Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft
File: mtVmfEEoFBE5zKfFBH_BclC_Y68.mft (raw, json)
Hash identifier: 80P68iuMnda17tBB2ZCrzfctBafveXasvJstwPYzjNY=
Subject key identifier: 3E:24:57:6A:09:45:C0:DC:50:0A:B9:B8:D8:B9:35:38:5E:EA:8A:09
Authority key identifier: 9A:D5:66:7C:41:28:14:11:39:CC:A7:C5:04:7F:C1:72:50:BF:63:AF
Certificate issuer: /CN=9ad5667c4128141139cca7c5047fc17250bf63af
Certificate serial: 019A4D73CA9C6E905BFD9E64E395FC829F0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mtVmfEEoFBE5zKfFBH_BclC_Y68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft
Manifest number: 1709
Signing time: Tue 04 Nov 2025 06:00:25 +0000
Manifest this update: Tue 04 Nov 2025 06:00:25 +0000
Manifest next update: Wed 05 Nov 2025 06:00:25 +0000
Files and hashes: 1: mtVmfEEoFBE5zKfFBH_BclC_Y68.crl (hash: S4lap2mox68tJII7CUD0v7Q2ApAVIfEBfnDcn+on+Jk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft
rsync://rpki.ripe.net/repository/DEFAULT/mtVmfEEoFBE5zKfFBH_BclC_Y68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:73:ca:9c:6e:90:5b:fd:9e:64:e3:95:fc:82:9f:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ad5667c4128141139cca7c5047fc17250bf63af
Validity
Not Before: Nov 4 06:00:25 2025 GMT
Not After : Nov 5 06:00:25 2025 GMT
Subject: CN=3e24576a0945c0dc500ab9b8d8b935385eea8a09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f1:4f:0d:57:87:39:46:b0:a3:5d:3c:05:30:
63:fc:4b:ed:3a:42:1d:8a:de:81:42:2c:ff:ea:40:
96:b7:59:ed:c5:02:db:ad:7b:98:16:19:f8:02:70:
ac:43:7c:98:10:0d:3f:f8:75:5e:d2:88:ce:29:0a:
c2:bb:df:47:b5:63:ca:5a:9b:a4:99:36:27:11:4b:
16:2e:4d:16:0a:c2:15:b3:62:2a:e6:6f:d0:b3:73:
f6:b4:9a:2f:58:e2:0b:44:a7:64:d4:c7:56:7b:6b:
e7:4b:2e:e0:b8:16:29:13:e5:15:af:87:36:4f:da:
34:6d:e0:f4:8c:a8:2c:3e:55:9d:38:24:c1:a2:86:
3e:92:d9:3a:fe:92:85:1d:50:82:27:37:83:ea:04:
a6:c8:e2:c8:ab:26:aa:81:bd:cc:94:9b:a0:2a:64:
47:e0:d4:c2:9e:14:f4:32:27:fb:21:f3:a3:69:bc:
87:cc:0e:04:66:f7:ca:08:fc:c2:8c:4c:56:46:3d:
bc:73:18:15:e7:e6:a7:e5:b4:28:db:ba:2a:46:75:
ef:52:2e:3a:1f:a0:15:20:bc:9c:eb:83:cf:10:fb:
0a:2e:b3:ff:00:0f:f0:db:15:c6:b6:84:7d:81:0a:
61:4d:10:d9:97:e6:19:7c:30:ad:ad:ec:60:c9:d8:
6f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:24:57:6A:09:45:C0:DC:50:0A:B9:B8:D8:B9:35:38:5E:EA:8A:09
X509v3 Authority Key Identifier:
keyid:9A:D5:66:7C:41:28:14:11:39:CC:A7:C5:04:7F:C1:72:50:BF:63:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mtVmfEEoFBE5zKfFBH_BclC_Y68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:b5:6c:8c:e2:9f:7a:5f:44:ac:6c:81:e2:30:ef:e3:16:d7:
57:d6:2e:d9:bd:65:7e:80:91:0c:47:f9:90:d2:bb:72:29:14:
ce:78:91:d7:37:45:3d:25:71:d4:17:58:82:e7:16:e6:2a:6b:
7f:e8:1e:22:38:34:06:c7:91:58:43:04:9f:eb:23:7f:eb:67:
2d:44:17:9d:0c:b9:6e:79:b6:06:92:3b:18:06:e6:9a:ea:92:
f0:4b:fa:ba:9b:51:7d:a9:41:d6:b1:c3:67:47:81:7c:43:8e:
39:26:7f:dc:47:cf:ec:27:ba:2a:02:1c:34:93:8d:66:59:09:
92:36:f8:e6:22:6d:4b:20:81:a0:c8:c3:0e:e8:77:6d:d7:e8:
d2:fb:d3:b1:e0:13:fe:0f:15:e4:f0:01:fc:fb:a1:7c:e7:6b:
f6:7b:dd:8b:2f:0b:88:3c:47:7d:c6:1c:6f:5d:0c:ad:89:83:
53:70:ea:ad:60:f9:72:8a:38:34:e3:d4:b7:61:26:13:c7:f0:
91:7f:88:5e:a2:3d:ae:e6:d5:9b:72:1e:b2:b9:91:b6:60:8a:
d8:4c:46:6d:37:fb:08:35:52:12:6c:63:c9:86:86:ea:d5:ff:
45:d0:8c:45:37:f1:24:18:c8:c7:b4:84:03:01:6d:53:c6:e8:
fc:f1:cc:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:42:09 2025 by rpki-client