Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.mft
File: ur8nIaXXgzW3uX22OuxDXJyji8c.mft (raw, json)
Hash identifier: LHMnFj+3emPYmtqJyUY8EyTJUkwNnoiP71dTOO7KBIA=
Subject key identifier: 53:50:C9:96:F5:A5:4F:18:8E:E2:6C:90:76:D1:7B:F3:E9:2F:BE:0D
Authority key identifier: BA:BF:27:21:A5:D7:83:35:B7:B9:7D:B6:3A:EC:43:5C:9C:A3:8B:C7
Certificate issuer: /CN=babf2721a5d78335b7b97db63aec435c9ca38bc7
Certificate serial: 019A4EF4BADF01C9F18CF92ED61095061F1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ur8nIaXXgzW3uX22OuxDXJyji8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.mft
Manifest number: 0907
Signing time: Tue 04 Nov 2025 13:00:52 +0000
Manifest this update: Tue 04 Nov 2025 13:00:52 +0000
Manifest next update: Wed 05 Nov 2025 13:00:52 +0000
Files and hashes: 1: ur8nIaXXgzW3uX22OuxDXJyji8c.crl (hash: juy/3zWk1y60DLZ8WZADfbXIFmtokGyX02JTgJOyYTc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.mft
rsync://rpki.ripe.net/repository/DEFAULT/ur8nIaXXgzW3uX22OuxDXJyji8c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:ba:df:01:c9:f1:8c:f9:2e:d6:10:95:06:1f:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=babf2721a5d78335b7b97db63aec435c9ca38bc7
Validity
Not Before: Nov 4 13:00:52 2025 GMT
Not After : Nov 5 13:00:52 2025 GMT
Subject: CN=5350c996f5a54f188ee26c9076d17bf3e92fbe0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:42:d0:e9:13:7b:5c:78:23:f4:9b:6c:4d:6a:
09:cf:54:6e:f5:cd:63:ef:cc:3d:2e:c5:5f:9e:29:
f9:66:07:04:03:73:7a:04:9c:76:6d:44:fe:57:e4:
84:11:37:41:cf:9a:f8:b1:20:31:3a:a1:11:ba:f4:
73:58:5c:d1:f5:44:8f:60:41:77:9e:fb:94:67:28:
6f:f8:20:21:67:a4:5c:b0:0e:5b:2e:06:77:dc:50:
12:89:06:be:3a:3d:60:3f:fa:3b:26:2c:86:69:64:
74:58:c6:06:6c:7c:20:78:1b:43:da:fd:2f:44:5a:
2d:01:36:7d:66:37:8d:75:f2:e3:4c:23:72:8c:a5:
f2:6c:0a:d6:39:93:c1:e1:58:8e:e3:59:ff:e4:12:
2f:1c:aa:d4:a8:53:f8:40:19:67:35:0f:5a:07:1a:
97:79:82:41:c2:65:45:ed:db:9d:a0:1e:6f:79:1b:
fe:75:5e:48:56:96:ea:51:6d:6a:00:c8:9d:7a:43:
f8:a8:97:55:b0:e2:52:4e:90:8b:fc:78:02:3f:98:
c5:5f:b8:1b:2e:68:7a:f8:a0:70:a8:d8:97:61:18:
1f:e1:a7:d0:ef:66:5a:07:aa:ec:16:c9:d7:07:83:
19:43:fe:80:7e:c8:1f:a7:be:47:54:64:26:5a:1f:
87:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:50:C9:96:F5:A5:4F:18:8E:E2:6C:90:76:D1:7B:F3:E9:2F:BE:0D
X509v3 Authority Key Identifier:
keyid:BA:BF:27:21:A5:D7:83:35:B7:B9:7D:B6:3A:EC:43:5C:9C:A3:8B:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ur8nIaXXgzW3uX22OuxDXJyji8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:e5:d4:b1:f8:15:c0:24:17:29:23:d5:15:ba:bc:db:ec:9b:
e9:76:2d:d5:8d:f7:d1:20:32:65:01:a6:f4:c0:b1:79:19:f5:
10:b2:57:a8:91:0c:05:a6:48:95:20:21:95:7d:30:80:42:2e:
93:83:76:3b:4b:fd:1e:6f:02:a6:07:40:a8:55:3c:1c:28:8b:
55:c0:f9:64:2a:a3:29:ed:46:8a:8b:95:4e:36:51:5c:85:5d:
3d:80:58:91:ba:5f:1e:74:22:44:b3:06:a2:12:e9:49:2e:5e:
c8:aa:ef:3f:ef:c1:c0:d7:ba:9d:3f:c3:a5:de:dd:a1:f3:99:
72:b2:2b:53:2b:57:53:36:56:25:b5:57:dd:32:62:e8:f0:30:
2f:9c:d4:f3:74:25:2f:41:58:27:01:0c:20:26:f8:db:ab:b0:
d2:61:82:90:67:a4:5e:8c:ee:3e:3f:f5:4f:3a:51:1a:cd:3e:
d5:61:1c:79:ad:77:c3:77:33:d3:43:ac:f5:f1:f9:1d:d2:1e:
28:dd:e6:5c:45:04:c4:8c:ed:40:ef:49:0e:fe:0a:74:3f:1d:
ff:e6:6a:dc:e9:84:b4:ca:75:1e:21:cd:c4:3d:62:3c:3b:a7:
a7:21:e2:36:33:24:da:86:4d:a5:3e:03:64:7d:3d:21:24:9f:
b6:04:cf:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:00:42 2025 by rpki-client