Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft
File: RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft (raw, json)
Hash identifier: rKKs3/sYr1MiXEOnokQGVSTfRpokU9lyb26xN6AHyng=
Subject key identifier: 40:A5:43:FF:3D:FE:8F:2D:08:DC:0D:F7:4F:7B:17:0C:9D:74:31:14
Authority key identifier: 44:3D:4F:95:73:29:DF:31:49:8F:A8:54:3C:23:F1:2C:87:4C:C6:0D
Certificate issuer: /CN=443d4f957329df31498fa8543c23f12c874cc60d
Certificate serial: 019A71B7DD0945D17FC6DE42D8F0C45B5A29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RD1PlXMp3zFJj6hUPCPxLIdMxg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft
Manifest number: 018B
Signing time: Tue 11 Nov 2025 07:01:06 +0000
Manifest this update: Tue 11 Nov 2025 07:01:06 +0000
Manifest next update: Wed 12 Nov 2025 07:01:06 +0000
Files and hashes: 1: RD1PlXMp3zFJj6hUPCPxLIdMxg0.crl (hash: grWbx0Z313VIanamQ7wsOV9EIHs3NP6eg4RNKUQLXKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/RD1PlXMp3zFJj6hUPCPxLIdMxg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:dd:09:45:d1:7f:c6:de:42:d8:f0:c4:5b:5a:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=443d4f957329df31498fa8543c23f12c874cc60d
Validity
Not Before: Nov 11 07:01:06 2025 GMT
Not After : Nov 12 07:01:06 2025 GMT
Subject: CN=40a543ff3dfe8f2d08dc0df74f7b170c9d743114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:45:6d:0c:c9:a9:05:a4:f2:6d:26:48:28:ca:
11:9b:42:b0:93:37:db:b4:9a:cc:80:6a:fb:4c:7f:
8f:a6:1a:13:0e:98:e5:59:3f:11:7d:0c:b1:56:85:
45:60:f6:7d:1e:cd:f6:31:79:d9:38:ae:40:9a:1f:
81:52:47:e7:80:9e:79:19:0c:83:ab:22:11:04:f9:
85:ac:dc:7f:13:01:78:99:de:02:25:de:f2:0f:13:
75:2e:6e:5e:58:2f:d3:31:95:50:33:31:4e:5b:79:
95:4e:a6:4f:f5:cb:c0:fd:fc:c2:4f:48:32:8a:cb:
e3:5d:f7:bb:ea:e2:ab:1a:35:a7:38:37:21:48:09:
1d:fc:5c:b2:b5:c2:83:6b:db:04:dc:dd:e8:53:53:
4d:f2:32:e9:24:9a:d7:9d:3c:ff:b5:1e:8b:cb:9d:
31:50:7b:94:98:e4:b2:d6:b9:38:3b:52:9c:71:3f:
2c:48:71:36:5b:f6:8f:c4:c3:0a:17:68:1f:53:0d:
5e:b4:41:95:5c:ef:af:32:da:70:e5:3f:54:f3:f1:
d6:78:da:b8:9b:0c:08:81:7c:b0:f4:ab:94:8a:00:
b6:45:3e:01:03:b4:47:18:5d:00:57:61:60:f7:00:
3d:4a:f5:1d:16:1d:98:86:00:1b:25:3e:48:39:f1:
00:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A5:43:FF:3D:FE:8F:2D:08:DC:0D:F7:4F:7B:17:0C:9D:74:31:14
X509v3 Authority Key Identifier:
keyid:44:3D:4F:95:73:29:DF:31:49:8F:A8:54:3C:23:F1:2C:87:4C:C6:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RD1PlXMp3zFJj6hUPCPxLIdMxg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:e9:c0:5d:cf:f8:9c:5a:2e:97:19:69:7a:9b:21:4f:6e:fa:
ef:08:46:4c:73:40:2c:00:36:7b:ac:67:6a:9c:80:5f:63:48:
ca:d9:74:9f:e3:42:b3:2e:09:da:15:dd:e6:aa:e4:44:f8:87:
84:e4:9f:f3:77:b5:1f:58:d0:06:62:5c:65:42:5c:6f:35:0f:
97:5d:f4:12:68:35:06:ac:6b:21:9c:ed:6a:ec:8b:56:6e:8a:
12:95:0a:31:46:6a:5d:18:8b:86:a8:19:9a:51:aa:47:87:41:
dd:be:37:1b:93:19:67:0b:10:4a:c0:58:18:87:8e:2c:56:a5:
e8:d5:01:1d:96:a1:21:67:c8:4a:1f:1e:78:61:29:6f:d7:32:
da:6d:ae:e4:72:9f:cd:43:39:76:b4:e8:d4:76:81:ff:86:58:
3e:1e:7c:6e:14:a4:39:f6:ee:df:dd:c2:b0:15:23:78:b7:91:
10:16:64:8a:14:77:a1:90:7a:9c:27:2d:25:14:5a:06:8f:30:
59:1d:4a:65:b2:5d:19:a2:70:00:ca:ae:cb:12:49:9a:6b:b1:
93:3d:16:fb:ee:77:7a:df:98:35:20:73:86:e1:14:ab:34:4d:
eb:c6:d9:7c:7a:08:39:2c:9e:98:5d:d4:c5:41:09:fb:ac:5d:
5b:82:18:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:20:02 2025 by rpki-client