Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
File: d_M68l-VqylxEYjp_-pQzMshHXY.mft (raw, json)
Hash identifier: XVXM4xe0amyvHvf5PjRQf1GOqqYqAerrjw/AOZPnaYI=
Subject key identifier: 93:2D:B8:3B:97:CF:B1:BA:D0:15:69:5B:66:EE:1A:BC:FF:17:70:2F
Authority key identifier: 77:F3:3A:F2:5F:95:AB:29:71:11:88:E9:FF:EA:50:CC:CB:21:1D:76
Certificate issuer: /CN=77f33af25f95ab29711188e9ffea50cccb211d76
Certificate serial: 019A711340FDCAD69076CF5F5EB99CCD0CBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
Manifest number: 0E94
Signing time: Tue 11 Nov 2025 04:01:18 +0000
Manifest this update: Tue 11 Nov 2025 04:01:18 +0000
Manifest next update: Wed 12 Nov 2025 04:01:18 +0000
Files and hashes: 1: d_M68l-VqylxEYjp_-pQzMshHXY.crl (hash: WsHG2N836/DwkHDzuCmw9tdaU2/jH5pGFyyrSMmrkFA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:40:fd:ca:d6:90:76:cf:5f:5e:b9:9c:cd:0c:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f33af25f95ab29711188e9ffea50cccb211d76
Validity
Not Before: Nov 11 04:01:18 2025 GMT
Not After : Nov 12 04:01:18 2025 GMT
Subject: CN=932db83b97cfb1bad015695b66ee1abcff17702f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:76:71:30:63:d1:48:7d:91:c2:89:a1:37:1d:
f3:4e:54:d8:96:80:38:f3:43:42:3d:8a:28:f7:4c:
e4:b2:fb:38:a1:e7:05:aa:16:ba:91:7d:64:dd:3d:
82:3c:29:56:77:bd:39:3d:ba:ee:19:b6:d6:40:a6:
f8:23:de:a8:fc:06:d3:0b:c0:f4:1d:bf:46:53:23:
80:f5:a0:97:f8:45:da:f3:46:57:f2:e7:1a:58:5a:
75:fe:53:00:ee:cc:06:12:63:4c:fb:05:56:0d:78:
bc:52:2b:88:dd:50:9b:37:11:ca:ad:91:f0:e3:09:
33:e3:97:ae:ce:4d:1e:19:c3:52:68:86:35:b9:38:
bb:e7:63:e9:9b:3c:c7:5c:b6:a5:ab:3c:dc:8a:0b:
f1:f8:d2:e2:a7:48:d8:f6:80:95:43:2a:64:b9:17:
05:c9:73:9f:35:84:bd:61:0e:a0:ff:0b:f8:66:86:
ba:6e:17:89:b7:d3:7a:2a:b2:50:8d:2f:04:57:e2:
a4:76:1d:35:8e:22:d6:55:6b:02:96:32:c5:cb:54:
68:84:87:9d:4a:40:46:a8:59:67:35:09:26:d7:cb:
79:ac:97:9e:87:bf:de:5c:a2:cb:b1:ff:2b:e8:64:
db:f3:23:51:5e:f3:57:36:f7:f0:4f:54:5d:b8:68:
5e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:2D:B8:3B:97:CF:B1:BA:D0:15:69:5B:66:EE:1A:BC:FF:17:70:2F
X509v3 Authority Key Identifier:
keyid:77:F3:3A:F2:5F:95:AB:29:71:11:88:E9:FF:EA:50:CC:CB:21:1D:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:8b:3e:9b:5c:04:20:2b:2e:45:88:8a:1e:97:cb:75:2f:4d:
b5:08:a2:19:2f:96:ab:48:ef:dc:a3:73:9a:22:a7:47:18:26:
b6:b9:07:87:7c:65:ff:e1:d0:9f:20:f4:77:51:d7:33:66:8c:
fb:4b:96:b3:28:dd:8b:6f:a3:a0:83:f3:86:a7:49:bc:38:05:
60:ca:60:c6:44:a3:79:cf:45:65:2b:a4:a4:7c:3c:c7:8c:0f:
d4:97:6f:63:be:4a:f2:91:7e:35:f7:c1:24:0f:5d:4d:7f:35:
ca:e3:3b:c4:63:1f:bb:54:aa:0c:db:26:6f:64:fc:c6:dd:9a:
02:07:e5:12:7d:3f:52:3c:f7:8e:c9:4e:f4:5d:6a:2b:0d:fa:
c4:19:79:7b:6f:e9:fb:e7:38:4b:75:c7:28:f0:e9:6f:7c:1b:
1b:d7:c6:40:64:67:f7:b5:08:40:08:d3:69:05:f3:ba:d2:af:
23:7d:e7:8b:60:6b:f6:ad:d8:42:9d:40:94:b3:66:36:0d:0b:
7d:2d:98:e4:a9:2d:27:4f:00:a8:24:8f:b3:b0:a9:38:a6:16:
46:ac:f2:21:4f:cb:5b:cd:4b:01:42:38:73:ea:2f:26:be:75:
e7:e8:bc:87:a9:3b:98:52:dc:95:ae:58:d8:b0:2b:2c:39:03:
53:a2:ac:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:10:33 2025 by rpki-client