Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
File: R7lNsbPetIBa0mFVS65rpfp0CMs.mft (raw, json)
Hash identifier: JGO0zFqVNQgPnQ4bkKKVug5EiZYux00lOjLpG8YCB5M=
Subject key identifier: 5D:0C:DD:16:EA:96:92:58:0B:8E:AF:2F:15:4A:94:39:86:90:3D:8E
Authority key identifier: 47:B9:4D:B1:B3:DE:B4:80:5A:D2:61:55:4B:AE:6B:A5:FA:74:08:CB
Certificate issuer: /CN=47b94db1b3deb4805ad261554bae6ba5fa7408cb
Certificate serial: 019A71B8BC8999355903E711BABBEAB64BB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R7lNsbPetIBa0mFVS65rpfp0CMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
Manifest number: 171A
Signing time: Tue 11 Nov 2025 07:02:03 +0000
Manifest this update: Tue 11 Nov 2025 07:02:03 +0000
Manifest next update: Wed 12 Nov 2025 07:02:03 +0000
Files and hashes: 1: R7lNsbPetIBa0mFVS65rpfp0CMs.crl (hash: zUoLrk1s1WsXBoKqIxGmhN8x5Lgj7J6UCkhChoAj9Xs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/R7lNsbPetIBa0mFVS65rpfp0CMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:bc:89:99:35:59:03:e7:11:ba:bb:ea:b6:4b:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47b94db1b3deb4805ad261554bae6ba5fa7408cb
Validity
Not Before: Nov 11 07:02:03 2025 GMT
Not After : Nov 12 07:02:03 2025 GMT
Subject: CN=5d0cdd16ea9692580b8eaf2f154a943986903d8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:7d:6d:de:c9:57:5f:11:f3:37:c8:05:46:f2:
f8:cf:10:f3:68:50:f3:d3:18:47:6a:b4:58:01:6a:
75:ac:05:a6:1e:b6:11:b2:f2:a1:be:a1:1c:63:73:
5c:13:8c:73:08:f1:df:61:e0:62:c5:1b:c3:7a:cd:
9c:20:32:ea:df:b6:25:da:36:bb:fc:03:94:93:24:
41:38:82:8b:c7:bf:69:82:d9:74:25:e5:d6:30:9c:
79:37:a3:85:a7:70:88:91:83:25:79:11:ba:e1:0f:
a4:f0:7f:2a:23:08:62:cc:58:2c:47:61:f8:89:a6:
45:c9:73:30:e7:94:8b:f0:01:af:77:7f:4e:c9:ae:
4d:0e:2c:4b:2c:47:f5:5f:90:25:93:af:bb:14:01:
dc:06:57:7a:00:14:fc:47:f1:b0:a0:18:3f:02:48:
3f:ca:4b:f9:46:2f:f4:f4:82:51:1d:05:ff:d5:c7:
5f:69:a1:30:46:4d:bb:4b:07:dd:76:a0:32:d1:4c:
d5:ae:6d:e7:4a:8a:e3:12:8c:fd:e5:53:6f:63:72:
ed:46:d7:55:88:3d:84:f0:63:a3:58:3a:8a:e0:aa:
95:eb:2b:4e:b0:d0:33:d4:ff:5e:62:54:71:be:c7:
57:c6:2b:28:05:f4:94:0b:34:8d:38:a2:85:31:36:
dc:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:0C:DD:16:EA:96:92:58:0B:8E:AF:2F:15:4A:94:39:86:90:3D:8E
X509v3 Authority Key Identifier:
keyid:47:B9:4D:B1:B3:DE:B4:80:5A:D2:61:55:4B:AE:6B:A5:FA:74:08:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R7lNsbPetIBa0mFVS65rpfp0CMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:38:2a:cb:8a:2c:06:32:dd:2d:91:82:e8:c5:17:81:bb:d6:
1e:ab:fd:31:ce:34:d5:14:ab:3d:45:ca:63:24:cc:17:ab:88:
2a:83:6e:58:86:fb:3b:04:f0:0c:d1:ce:80:b4:b7:88:56:3f:
20:3d:52:55:68:ed:74:2e:68:f3:36:54:64:9c:1b:bb:52:39:
e8:c4:32:7b:b5:c2:f4:0c:e2:fe:c1:eb:1b:84:fb:b0:0b:d0:
db:e3:5e:c1:66:14:4c:83:32:33:74:2a:26:9c:c5:4d:88:7b:
0b:32:99:f8:3f:03:86:01:61:91:71:9b:38:b3:1d:2f:97:96:
33:d0:af:58:c4:bb:40:ac:04:59:88:f0:01:2c:50:2b:6d:7a:
6e:2b:65:b7:23:8c:35:9a:32:b5:9e:77:3e:38:c8:06:49:d8:
7f:e1:78:44:22:02:c6:ab:ac:41:a5:17:8e:1a:5d:ac:84:33:
ce:c6:b1:59:36:4e:55:44:c7:71:b4:35:37:8e:cf:c9:4e:f4:
45:ba:da:03:4b:a7:2e:77:5a:9e:db:72:8f:c6:50:63:db:cf:
0d:b9:99:34:eb:30:69:c7:ad:82:42:16:09:b2:47:66:c4:0c:
1b:9c:22:37:1c:10:fc:8a:66:4b:6c:76:68:fb:b9:f1:8e:e8:
d1:62:67:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:11:23 2025 by rpki-client