Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
File: fJ1n8CerKw_yajV1FHOa_ogDesk.mft (raw, json)
Hash identifier: 21eKoC0t/fDGGDn3XpxnJE4zLX6TmCHwGErmBCApwkg=
Subject key identifier: 0E:E2:48:E2:A8:AE:13:73:F8:1E:D0:98:80:22:F6:92:F5:BB:62:A1
Authority key identifier: 7C:9D:67:F0:27:AB:2B:0F:F2:6A:35:75:14:73:9A:FE:88:03:7A:C9
Certificate issuer: /CN=7c9d67f027ab2b0ff26a357514739afe88037ac9
Certificate serial: 019A70A508EF107AED2475CD6E030BA1BAB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
Manifest number: 1635
Signing time: Tue 11 Nov 2025 02:00:55 +0000
Manifest this update: Tue 11 Nov 2025 02:00:55 +0000
Manifest next update: Wed 12 Nov 2025 02:00:55 +0000
Files and hashes: 1: fJ1n8CerKw_yajV1FHOa_ogDesk.crl (hash: hZdyZcCTWpayN9Pzk47JRgLJyE2v8Np9nOLNGs4QDTU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:08:ef:10:7a:ed:24:75:cd:6e:03:0b:a1:ba:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c9d67f027ab2b0ff26a357514739afe88037ac9
Validity
Not Before: Nov 11 02:00:55 2025 GMT
Not After : Nov 12 02:00:55 2025 GMT
Subject: CN=0ee248e2a8ae1373f81ed0988022f692f5bb62a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a6:63:89:c2:a2:f1:de:8e:98:77:a0:9b:99:
7a:52:4f:f7:9c:34:14:0a:f5:52:61:52:c3:41:a4:
b4:8f:35:b7:97:22:a3:2d:d3:a0:e2:6b:c6:4c:fc:
44:f1:f6:eb:fd:ef:b3:4c:a4:2c:e8:c1:0f:3c:8d:
fe:38:24:cd:83:41:5c:de:4c:3b:e5:88:85:a4:34:
62:d4:7a:7f:7c:19:0c:f1:c5:b8:5e:aa:2d:16:29:
97:fc:11:40:30:40:99:91:00:e3:42:9e:3c:52:15:
ff:75:28:f8:38:b9:24:98:37:4a:4b:0e:72:84:15:
de:08:a6:fc:56:ae:fe:c3:03:ea:03:4f:1f:b4:75:
cb:c3:59:38:12:1a:e4:5b:48:92:02:28:14:da:71:
f9:ff:0b:a6:f9:d5:7b:ae:86:41:f1:70:bf:17:21:
1e:2f:0f:5d:d1:50:45:f4:4f:6a:3c:2e:eb:4f:26:
68:18:cc:f1:3c:82:55:4d:0f:ae:9c:40:a0:7b:fd:
1d:a3:af:34:da:23:cc:80:37:c5:5d:c9:38:10:be:
88:a2:55:46:66:5b:ff:df:5d:bd:1b:8f:e4:d2:90:
94:7f:c4:71:08:fe:17:a9:e1:84:29:9c:9f:b4:bb:
00:13:6b:7c:80:c5:1c:c0:06:07:be:6c:e3:5b:56:
2d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:E2:48:E2:A8:AE:13:73:F8:1E:D0:98:80:22:F6:92:F5:BB:62:A1
X509v3 Authority Key Identifier:
keyid:7C:9D:67:F0:27:AB:2B:0F:F2:6A:35:75:14:73:9A:FE:88:03:7A:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:ef:d4:44:19:90:93:f4:e5:99:32:64:91:84:15:5e:14:a7:
70:48:ea:c9:f8:5b:24:10:2e:54:a9:c7:ce:34:e6:9a:01:35:
6c:90:dc:d4:1b:fa:0e:70:20:e6:85:84:8b:5b:6f:7b:78:f1:
d9:85:5b:98:ac:f7:65:e0:d7:b0:be:27:94:5c:a3:e1:ce:44:
4b:60:58:0f:b1:26:cc:0d:22:a4:8f:3d:e1:49:95:6a:f0:bb:
61:94:a7:16:03:5d:38:f4:34:5c:aa:21:b4:50:ce:ce:7d:8c:
25:70:59:b3:c4:f1:18:92:b9:9f:52:27:90:60:3a:bf:43:49:
bd:37:83:f7:fc:a4:d1:af:b4:d2:06:9e:92:33:90:0f:a6:96:
49:f5:0d:0d:7a:e1:3b:b9:84:8c:43:20:f7:87:42:a8:c2:b9:
fe:09:4b:87:95:4d:2b:23:d9:93:c2:ba:5a:8f:3b:b7:c8:9a:
25:28:77:89:c9:5e:9e:6a:a1:a1:a1:e1:a8:fc:91:3f:05:7c:
27:34:fb:1f:20:5a:74:a6:65:57:23:95:02:c4:01:ba:2b:48:
ea:7a:bf:0f:09:3d:a7:c0:eb:b9:0d:ac:53:29:34:50:74:ba:
42:52:c9:a8:de:63:3a:04:a2:61:32:60:46:05:e1:3d:cc:2d:
01:87:ae:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:20 2025 by rpki-client