Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
File: rKcX8QfgYizkyz71KwFU-n-baS0.mft (raw, json)
Hash identifier: FtGZdn13m0r1wrE8qLLXC61HiO/uM+wEDeT4CMgwB20=
Subject key identifier: 69:2D:FD:03:88:19:71:17:90:6B:0E:C9:69:89:E0:88:EE:38:26:A5
Authority key identifier: AC:A7:17:F1:07:E0:62:2C:E4:CB:3E:F5:2B:01:54:FA:7F:9B:69:2D
Certificate issuer: /CN=aca717f107e0622ce4cb3ef52b0154fa7f9b692d
Certificate serial: 019A71B7A9B01CF43EA1C78D7013AB35A37B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
Manifest number: 129D
Signing time: Tue 11 Nov 2025 07:00:53 +0000
Manifest this update: Tue 11 Nov 2025 07:00:53 +0000
Manifest next update: Wed 12 Nov 2025 07:00:53 +0000
Files and hashes: 1: rKcX8QfgYizkyz71KwFU-n-baS0.crl (hash: ScNFyH8IWrvjEcK6t+kcSr2JqvWXfj2Lq3c4rCmPa08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:a9:b0:1c:f4:3e:a1:c7:8d:70:13:ab:35:a3:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca717f107e0622ce4cb3ef52b0154fa7f9b692d
Validity
Not Before: Nov 11 07:00:53 2025 GMT
Not After : Nov 12 07:00:53 2025 GMT
Subject: CN=692dfd0388197117906b0ec96989e088ee3826a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:7f:eb:9c:44:05:d2:74:6c:8a:86:7a:b5:dc:
40:ea:e8:8d:52:2a:3a:d5:3c:b3:4a:a2:b1:81:11:
ea:3c:1f:10:2f:6b:d6:68:59:82:f0:e2:93:ea:6b:
fd:59:7f:f9:86:03:a4:5d:69:2e:6f:e7:9a:af:b2:
af:be:79:51:86:2f:7b:e2:c5:f1:22:c0:5b:3b:b2:
d4:b1:61:82:3e:3e:c9:02:7e:76:29:ef:c7:1f:4c:
f5:a8:ff:c3:68:70:78:43:08:95:46:ea:8f:bd:f9:
5b:d8:0f:4d:c0:a4:62:01:c4:3a:70:1b:cb:32:da:
0f:27:b5:26:dc:dc:31:a6:2f:57:e2:06:02:0e:5e:
bb:b7:ed:9d:a8:54:d0:1d:21:21:f2:78:57:b9:2b:
21:55:b0:bd:ff:27:23:64:b0:74:f9:39:54:9f:ef:
9b:7f:fb:74:d0:09:94:87:4a:b5:67:69:94:ee:d1:
ac:5b:5d:32:ef:80:99:01:7b:fe:a2:b1:56:9a:7c:
ed:6c:d7:57:39:1d:44:f8:03:7f:0d:cd:a8:b0:d6:
b9:e1:82:45:3f:00:47:86:bd:58:f0:1d:8f:2d:26:
10:9b:25:a7:26:b1:6e:f6:c8:18:c5:c5:05:89:aa:
d0:9d:50:2a:5b:d2:9d:9e:65:bf:a9:68:70:62:a5:
c5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:2D:FD:03:88:19:71:17:90:6B:0E:C9:69:89:E0:88:EE:38:26:A5
X509v3 Authority Key Identifier:
keyid:AC:A7:17:F1:07:E0:62:2C:E4:CB:3E:F5:2B:01:54:FA:7F:9B:69:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:4b:dc:65:08:cc:2f:52:e8:7d:5f:ac:13:44:55:15:7d:fc:
64:97:18:7b:33:73:ee:8f:b1:a4:23:b2:2e:9a:e6:71:f5:15:
ac:fe:d3:04:74:76:ac:a0:5d:a3:90:3b:60:b9:d8:74:d6:23:
cd:90:76:9c:c4:fe:75:50:24:02:f3:52:6d:c6:7b:bb:31:5d:
1a:53:c4:53:bb:2e:03:3f:03:5a:fa:d2:c0:39:5a:be:a8:6a:
2d:07:f8:f4:34:75:03:37:4c:6c:21:86:76:4a:8d:46:7e:f6:
f6:33:10:43:aa:88:29:a6:5d:40:bd:8d:82:9f:4f:2d:1a:3c:
46:35:68:92:15:af:64:1b:30:d1:a8:7b:a2:83:a6:1b:7d:82:
f9:64:9a:f5:b8:81:2b:ab:c5:c7:24:7a:18:9f:9f:48:1f:7b:
00:24:67:82:ed:31:f2:d7:a6:61:6e:96:7a:c1:db:2c:3b:0f:
7b:de:3f:47:94:82:b4:46:4d:72:39:3a:db:a7:af:88:99:77:
25:96:94:de:68:b3:f5:c3:dd:3c:ab:25:eb:8d:f0:7f:9d:a6:
74:92:41:e6:21:db:82:69:a4:c9:30:b8:b5:30:05:56:d8:43:
0e:53:70:a5:e1:02:ee:83:87:4b:72:16:fc:29:fd:4e:24:ea:
e9:e1:97:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:08:33 2025 by rpki-client