Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.mft
File: MU0IhXjsDimwS0PpAUk1hnJjZP0.mft (raw, json)
Hash identifier: kRQN2xV7c2RTbOwaqrgNqIvgfJkbSYktDMcSal8I/zU=
Subject key identifier: C8:4D:3C:69:24:33:CB:78:70:8A:95:E2:0D:AD:A9:3F:DA:81:B1:21
Authority key identifier: 31:4D:08:85:78:EC:0E:29:B0:4B:43:E9:01:49:35:86:72:63:64:FD
Certificate issuer: /CN=314d088578ec0e29b04b43e901493586726364fd
Certificate serial: 019A4EF43C223DDA6D137455E45A08E2FA3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MU0IhXjsDimwS0PpAUk1hnJjZP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.mft
Manifest number: 1445
Signing time: Tue 04 Nov 2025 13:00:20 +0000
Manifest this update: Tue 04 Nov 2025 13:00:20 +0000
Manifest next update: Wed 05 Nov 2025 13:00:20 +0000
Files and hashes: 1: MU0IhXjsDimwS0PpAUk1hnJjZP0.crl (hash: lYKx5xq+KRJF7wf4wHwifLiL1MW9c+dCHmPevCqLYVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/MU0IhXjsDimwS0PpAUk1hnJjZP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:3c:22:3d:da:6d:13:74:55:e4:5a:08:e2:fa:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=314d088578ec0e29b04b43e901493586726364fd
Validity
Not Before: Nov 4 13:00:20 2025 GMT
Not After : Nov 5 13:00:20 2025 GMT
Subject: CN=c84d3c692433cb78708a95e20dada93fda81b121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4f:5b:03:59:db:0d:87:6b:19:ca:a4:25:eb:
d9:2c:8c:48:6b:d7:9e:c4:45:f2:c5:a2:81:a5:02:
84:4e:fb:99:1d:37:ae:47:ee:af:c1:af:4f:45:b7:
04:0c:cf:91:50:41:65:6b:3d:b6:26:c5:fb:35:a3:
bc:f7:d2:65:80:12:c2:67:2a:41:0f:0d:66:9f:90:
c9:90:46:7b:11:7a:d3:5c:4a:4c:8e:a2:ac:ae:a8:
e5:4c:3d:d4:e1:63:b7:dd:5e:ed:9b:83:bd:09:e4:
6f:fe:c9:ea:e6:b3:a0:f5:93:48:51:b8:c4:df:dd:
0b:e8:0a:52:dc:6b:44:30:e2:61:e5:f5:34:51:68:
f0:5f:dd:eb:59:42:9e:01:6d:ff:74:6a:df:33:12:
03:f9:7d:d7:40:bd:34:9c:48:1e:95:e2:14:ff:96:
33:73:a1:23:87:24:99:88:04:de:77:57:14:f1:d6:
db:cf:be:c5:1c:09:c7:03:33:eb:04:8b:0e:cc:29:
57:da:39:1e:32:5c:13:97:38:61:df:75:0d:af:1c:
0f:1a:f5:75:b2:38:27:a2:33:96:47:94:ba:f0:d2:
74:9e:74:e6:a2:6c:08:d6:40:85:84:99:cd:3e:db:
0b:20:8a:e7:9b:61:6d:08:e8:c6:be:d5:1d:11:a6:
d5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:4D:3C:69:24:33:CB:78:70:8A:95:E2:0D:AD:A9:3F:DA:81:B1:21
X509v3 Authority Key Identifier:
keyid:31:4D:08:85:78:EC:0E:29:B0:4B:43:E9:01:49:35:86:72:63:64:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MU0IhXjsDimwS0PpAUk1hnJjZP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:8d:0e:42:c8:42:7f:ad:eb:8c:ff:8f:ae:3c:16:64:f9:60:
ff:e8:cb:8d:4c:d9:c1:12:f7:5a:8c:06:7e:19:cf:62:c3:8e:
17:b9:e5:f5:09:e7:bc:63:70:af:b0:e2:57:f1:2b:8f:c8:f0:
02:89:51:7d:0e:39:4f:6c:23:dc:55:1e:ac:86:47:ad:d8:28:
5a:10:1f:6d:6c:36:ff:49:17:99:68:1c:29:55:32:6d:96:5c:
8f:1c:3a:a3:69:a8:b9:44:6a:2b:44:d1:8f:9d:e4:99:5d:33:
03:18:2d:9e:ce:2e:46:4e:5a:5e:8a:28:e6:0f:61:75:3c:e9:
e0:32:53:58:04:d4:ef:86:51:86:dd:41:bf:9d:05:39:07:82:
48:93:52:35:b8:f1:b3:05:46:5c:dd:b3:1f:24:82:d9:b5:01:
ea:ba:46:2c:4d:f8:dd:c5:4e:22:9d:80:16:4e:ea:9c:fd:54:
99:5f:3c:71:dc:15:3a:37:82:eb:e5:6f:1b:08:08:0e:7a:3f:
fb:2e:ba:fc:d9:f2:31:6d:a3:b6:2c:81:d7:cd:65:76:cc:c6:
51:67:95:91:d2:fc:e1:24:8b:49:6b:85:7b:f8:3b:4e:8e:26:
b5:ee:e2:05:5e:0f:db:d9:a6:56:31:31:c4:4c:d0:3d:0b:0c:
df:78:ff:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:21:52 2025 by rpki-client