Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
File: mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft (raw, json)
Hash identifier: L71c9tK0NFLvJXe7Q90+kU1UjWLcdqkPegGa9uj+CrI=
Subject key identifier: EE:0E:82:4E:CC:48:64:16:6E:1B:C3:AA:09:48:E1:21:A2:A7:F5:6E
Authority key identifier: 98:24:1A:AC:9E:DA:7B:EF:69:08:9F:64:7B:5D:8F:77:4F:F4:3A:26
Certificate issuer: /CN=98241aac9eda7bef69089f647b5d8f774ff43a26
Certificate serial: 019A7113297A0BDB7720943D82DFE84E2C40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
Manifest number: 0E53
Signing time: Tue 11 Nov 2025 04:01:12 +0000
Manifest this update: Tue 11 Nov 2025 04:01:12 +0000
Manifest next update: Wed 12 Nov 2025 04:01:12 +0000
Files and hashes: 1: mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl (hash: P72bQardoQwRQo2gr3+vxBD4/OzPTA0SYc5OPumeRS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:29:7a:0b:db:77:20:94:3d:82:df:e8:4e:2c:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98241aac9eda7bef69089f647b5d8f774ff43a26
Validity
Not Before: Nov 11 04:01:12 2025 GMT
Not After : Nov 12 04:01:12 2025 GMT
Subject: CN=ee0e824ecc4864166e1bc3aa0948e121a2a7f56e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:65:ec:a3:f4:ce:88:1b:8f:81:5d:9f:4e:55:
03:15:29:aa:32:36:8e:8b:3d:14:eb:57:d9:05:a0:
c8:36:9c:fc:52:06:05:fe:75:76:2c:a7:e9:a7:61:
64:c9:a5:3b:44:e7:f6:a3:73:38:55:c0:ae:af:3e:
0f:40:6c:ff:6e:4e:ac:95:63:ac:92:ef:c4:c8:f4:
00:c7:c3:01:18:53:a6:6a:60:07:2b:74:6c:02:b1:
05:f0:58:7c:69:9e:c7:1c:2e:0f:b2:d9:6a:53:8a:
e0:a3:26:28:f4:18:ad:4d:f1:07:f2:f3:89:47:32:
a3:cc:4a:f9:a3:af:14:5e:81:df:fb:87:b5:2a:53:
5a:fe:72:93:43:2b:0d:58:87:55:23:a4:8f:c7:fa:
04:af:d9:9f:22:04:00:40:b3:3a:f4:da:a5:1e:02:
de:55:69:4a:dd:b5:25:67:bd:59:65:d7:2d:29:bc:
8c:60:a6:a4:40:cc:33:64:e0:c0:46:25:48:af:59:
0f:13:21:e0:d2:a2:fa:27:0b:71:9c:60:d9:3a:99:
fc:9a:dc:8f:69:81:30:51:ef:c4:27:bf:23:59:b4:
75:00:da:bb:5a:b2:98:27:b7:41:1c:26:65:d3:71:
14:7b:f7:b9:c9:47:f7:9b:14:23:ef:66:b9:97:4d:
d5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:0E:82:4E:CC:48:64:16:6E:1B:C3:AA:09:48:E1:21:A2:A7:F5:6E
X509v3 Authority Key Identifier:
keyid:98:24:1A:AC:9E:DA:7B:EF:69:08:9F:64:7B:5D:8F:77:4F:F4:3A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:b6:ef:9f:44:d3:9e:29:fd:2c:a3:c3:24:29:62:3d:35:1e:
86:72:89:54:01:90:d6:96:22:aa:fd:67:44:36:7b:a3:fd:c5:
e8:bb:ce:28:59:46:ad:37:1b:6d:92:96:de:37:57:a8:33:36:
cb:a1:38:b6:d7:73:4b:19:f6:c7:4b:33:38:ef:49:a0:b1:91:
82:70:55:3a:11:51:6b:a0:8a:4f:7c:29:99:0d:09:cb:4a:70:
23:87:4e:8e:37:61:2f:2b:a1:db:75:b6:e1:18:3d:b5:b4:d6:
6c:a1:c9:03:e4:47:60:01:18:13:fe:82:1e:5d:3b:63:45:c7:
8c:4e:f5:68:9d:56:6e:f4:b7:8a:a7:ac:ca:0e:ee:e1:5a:42:
06:46:ae:84:cc:10:23:be:40:af:23:81:06:96:66:88:b5:11:
25:a7:6a:46:75:cf:14:bf:68:af:eb:df:83:09:4f:39:5b:62:
bb:f0:e2:68:85:03:55:3e:77:2b:74:e4:ca:66:2a:75:03:d8:
1c:db:59:76:e6:d5:93:0c:56:9a:10:81:dc:70:43:82:0e:23:
b2:62:50:d4:cf:c2:0e:dc:29:62:e8:d2:3c:d6:62:73:15:4d:
31:36:0f:8f:34:ac:1b:91:9c:ad:58:3e:3f:c3:d2:4a:6c:37:
10:65:cf:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:54:02 2025 by rpki-client