Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
File: 9j_pwTQEHOvaVoufkI4q7zirf3U.mft (raw, json)
Hash identifier: FtHyLMxaxvW534ZxE/betIsL2IoUXlNxB+CjgTRQX7A=
Subject key identifier: EE:5A:AD:06:ED:92:54:E7:E3:37:8B:2F:7F:A2:F7:0F:CC:76:81:BE
Authority key identifier: F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
Certificate issuer: /CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Certificate serial: 019A71B93CCEB0D7A13A6084347591CA5F2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
Manifest number: 0D73
Signing time: Tue 11 Nov 2025 07:02:36 +0000
Manifest this update: Tue 11 Nov 2025 07:02:36 +0000
Manifest next update: Wed 12 Nov 2025 07:02:36 +0000
Files and hashes: 1: 9j_pwTQEHOvaVoufkI4q7zirf3U.crl (hash: vjX3PbJ4S+X7TTcGqUkxQ7KIkxct94/VNBDhfxcMDs8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:3c:ce:b0:d7:a1:3a:60:84:34:75:91:ca:5f:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Validity
Not Before: Nov 11 07:02:36 2025 GMT
Not After : Nov 12 07:02:36 2025 GMT
Subject: CN=ee5aad06ed9254e7e3378b2f7fa2f70fcc7681be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d2:d6:50:70:29:f8:e5:86:c5:b5:9b:6c:0b:
a6:2f:00:2c:18:2a:1d:9e:5a:f2:ed:71:dd:c7:db:
f4:71:52:e1:cc:90:fb:b6:23:bb:46:eb:96:4b:e1:
1d:b7:9f:c9:a2:b7:6b:0e:69:e1:98:9e:59:bc:e7:
0e:90:31:c8:cf:27:55:82:35:bc:49:90:d8:1b:0c:
2d:c1:bd:19:97:f6:27:57:7e:dc:d4:4d:5d:ee:b1:
98:91:70:6b:39:df:7c:6e:25:2d:04:e2:f6:92:7e:
6f:1a:56:5b:69:1a:b2:c8:b4:04:14:4b:ba:f9:8b:
e9:b2:65:97:35:6c:4e:5b:ec:f4:96:bd:47:2c:bd:
f4:c4:29:a2:6b:44:15:ee:96:c1:de:aa:75:f4:4e:
7b:34:c9:06:7f:df:08:9f:b4:c4:a1:eb:09:79:c4:
fd:dd:09:80:c1:6d:ec:5b:88:9e:db:43:a5:6c:13:
36:87:0f:3e:7a:c4:62:05:91:7a:76:d5:db:df:c5:
36:b0:a6:a2:e1:71:cf:50:27:c1:1c:4b:35:42:d8:
5a:05:fe:30:76:be:0f:c8:46:6d:85:d2:55:76:0f:
fc:75:6e:3b:7d:ba:7f:96:f6:29:fd:5b:e8:a1:10:
07:d3:34:22:ea:91:22:33:a8:8b:48:c0:18:b8:5d:
2c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:5A:AD:06:ED:92:54:E7:E3:37:8B:2F:7F:A2:F7:0F:CC:76:81:BE
X509v3 Authority Key Identifier:
keyid:F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:27:e5:4f:38:06:96:ab:49:f0:13:0b:18:f1:a5:56:aa:bf:
5b:9a:10:6e:cb:ef:06:c4:a0:72:fc:ef:29:7b:50:48:86:e0:
c7:32:bd:8e:f8:0f:86:0a:b5:10:6b:b8:ce:48:b4:19:40:94:
c8:7d:89:1b:2d:3d:27:74:ab:75:3b:27:ac:3a:76:63:f7:d3:
6d:68:e8:ac:97:3f:0e:af:10:2a:55:1c:9e:a1:54:ce:35:d3:
6d:af:ab:41:ae:ff:31:21:e4:ba:35:ea:0a:a9:ee:a3:d3:31:
10:21:59:b5:f6:99:56:c9:7d:0d:c6:f3:24:fb:96:38:77:e7:
d9:63:92:66:84:96:ce:c1:7f:3b:88:30:96:4f:61:db:99:b6:
08:d7:e2:f8:0b:0c:a5:ba:2c:f1:65:21:55:2b:94:97:bb:bc:
98:9f:18:fe:34:d9:56:9b:02:7a:d2:28:57:1e:93:e7:fe:b7:
88:2e:3a:a9:25:a6:7d:69:d7:ce:7e:98:f2:7b:74:5b:89:f0:
07:81:44:c5:1c:af:d9:64:33:ea:8a:77:46:07:7a:cc:fc:7b:
7d:d5:59:0e:22:bd:0b:7f:e6:11:97:1d:30:8a:c4:f8:9d:a1:
b7:8e:4e:df:1d:c1:c7:d3:69:3b:d7:72:c6:05:f9:e1:d9:7b:
21:8b:f2:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:44:28 2025 by rpki-client