Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/b11584-19e9-453f-84c7-56c2a44d1878/1/r89alhpnpvrt_v2PKluD8mg3WYQ.mft
File: r89alhpnpvrt_v2PKluD8mg3WYQ.mft (raw, json)
Hash identifier: 8Hu23wukzU4iGDRLIzWW2si3mADVTI4pv6EnjbqHdr8=
Subject key identifier: 91:FB:24:C8:69:28:88:DA:7A:82:C9:20:13:4F:B5:3C:43:52:02:48
Authority key identifier: AF:CF:5A:96:1A:67:A6:FA:ED:FE:FD:8F:2A:5B:83:F2:68:37:59:84
Certificate issuer: /CN=afcf5a961a67a6faedfefd8f2a5b83f268375984
Certificate serial: 019A7293A8EEF726F6D1C1B03F779DC77257
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r89alhpnpvrt_v2PKluD8mg3WYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/b11584-19e9-453f-84c7-56c2a44d1878/1/r89alhpnpvrt_v2PKluD8mg3WYQ.mft
Manifest number: 0391
Signing time: Tue 11 Nov 2025 11:01:10 +0000
Manifest this update: Tue 11 Nov 2025 11:01:10 +0000
Manifest next update: Wed 12 Nov 2025 11:01:10 +0000
Files and hashes: 1: r89alhpnpvrt_v2PKluD8mg3WYQ.crl (hash: dEV1Io8qDRo4S09/Q1k5F62Be0vhL0A+CNJ+Sz1hftk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/b11584-19e9-453f-84c7-56c2a44d1878/1/r89alhpnpvrt_v2PKluD8mg3WYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/b11584-19e9-453f-84c7-56c2a44d1878/1/r89alhpnpvrt_v2PKluD8mg3WYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/r89alhpnpvrt_v2PKluD8mg3WYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:a8:ee:f7:26:f6:d1:c1:b0:3f:77:9d:c7:72:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afcf5a961a67a6faedfefd8f2a5b83f268375984
Validity
Not Before: Nov 11 11:01:10 2025 GMT
Not After : Nov 12 11:01:10 2025 GMT
Subject: CN=91fb24c8692888da7a82c920134fb53c43520248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f9:c4:f6:82:e6:de:95:aa:10:b0:04:6c:fa:
b6:69:f1:f0:97:5e:78:c3:14:0e:c0:c5:01:5c:05:
f8:a6:b2:92:ad:30:81:85:16:5b:c1:81:41:cf:05:
90:16:41:fc:95:9a:94:e3:20:04:a0:87:0d:c2:aa:
41:15:0c:f3:b6:c0:f5:fc:d7:d9:a8:ed:f2:41:20:
07:88:da:d2:bc:f4:eb:0f:82:70:99:5e:9f:cf:b7:
ea:62:5d:74:94:1b:95:95:e9:26:42:46:20:dd:bd:
07:5d:15:9b:06:6e:19:3b:c6:2c:5b:84:cf:1d:2a:
e0:85:8a:f5:96:35:a5:f6:e7:11:f2:46:15:f9:a7:
10:57:77:63:3a:fe:79:6d:19:86:5d:24:04:8f:66:
42:73:03:47:70:09:13:61:72:b6:dc:19:13:96:8f:
ab:2a:13:74:e8:45:13:4f:6d:fb:62:0b:8b:5f:53:
30:2e:1c:d5:64:62:fb:00:be:4e:f1:07:74:2f:90:
8a:8c:ea:c0:5a:23:df:a1:3a:63:ec:0c:bf:ff:03:
78:1c:cf:2f:c9:d1:17:39:74:20:57:7b:2b:a4:35:
e7:cc:1b:80:b5:51:f5:20:33:9d:e2:01:23:5b:59:
d9:d3:c0:96:c2:0c:fd:9b:f0:a4:81:14:5e:21:ac:
1b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:FB:24:C8:69:28:88:DA:7A:82:C9:20:13:4F:B5:3C:43:52:02:48
X509v3 Authority Key Identifier:
keyid:AF:CF:5A:96:1A:67:A6:FA:ED:FE:FD:8F:2A:5B:83:F2:68:37:59:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r89alhpnpvrt_v2PKluD8mg3WYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b11584-19e9-453f-84c7-56c2a44d1878/1/r89alhpnpvrt_v2PKluD8mg3WYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b11584-19e9-453f-84c7-56c2a44d1878/1/r89alhpnpvrt_v2PKluD8mg3WYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:a6:5b:66:db:17:32:a8:ba:59:34:b0:5b:cd:52:8f:9e:2b:
2f:0e:7c:f5:7d:67:32:65:ea:13:8a:4f:9f:52:da:ac:73:f1:
75:f6:7f:37:aa:0c:ba:d0:92:3b:d8:4a:09:13:d1:69:d4:01:
ee:58:24:0d:2b:f7:34:79:f9:30:1b:e7:ec:75:15:10:ad:ad:
7a:19:c5:c5:f0:24:18:82:0d:57:bf:6c:4c:05:65:67:eb:6a:
6c:7a:c9:51:3e:1b:30:80:b3:07:57:92:69:47:ab:06:36:15:
36:cb:82:a9:57:db:a7:11:f6:16:c2:47:2d:7d:3c:d0:43:2d:
12:b8:ca:e7:f6:bc:73:96:53:c4:90:24:4c:eb:9f:19:4d:ab:
fe:03:2b:2f:f6:d3:63:26:b2:15:3a:e9:f2:8c:91:94:b3:1e:
a3:74:93:b5:90:fb:ef:54:d0:a5:34:e1:0a:2b:11:13:2b:d5:
4c:cc:e5:b5:16:64:26:42:ca:d1:1a:1f:97:e1:d4:fa:23:74:
6b:25:8e:0f:25:24:6d:3c:58:38:ff:c3:3b:b6:c9:31:c2:ea:
e1:ca:16:fe:85:b2:e9:15:64:e6:e1:b7:97:88:e2:aa:e1:05:
28:61:1f:a9:a9:d2:b6:eb:82:7e:72:b2:ba:66:7d:b5:fb:ef:
3f:76:c8:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:42:59 2025 by rpki-client