c9399bb3af741592c42516c547
Certificate serial: 019A7301A4ED447E86B2B5984F939909FDA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXIUjHNiwsk5m7OvdBWSxCUWxUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/587b7b-071c-430b-9eb2-6ec62690b19b/1/mXIUjHNiwsk5m7OvdBWSxCUWxUc.mft
Manifest number: 125B
Signing time: Tue 11 Nov 2025 13:01:18 +0000
Manifest this update: Tue 11 Nov 2025 13:01:18 +0000
Manifest next update: Wed 12 Nov 2025 13:01:18 +0000
Files and hashes: 1: mXIUjHNiwsk5m7OvdBWSxCUWxUc.crl (hash: 4kEnw/G6XMpLNPuCCPZuw+sMVn0quc68Dx8fcQBp42w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/587b7b-071c-430b-9eb2-6ec62690b19b/1/mXIUjHNiwsk5m7OvdBWSxCUWxUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/587b7b-071c-430b-9eb2-6ec62690b19b/1/mXIUjHNiwsk5m7OvdBWSxCUWxUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mXIUjHNiwsk5m7OvdBWSxCUWxUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:a4:ed:44:7e:86:b2:b5:98:4f:93:99:09:fd:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9972148c7362c2c9399bb3af741592c42516c547
Validity
Not Before: Nov 11 13:01:18 2025 GMT
Not After : Nov 12 13:01:18 2025 GMT
Subject: CN=e567e132534bb1b615ff48120387de83d99041b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6d:99:24:8f:da:2a:65:87:4f:c1:ba:26:51:
dc:6b:aa:0f:39:59:27:de:c6:ef:5a:68:e9:9b:a8:
1c:75:73:11:b2:0f:ec:3f:07:e5:f6:6c:72:a4:bb:
2c:5e:cf:f6:53:d9:cf:60:d8:11:dc:ef:8f:ac:a3:
04:d6:a5:ee:ed:4d:a2:c6:2e:b6:3e:f1:47:54:67:
4b:71:dc:0e:86:f1:23:db:ec:64:a6:4b:38:59:7c:
fc:61:4c:17:f6:9d:f2:a5:06:f0:64:e7:b9:66:d2:
f6:be:ab:58:9a:73:26:1b:96:82:d6:d9:cc:8d:64:
aa:9e:49:4a:29:ff:bb:16:2c:a2:15:92:77:81:86:
9c:d9:2e:6c:4b:e9:02:5a:27:72:ac:b0:9b:44:91:
7e:08:60:b1:ef:5c:bb:d1:ef:a3:5d:2a:31:4a:a0:
a5:23:73:a7:29:79:0a:8c:00:5c:68:4b:40:db:c4:
32:10:97:b3:39:58:59:17:0c:0c:57:ed:2e:32:0f:
86:f1:ac:0b:c9:c9:12:4b:66:d9:81:71:16:1c:48:
fd:e0:cf:b0:f1:d8:57:72:4e:90:34:b7:d7:e1:ea:
70:b5:fb:5d:a6:8e:a6:c9:00:01:51:40:fe:e9:c8:
08:85:0e:67:fa:05:41:7f:f4:3a:ba:ec:a2:a3:95:
59:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:67:E1:32:53:4B:B1:B6:15:FF:48:12:03:87:DE:83:D9:90:41:B7
X509v3 Authority Key Identifier:
keyid:99:72:14:8C:73:62:C2:C9:39:9B:B3:AF:74:15:92:C4:25:16:C5:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXIUjHNiwsk5m7OvdBWSxCUWxUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/587b7b-071c-430b-9eb2-6ec62690b19b/1/mXIUjHNiwsk5m7OvdBWSxCUWxUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/587b7b-071c-430b-9eb2-6ec62690b19b/1/mXIUjHNiwsk5m7OvdBWSxCUWxUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:ab:9d:ab:f5:ec:d3:23:77:68:56:47:e8:15:7c:d0:7e:c4:
70:be:11:0c:2f:47:e6:f5:fd:18:9c:19:3f:dc:80:b9:e9:2e:
1b:ad:23:e6:af:44:3c:ae:01:a7:20:35:5a:8a:1b:7b:bc:9c:
fb:9d:5a:62:4b:29:ec:bf:50:b3:14:f2:d0:1e:88:16:83:b2:
08:66:e0:96:3d:b8:9a:bb:81:a9:aa:f0:5a:2d:e6:a2:a7:39:
62:15:e9:2f:7e:72:95:c2:ae:b2:4a:a2:8c:38:55:ea:7b:87:
28:81:5a:9c:ea:80:97:14:76:9a:ec:24:09:ec:1a:b5:fe:6c:
8c:34:13:9f:01:b1:9f:b1:a5:ae:72:8c:cc:0c:d1:c2:5c:cc:
3b:28:51:76:23:73:96:e8:73:ba:f3:97:4f:b0:10:83:da:07:
c0:13:cd:31:61:57:ce:c8:8e:f5:d0:08:78:c7:74:c9:98:f5:
e7:38:53:10:fd:47:2d:85:b5:83:d7:ec:99:b9:97:a5:ac:0c:
63:ea:89:41:a4:7d:ca:11:51:bb:f0:75:b1:d5:60:53:f9:9e:
97:5d:93:98:b6:ee:d4:41:98:de:e0:1b:ca:64:a7:ad:88:10:
87:ec:5a:6e:35:83:57:b8:67:34:92:e6:87:06:d4:54:bf:f3:
74:51:4b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:46:15 2025 by rpki-client