Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/4c84cd-0bf1-43a3-b442-65bd4224cdb9/1/0sAfMj0dJYn5qbRi_nDzawn6xjI.mft
File: 0sAfMj0dJYn5qbRi_nDzawn6xjI.mft (raw, json)
Hash identifier: hYn86sw2qJr09IdZRkQ3sDgNE0g21QI9/pGC4+4taV8=
Subject key identifier: 81:F7:97:CB:90:14:56:7B:2C:5A:29:B2:E6:C1:D8:C5:EE:88:B6:BE
Authority key identifier: D2:C0:1F:32:3D:1D:25:89:F9:A9:B4:62:FE:70:F3:6B:09:FA:C6:32
Certificate issuer: /CN=d2c01f323d1d2589f9a9b462fe70f36b09fac632
Certificate serial: 019A72CA71950159BB96C5E3BB5F7924D8AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0sAfMj0dJYn5qbRi_nDzawn6xjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/4c84cd-0bf1-43a3-b442-65bd4224cdb9/1/0sAfMj0dJYn5qbRi_nDzawn6xjI.mft
Manifest number: 074C
Signing time: Tue 11 Nov 2025 12:01:01 +0000
Manifest this update: Tue 11 Nov 2025 12:01:01 +0000
Manifest next update: Wed 12 Nov 2025 12:01:01 +0000
Files and hashes: 1: 0sAfMj0dJYn5qbRi_nDzawn6xjI.crl (hash: 1D5gla8Hr8+a9uW2oI6gA1/KC78Fd2rfcq5pnn3BvTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/4c84cd-0bf1-43a3-b442-65bd4224cdb9/1/0sAfMj0dJYn5qbRi_nDzawn6xjI.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/4c84cd-0bf1-43a3-b442-65bd4224cdb9/1/0sAfMj0dJYn5qbRi_nDzawn6xjI.mft
rsync://rpki.ripe.net/repository/DEFAULT/0sAfMj0dJYn5qbRi_nDzawn6xjI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:71:95:01:59:bb:96:c5:e3:bb:5f:79:24:d8:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2c01f323d1d2589f9a9b462fe70f36b09fac632
Validity
Not Before: Nov 11 12:01:01 2025 GMT
Not After : Nov 12 12:01:01 2025 GMT
Subject: CN=81f797cb9014567b2c5a29b2e6c1d8c5ee88b6be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1d:ea:48:e9:89:5b:44:2e:cb:51:a3:e2:f4:
90:a0:49:c5:d2:08:30:06:35:f5:4f:f9:ca:9b:ca:
f2:a3:b0:74:39:da:fe:73:aa:43:51:76:6a:77:22:
ab:8b:02:9a:89:5e:11:d3:fa:0d:e5:ab:2c:b0:f9:
b9:2a:6e:20:06:18:c0:ee:a5:fc:4d:ac:e7:0f:85:
94:64:d7:d4:cf:3f:7f:11:ce:c3:75:16:a6:ec:26:
10:81:4c:ec:19:69:0c:e4:96:76:50:d9:78:f3:56:
2e:9b:79:05:d1:ef:dd:67:27:2c:ee:ab:e5:a0:72:
69:f3:a9:b6:31:2d:e3:87:af:9d:84:2f:62:a8:bc:
bd:07:9e:0b:ac:d8:af:55:f9:21:48:6d:21:1c:2e:
f5:62:37:6d:d3:b1:78:ca:1e:7c:8a:1d:66:d0:92:
60:ad:12:bd:62:0e:55:2d:b8:54:b7:6d:21:04:2d:
3e:49:cb:9b:92:f0:11:a2:b9:ca:0c:a6:27:71:75:
38:45:d8:3d:7a:be:89:fa:ba:c1:3d:0e:0f:99:f9:
be:f9:02:b3:a1:e6:69:68:db:21:97:25:ec:69:63:
b2:5d:51:6b:f8:2c:38:41:3c:9e:b2:6b:28:f3:6b:
81:49:65:e6:ad:71:34:bc:00:b7:13:5d:99:fd:11:
bd:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:F7:97:CB:90:14:56:7B:2C:5A:29:B2:E6:C1:D8:C5:EE:88:B6:BE
X509v3 Authority Key Identifier:
keyid:D2:C0:1F:32:3D:1D:25:89:F9:A9:B4:62:FE:70:F3:6B:09:FA:C6:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0sAfMj0dJYn5qbRi_nDzawn6xjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/4c84cd-0bf1-43a3-b442-65bd4224cdb9/1/0sAfMj0dJYn5qbRi_nDzawn6xjI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/4c84cd-0bf1-43a3-b442-65bd4224cdb9/1/0sAfMj0dJYn5qbRi_nDzawn6xjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:bf:94:34:4d:cf:fb:58:62:25:bb:b8:64:42:8b:ad:47:97:
42:ab:ac:48:6d:c3:e4:40:72:e3:84:d3:b5:6f:67:4c:d7:a4:
43:2c:2a:45:ef:23:1c:65:4c:09:9e:09:d0:dd:4b:82:f2:09:
ec:f4:7c:bf:88:68:8a:27:6d:ff:0d:72:76:c1:b0:40:b1:8a:
de:43:b9:db:44:a2:5f:97:c3:66:49:9c:85:93:a2:79:8e:11:
f6:92:85:53:d8:89:9b:ea:80:3e:14:06:10:6f:58:81:38:7a:
0c:8a:0b:de:65:f8:f1:ec:03:2e:12:43:4f:8d:d7:c3:26:c5:
52:5b:4a:23:f5:84:88:36:db:a9:a4:37:c6:89:6d:c1:95:66:
f2:ca:58:7a:fe:f4:1d:94:12:86:e4:2c:c8:0e:44:38:c3:d2:
83:4a:2e:1c:45:b8:a1:36:21:07:10:e5:66:3a:e3:6e:96:33:
ae:f6:2f:10:d1:a1:81:9d:20:7c:b2:c4:61:55:dd:74:8d:0b:
e9:c6:9e:ac:59:38:78:b9:c2:7f:3f:43:80:89:42:ce:bd:c4:
ed:0d:da:df:96:da:7d:a7:e2:0d:ae:44:d2:e7:28:8b:53:be:
72:03:98:ae:22:a0:33:4e:26:f2:bf:b1:6e:1d:f9:44:cf:24:
51:28:6b:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:50:56 2025 by rpki-client