Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft
File: spK68_TAei7dR9iMKxW2Wir33q0.mft (raw, json)
Hash identifier: RFBRoe1EGMSxHqoOC7+7gf+Gs4v53TLBM1r6ylRQMd8=
Subject key identifier: 4E:80:67:C5:5E:CD:53:04:54:8B:63:4F:7F:8F:0D:FF:DC:36:35:12
Authority key identifier: B2:92:BA:F3:F4:C0:7A:2E:DD:47:D8:8C:2B:15:B6:5A:2A:F7:DE:AD
Certificate issuer: /CN=b292baf3f4c07a2edd47d88c2b15b65a2af7dead
Certificate serial: 019A50E38740360163D920FAF6B31C7052B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spK68_TAei7dR9iMKxW2Wir33q0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft
Manifest number: 0DA6
Signing time: Tue 04 Nov 2025 22:01:19 +0000
Manifest this update: Tue 04 Nov 2025 22:01:19 +0000
Manifest next update: Wed 05 Nov 2025 22:01:19 +0000
Files and hashes: 1: spK68_TAei7dR9iMKxW2Wir33q0.crl (hash: 3GIXbKQXnO1gz9P23r19JpyULDSIcOzmPVJkm1bjSHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft
rsync://rpki.ripe.net/repository/DEFAULT/spK68_TAei7dR9iMKxW2Wir33q0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e3:87:40:36:01:63:d9:20:fa:f6:b3:1c:70:52:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b292baf3f4c07a2edd47d88c2b15b65a2af7dead
Validity
Not Before: Nov 4 22:01:19 2025 GMT
Not After : Nov 5 22:01:19 2025 GMT
Subject: CN=4e8067c55ecd5304548b634f7f8f0dffdc363512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:cb:e7:78:70:b0:59:94:2e:e7:4d:92:88:fb:
2a:25:d9:c0:8a:78:24:0d:a3:73:c4:61:07:4e:b3:
51:a4:40:56:5f:a2:0d:52:1e:04:fa:e1:67:90:e4:
ec:40:94:3a:b3:45:21:f8:bc:2d:98:4a:ff:48:84:
36:7e:23:13:f7:78:23:0b:4d:1b:6b:a1:5a:b3:66:
35:03:8c:82:4c:a9:43:5c:71:f3:6a:ba:7c:3d:b0:
c6:cf:f8:dc:cc:f7:d2:9b:d1:fa:5c:cb:a1:49:0f:
22:90:82:8d:92:87:1b:2d:94:5f:8b:d6:9e:22:7d:
8c:45:81:79:93:9d:69:ae:c3:39:4d:fe:2a:a2:9b:
00:f7:5b:e7:ad:93:49:a1:e1:99:19:de:1e:8d:5b:
41:4e:a9:61:0f:6d:e6:6b:6e:90:c5:b9:9f:0b:f1:
9b:09:6e:f1:46:63:c8:33:55:57:b0:3d:24:7d:3f:
35:dd:bb:08:07:b9:40:9d:e4:2a:56:4f:e6:eb:76:
54:d2:3f:1d:bd:24:f0:aa:04:a8:42:75:b3:fb:88:
72:fd:7c:57:9c:84:7b:b6:24:f0:e6:5e:ca:36:0c:
f4:8d:e0:1a:89:75:fb:3d:6b:76:b4:5f:65:16:05:
e5:bd:27:6e:b6:6e:40:6b:83:c6:3d:6d:80:42:0c:
ec:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:80:67:C5:5E:CD:53:04:54:8B:63:4F:7F:8F:0D:FF:DC:36:35:12
X509v3 Authority Key Identifier:
keyid:B2:92:BA:F3:F4:C0:7A:2E:DD:47:D8:8C:2B:15:B6:5A:2A:F7:DE:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spK68_TAei7dR9iMKxW2Wir33q0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:eb:b3:2d:13:29:02:39:17:c1:67:d4:3f:55:04:80:5f:d1:
7e:ce:9e:9d:f6:0f:b1:56:ed:e8:94:ac:11:23:f1:d0:37:bf:
1b:51:e6:5f:76:84:18:84:28:70:5a:64:17:d5:cc:8c:0e:92:
68:32:be:86:a2:46:34:c7:34:88:ac:d3:9c:d9:cf:0d:f7:d7:
45:5c:92:8b:20:19:06:31:cb:b7:20:43:be:ac:67:55:dd:5c:
b7:02:3a:98:62:e3:17:27:cf:82:f4:bf:d7:9e:5a:39:0f:00:
d2:5e:12:93:44:90:a5:87:da:b8:b3:b9:1c:f2:1f:9b:5b:56:
40:94:e3:b1:66:54:fd:c0:3b:fd:01:11:8f:21:ca:cf:96:fe:
32:cf:1d:b4:4b:0f:76:4c:48:5a:16:ce:be:b0:26:8b:bd:e1:
d4:d4:53:33:85:b6:32:f9:61:97:81:76:29:c4:dd:4a:df:62:
31:74:98:45:2e:e0:c9:f9:b2:6d:fa:68:49:e1:79:8c:cf:a8:
83:41:8c:26:ab:98:a5:98:bf:b1:fb:c5:3e:f2:a9:b7:83:22:
ba:a0:c2:9f:df:16:60:56:6b:29:4d:90:1a:f0:b5:33:c2:84:
fa:c0:f5:d1:74:e3:29:d2:9a:5f:e8:f0:25:cd:52:34:55:3b:
75:45:7b:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 04:40:08 2025 by rpki-client