Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
File: rjRcTQnm4iTh2vRmV9PHEYewIjY.mft (raw, json)
Hash identifier: vHlW3jlNdu/Yqeka6OKolX9EC6NYCiz/9XDl97HQIME=
Subject key identifier: FA:F6:1D:DB:94:8B:6F:99:E8:CB:B5:A8:A8:41:76:0F:A4:F4:A1:75
Authority key identifier: AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
Certificate issuer: /CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Certificate serial: 019A70DC4EA2DF564A49F7EB628F06FC268C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
Manifest number: 0668
Signing time: Tue 11 Nov 2025 03:01:17 +0000
Manifest this update: Tue 11 Nov 2025 03:01:17 +0000
Manifest next update: Wed 12 Nov 2025 03:01:17 +0000
Files and hashes: 1: rjRcTQnm4iTh2vRmV9PHEYewIjY.crl (hash: Jamyd5ytDVQC0hlOdPRjKs/D0oo6qlA8LyFWQTpXoMc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:4e:a2:df:56:4a:49:f7:eb:62:8f:06:fc:26:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Validity
Not Before: Nov 11 03:01:17 2025 GMT
Not After : Nov 12 03:01:17 2025 GMT
Subject: CN=faf61ddb948b6f99e8cbb5a8a841760fa4f4a175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c6:02:95:d8:91:79:c7:20:4d:47:87:c1:46:
8c:fc:bb:c1:87:cf:05:52:90:c9:d2:72:f4:e8:ca:
e9:3b:0a:07:d8:63:4a:34:44:a7:c1:45:ac:b2:97:
57:02:2d:0b:c4:12:d6:bb:73:e8:79:93:74:fc:66:
82:92:ca:7a:1e:d3:18:52:de:80:c3:40:33:d4:06:
4d:31:ac:dc:d6:8f:ba:b4:ab:3a:4c:b2:bc:f3:e1:
32:38:a7:1d:bf:9d:7d:d6:7b:7c:ed:64:30:0c:8e:
48:80:05:a5:1d:f4:11:ee:39:4d:8f:7d:e5:13:3a:
05:79:7a:db:c4:d7:fa:47:08:eb:47:ba:79:dc:fa:
4c:0d:97:02:8c:1e:61:92:63:53:25:ff:3f:f1:59:
81:7c:21:66:8a:4e:2b:0a:a8:46:b8:57:63:0b:97:
b3:3a:ed:f4:a3:b0:d3:64:cb:4b:3e:5e:0c:12:51:
8b:8e:74:78:e2:75:c7:02:b1:96:4b:8f:51:7b:17:
32:17:65:1c:3c:fa:e3:12:d3:cf:05:7e:78:69:10:
4a:8b:7d:a0:82:98:f4:e3:d2:5d:2c:8a:f6:f3:be:
67:3f:a2:b6:cc:56:2c:17:02:a8:00:4a:f2:01:99:
89:b6:d8:9c:69:af:59:83:91:2d:64:11:b5:2a:4c:
a1:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:F6:1D:DB:94:8B:6F:99:E8:CB:B5:A8:A8:41:76:0F:A4:F4:A1:75
X509v3 Authority Key Identifier:
keyid:AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:ac:94:fa:7a:d5:25:42:41:15:07:36:a2:80:6b:cb:c1:dc:
a8:40:8a:f9:e2:f5:c4:dd:ed:c0:96:9b:97:de:f8:c9:9d:bf:
72:44:0e:34:0d:f4:f6:8a:11:c5:68:1e:6a:87:94:e5:7d:85:
e1:26:77:e9:ed:34:3b:78:dd:b1:7f:dc:a9:9d:30:1f:28:82:
0f:35:66:8a:bf:c0:a1:13:83:d5:95:58:4a:a0:ee:f0:8c:77:
1f:5b:c6:67:78:96:94:38:6c:4f:c3:31:15:8d:de:6b:63:22:
79:16:66:13:d7:96:18:9d:9f:13:fd:5f:a0:7e:91:91:98:2b:
5c:f2:fb:d2:15:45:bd:2a:ee:da:c1:dc:19:ab:d3:33:1e:2b:
be:53:8d:33:48:66:c8:22:7c:23:a2:9c:87:df:ec:03:08:39:
15:b6:ef:ce:c8:33:2b:28:66:3e:f0:b2:eb:05:27:9a:8d:fa:
bc:f4:31:df:13:b7:07:18:08:9f:e2:6b:54:ea:3f:22:36:8b:
c8:cb:0f:d9:e1:bd:2e:cc:40:18:36:1d:cf:1e:65:82:79:2d:
3e:86:28:d2:21:76:c2:88:c8:93:98:a0:4d:9e:89:38:7c:72:
74:f3:9e:e9:a3:de:0b:b1:9c:40:19:28:ac:2c:8c:45:4d:ff:
a6:90:cf:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:15:25 2025 by rpki-client