Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft
File: PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft (raw, json)
Hash identifier: 5Eo+Wtj4ZFaZHpscYxqPNg6yKF9eje7XQmXNWAX+PEc=
Subject key identifier: 36:1F:DC:55:CB:B6:43:5F:EC:3B:C6:4A:7B:6E:A0:69:A0:0E:A2:6A
Authority key identifier: 3D:1B:67:CC:DA:49:C8:DE:48:92:93:41:F6:DE:8A:2B:60:25:B3:A6
Certificate issuer: /CN=3d1b67ccda49c8de48929341f6de8a2b6025b3a6
Certificate serial: 019A4EF4BF68076117ABA48C5F0EAF463FC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRtnzNpJyN5IkpNB9t6KK2Als6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft
Manifest number: 0491
Signing time: Tue 04 Nov 2025 13:00:53 +0000
Manifest this update: Tue 04 Nov 2025 13:00:53 +0000
Manifest next update: Wed 05 Nov 2025 13:00:53 +0000
Files and hashes: 1: PRtnzNpJyN5IkpNB9t6KK2Als6Y.crl (hash: 4W0oOLlDQYexNZ8sk29NVKFzPZzfhYkuVI/hi/SfdXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRtnzNpJyN5IkpNB9t6KK2Als6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:bf:68:07:61:17:ab:a4:8c:5f:0e:af:46:3f:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d1b67ccda49c8de48929341f6de8a2b6025b3a6
Validity
Not Before: Nov 4 13:00:53 2025 GMT
Not After : Nov 5 13:00:53 2025 GMT
Subject: CN=361fdc55cbb6435fec3bc64a7b6ea069a00ea26a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ca:67:4e:30:d5:2a:5d:79:1f:59:df:16:f5:
b9:a1:b0:20:0f:d2:bc:44:02:b6:c1:45:2e:a3:1a:
22:69:62:d5:b7:6a:89:e0:6f:9f:2a:bc:b6:4c:24:
dc:d5:f9:56:75:9f:53:21:13:d7:63:01:0b:76:42:
52:54:2f:17:a0:cc:29:29:4c:d0:05:70:4d:6d:ff:
3a:d3:bb:9a:ed:70:16:dd:e1:81:2c:b9:be:95:b5:
d0:86:c8:eb:d5:76:fa:75:0f:a7:51:6d:d6:bd:9f:
82:2b:7b:0b:c5:6a:07:dc:65:73:7a:e4:2a:58:21:
1b:8c:cc:c7:f7:d9:d9:16:18:0a:79:05:cc:b1:ad:
90:5b:06:b3:6f:71:f8:16:de:e3:53:04:9c:52:f4:
9c:13:e3:7d:84:6b:e7:1d:c6:5b:48:da:78:94:8d:
5d:ee:c5:cb:b9:e5:ba:bd:2e:e6:a1:1d:d4:1f:6a:
a5:d6:1e:9d:7b:f6:b2:86:3c:66:3f:69:a4:1a:9c:
5a:a6:73:d5:c8:f4:af:30:3d:4e:72:09:5f:98:ac:
9b:d0:1d:f3:5c:9b:8c:e9:7b:6c:ee:70:66:10:62:
50:de:e5:a3:83:f1:7e:c0:89:a1:8a:9a:68:b6:83:
38:6a:20:d3:4f:cb:75:cc:5b:7b:a4:0d:a2:0f:6e:
83:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:1F:DC:55:CB:B6:43:5F:EC:3B:C6:4A:7B:6E:A0:69:A0:0E:A2:6A
X509v3 Authority Key Identifier:
keyid:3D:1B:67:CC:DA:49:C8:DE:48:92:93:41:F6:DE:8A:2B:60:25:B3:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRtnzNpJyN5IkpNB9t6KK2Als6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:e3:95:6c:43:42:13:b0:2a:5e:5f:c1:9a:69:53:29:eb:77:
60:58:85:a1:1c:f8:b1:04:62:ba:45:82:6d:5d:91:b6:20:bc:
61:79:5f:b0:24:50:c5:f1:98:8e:fc:87:28:4e:0d:61:93:7c:
49:80:24:54:21:fa:8f:36:63:a2:29:07:9c:77:81:9b:3e:ef:
da:c3:45:f2:31:e7:42:4b:ee:de:d4:2b:5e:1e:b1:5a:c7:9f:
d2:31:51:be:f9:8a:5d:28:a3:17:63:b6:ad:c2:ca:a1:6f:88:
17:71:c1:5a:01:8c:3a:42:f1:75:7e:1c:23:3f:85:b2:2f:5e:
e0:c3:15:b6:82:cd:d7:8f:2a:d3:91:5d:6c:1d:f4:0d:e6:85:
68:56:d5:a8:a4:f5:61:c4:31:bf:89:0d:36:b6:e6:fc:4e:4c:
51:7c:b0:53:fc:ba:b5:c0:79:92:6d:f7:66:d6:82:84:38:9a:
9f:6a:b2:77:8b:aa:76:47:ad:b4:15:ef:53:06:63:b9:72:19:
f6:41:0f:f7:26:35:ff:67:d6:68:4c:38:25:7b:06:2e:c4:a0:
37:4a:c7:5f:cf:3d:26:01:b9:98:a6:93:c9:95:5f:04:e9:d1:
ba:f2:c8:36:1f:ed:2e:ef:67:f6:b2:97:5a:d4:e2:87:c0:34:
f8:94:16:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:01:06 2025 by rpki-client