Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
File: rRIanMsoPqIejQoHCi4LakDph30.mft (raw, json)
Hash identifier: DWiaUdnaGGi9d2RgOWt6Fkj+zn3WbbMD14al/RDtf2Y=
Subject key identifier: 61:89:D3:21:1F:F7:7B:12:D9:56:00:07:E9:90:B7:51:76:BF:F3:C9
Authority key identifier: AD:12:1A:9C:CB:28:3E:A2:1E:8D:0A:07:0A:2E:0B:6A:40:E9:87:7D
Certificate issuer: /CN=ad121a9ccb283ea21e8d0a070a2e0b6a40e9877d
Certificate serial: 019A4EF4673DB60894C5DA474D328F6DCE8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
Manifest number: 1709
Signing time: Tue 04 Nov 2025 13:00:31 +0000
Manifest this update: Tue 04 Nov 2025 13:00:31 +0000
Manifest next update: Wed 05 Nov 2025 13:00:31 +0000
Files and hashes: 1: rRIanMsoPqIejQoHCi4LakDph30.crl (hash: J7/4BcAw+T0Yl+xKYiLQCT7i+OBa+vMDU+W5OavtEkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:67:3d:b6:08:94:c5:da:47:4d:32:8f:6d:ce:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad121a9ccb283ea21e8d0a070a2e0b6a40e9877d
Validity
Not Before: Nov 4 13:00:31 2025 GMT
Not After : Nov 5 13:00:31 2025 GMT
Subject: CN=6189d3211ff77b12d9560007e990b75176bff3c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c9:8d:6b:6e:4f:df:22:5a:45:3d:58:87:c4:
13:9f:b6:a1:2b:67:bc:b5:a0:b6:d1:b8:89:62:d5:
7c:9e:93:18:3b:92:bc:02:05:5b:92:90:54:e6:ff:
7e:1d:42:8a:01:3f:e8:2c:33:ba:ff:af:0a:00:ad:
b4:1c:6c:d8:87:af:e9:21:48:7d:dc:14:6d:96:ac:
9d:13:15:03:f8:1c:a9:a0:83:ed:6a:bf:be:80:e7:
00:ff:83:f7:8d:f8:4a:97:5b:41:c5:f7:20:b6:85:
e7:63:be:ad:9d:6e:1d:35:78:7b:cc:79:68:3f:17:
8a:6a:0e:f1:19:cd:5a:77:3f:04:81:2b:73:ed:a6:
98:6c:07:59:ac:43:d7:77:a2:7e:9e:60:8c:df:d6:
7d:6f:20:2e:03:e2:6b:77:42:8d:50:b6:84:a3:fe:
55:10:e1:ad:3a:aa:30:de:d3:31:fa:3b:2b:2c:18:
eb:1a:4c:cf:8a:c8:44:8e:4e:87:66:64:b4:af:58:
0c:a9:63:36:d2:98:a2:fa:ff:a9:4c:63:b7:b9:f8:
d4:06:a8:c6:06:3a:e1:99:d2:6c:d6:ac:a8:b9:da:
ca:8c:62:1e:20:5b:86:d2:66:2a:56:30:fc:7f:c4:
f0:a2:60:b7:36:5e:7d:4e:4f:ab:b4:64:27:1f:fc:
fb:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:89:D3:21:1F:F7:7B:12:D9:56:00:07:E9:90:B7:51:76:BF:F3:C9
X509v3 Authority Key Identifier:
keyid:AD:12:1A:9C:CB:28:3E:A2:1E:8D:0A:07:0A:2E:0B:6A:40:E9:87:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:14:24:b9:d7:c1:f7:df:32:e2:6f:19:95:92:61:0a:dd:b0:
a6:47:92:1a:8a:9f:5f:ad:6a:2b:13:c7:01:69:19:a0:dd:53:
ff:d2:21:63:d7:93:26:c6:9b:f9:0d:17:33:dc:b6:72:65:67:
3c:f9:2d:70:bf:cc:d6:df:db:dd:98:8a:c2:04:19:98:3a:25:
1c:cd:68:7d:35:a4:78:da:8d:1d:7b:bc:e4:6c:f8:a8:f5:51:
cd:d5:f8:63:53:c7:7b:64:4f:37:89:88:79:fd:83:a2:06:44:
0d:55:4f:06:64:5b:ac:2e:9d:7d:4f:7a:a6:87:3c:a0:74:4c:
36:8c:81:de:c0:e4:8e:45:25:35:71:70:c9:10:92:29:b5:ad:
c6:7e:dc:66:dd:23:62:3a:b5:57:95:4e:70:13:80:34:c7:84:
19:1f:ba:c7:49:34:78:5d:25:05:d1:7d:5d:ab:b1:d6:90:eb:
e9:79:d0:c4:4e:ed:38:2f:74:d5:cc:64:ab:54:b9:f6:ec:fe:
fc:b5:04:17:d0:38:08:44:f3:bf:db:ed:83:34:cd:c0:91:fb:
e7:7b:5a:69:e8:bb:57:21:cc:fb:11:ab:5c:d3:b8:9f:45:33:
e2:77:ed:41:06:24:77:a6:ec:a0:f8:c6:4e:c0:bf:ca:5c:23:
c9:49:cf:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:52:11 2025 by rpki-client