Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
File: 14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft (raw, json)
Hash identifier: ebvamdjQ7XwrariyFlxfA/PfGArk6MsEBV1XXk2ACFI=
Subject key identifier: 93:F8:1F:CF:95:1A:4A:F2:8B:0F:A8:1B:DA:7D:EB:20:2C:1C:56:A9
Authority key identifier: D7:88:85:19:81:CF:B3:C1:56:24:B6:E9:7F:60:A3:D9:91:D6:D9:69
Certificate issuer: /CN=d788851981cfb3c15624b6e97f60a3d991d6d969
Certificate serial: 019A71B77E3A895F2991394235A036C39F2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
Manifest number: 05F5
Signing time: Tue 11 Nov 2025 07:00:41 +0000
Manifest this update: Tue 11 Nov 2025 07:00:41 +0000
Manifest next update: Wed 12 Nov 2025 07:00:41 +0000
Files and hashes: 1: 14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl (hash: qVkXugsiW2d4z7P3iXFTpXZ7EXDSlG7k01tvoeYD2vU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:7e:3a:89:5f:29:91:39:42:35:a0:36:c3:9f:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d788851981cfb3c15624b6e97f60a3d991d6d969
Validity
Not Before: Nov 11 07:00:41 2025 GMT
Not After : Nov 12 07:00:41 2025 GMT
Subject: CN=93f81fcf951a4af28b0fa81bda7deb202c1c56a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:82:a0:1d:3a:21:59:32:81:d2:00:67:ae:98:
6b:92:44:8c:10:a8:2d:57:ed:13:f7:ab:74:80:94:
82:0b:43:36:f0:34:39:31:c3:95:e2:d6:2c:da:b3:
99:32:8d:61:bb:68:46:40:73:9a:7a:0f:33:64:b1:
db:2e:9e:49:68:ab:d6:b9:3a:0b:7f:5c:8a:8a:dc:
a2:ab:6f:f6:6a:e9:84:e4:79:53:51:46:b9:3a:37:
dc:63:60:88:b5:1d:f4:f0:09:3e:bd:4b:46:19:d2:
de:15:be:13:7c:30:aa:3e:06:37:0a:82:33:dc:b4:
e0:69:36:99:76:bd:b9:f7:9c:cc:cb:3e:4c:db:5a:
7b:69:56:2d:00:93:1e:ee:59:95:58:bb:1a:6f:a8:
6a:6e:c3:3b:78:04:da:cb:43:4c:b4:b0:38:62:d4:
02:eb:0c:af:fb:1c:54:f3:71:4e:99:eb:47:74:31:
67:64:6e:2a:ba:1f:a5:2d:b8:a4:e4:62:eb:ee:63:
88:33:f7:b9:b9:78:1c:d8:a6:37:ab:69:10:9e:6c:
96:52:7f:49:f3:aa:92:73:20:49:55:65:a4:8d:13:
68:be:03:be:19:e4:10:e5:fc:a1:2d:6d:f2:24:db:
0d:74:cc:d9:7c:24:d8:87:83:46:16:0d:01:9e:ef:
0d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:F8:1F:CF:95:1A:4A:F2:8B:0F:A8:1B:DA:7D:EB:20:2C:1C:56:A9
X509v3 Authority Key Identifier:
keyid:D7:88:85:19:81:CF:B3:C1:56:24:B6:E9:7F:60:A3:D9:91:D6:D9:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:61:5f:15:e1:90:61:5a:5e:ca:37:3c:03:bd:37:15:a9:b4:
92:b9:eb:16:68:12:1a:a9:ae:7a:00:d7:cd:6a:e8:6d:51:ce:
e7:13:5f:6e:a7:fb:8f:f5:4a:3f:35:a2:c3:9a:7f:d2:d6:c6:
67:86:dd:89:c7:6c:c0:40:a9:2f:e8:d2:c6:60:3f:ff:02:bc:
02:78:6e:f4:c0:66:d5:03:0c:9a:f0:cf:2d:1c:0f:d4:5f:6e:
a5:86:f4:f9:5e:97:01:7d:85:d7:dd:ee:56:ad:95:76:2e:f0:
5a:7c:c8:f8:de:d8:e8:53:0a:f0:85:10:dd:ef:e8:3b:a7:36:
2b:25:0e:b3:c8:5b:72:a7:71:14:56:f8:94:27:63:51:a5:33:
b7:5e:4b:c8:23:e4:5f:e0:73:89:3b:89:e0:33:e3:f4:54:4b:
c0:b3:e7:9c:4f:97:1b:98:4e:c0:9b:3f:22:ff:85:ce:64:4c:
e8:92:4a:76:fb:d6:f5:fc:b9:91:85:45:fa:6c:6f:69:28:ab:
55:15:d6:d8:41:1f:d3:b3:27:09:3b:0c:3b:96:c6:74:80:d5:
50:c7:14:af:43:ef:23:be:d9:ed:35:9d:b8:a5:4c:3c:40:ad:
fa:53:86:30:cb:8c:6d:4a:84:93:d3:8e:ab:89:69:78:50:2a:
9f:62:31:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:09:47 2025 by rpki-client