Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
File: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft (raw, json)
Hash identifier: ICgjeQ5HjqEYyBLJvaemXwISxnUMjpaf/hF2ZxqNZpc=
Subject key identifier: 47:CE:09:35:AB:B6:DB:F3:8C:3F:3C:F1:D4:7C:B6:36:84:C5:CB:52
Authority key identifier: 74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07
Certificate issuer: /CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907
Certificate serial: 019A4EF4498410B984B458F7AAE9AB23C7E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
Manifest number: 1709
Signing time: Tue 04 Nov 2025 13:00:23 +0000
Manifest this update: Tue 04 Nov 2025 13:00:23 +0000
Manifest next update: Wed 05 Nov 2025 13:00:23 +0000
Files and hashes: 1: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl (hash: xp2kViaTwiOi4UoDmPYu8ZhHsTNVYIlb8V+fxFjv+lI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:49:84:10:b9:84:b4:58:f7:aa:e9:ab:23:c7:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907
Validity
Not Before: Nov 4 13:00:23 2025 GMT
Not After : Nov 5 13:00:23 2025 GMT
Subject: CN=47ce0935abb6dbf38c3f3cf1d47cb63684c5cb52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:59:e5:2c:dc:4a:83:55:3f:f0:12:2d:31:5a:
f4:99:08:43:ff:6d:2b:0a:d9:6d:c6:99:e8:b6:b1:
75:2f:8f:bf:81:3b:1e:86:18:35:f7:0b:cd:5b:52:
6f:82:e8:04:4b:71:d4:ab:4e:48:66:d1:c8:81:f0:
1d:38:c7:54:ef:9d:1b:dc:11:ec:f5:e3:ec:64:03:
27:b9:03:67:22:ae:e6:3a:76:c8:d0:bd:df:93:c7:
9e:25:e3:24:97:8c:7c:af:67:0a:ac:31:88:59:25:
80:c7:4c:83:56:5a:ae:5a:7b:38:84:46:56:a0:81:
c1:22:26:76:08:de:ca:8c:a3:b6:51:8a:95:29:d7:
95:39:04:bd:b2:54:90:44:9d:58:2b:1c:f7:63:bb:
93:62:dc:cb:3b:68:80:3b:1d:21:62:9b:ff:a0:ec:
b0:bb:00:0c:e7:52:c3:83:40:bf:4f:72:05:62:fd:
f4:9e:f4:2b:ac:fd:7b:5b:80:fc:f8:89:f0:cf:5f:
69:73:05:7a:17:33:97:f7:90:26:6e:90:f7:5f:ba:
45:d7:09:06:c0:63:45:27:20:d7:59:2b:23:4d:a9:
ac:fa:53:2f:5f:ec:a9:3d:2c:67:94:dc:38:3d:1c:
98:d8:12:92:de:5c:ee:f2:4a:5a:36:47:66:9f:b8:
ec:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:CE:09:35:AB:B6:DB:F3:8C:3F:3C:F1:D4:7C:B6:36:84:C5:CB:52
X509v3 Authority Key Identifier:
keyid:74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:0d:8a:04:16:40:2c:0f:32:0b:ff:f4:84:6b:31:33:19:e6:
28:0e:66:9d:01:b5:06:9e:82:34:45:c6:02:ad:23:76:23:4e:
01:f5:1f:34:a7:3d:6a:bd:a8:17:eb:66:41:4b:3f:36:6e:f9:
02:b9:47:79:24:cd:fb:6e:f3:f6:15:65:17:ea:93:3e:4e:a7:
b5:e9:53:1a:99:57:4d:bf:a7:a8:c4:47:5f:66:c0:58:b6:44:
15:3e:40:ad:70:d2:59:e8:78:d8:aa:97:ee:af:ca:19:ad:d8:
69:5d:71:79:87:16:08:ce:b9:24:f2:ec:2f:44:c4:aa:39:1b:
c3:97:f1:b2:eb:fa:8e:6b:5d:f9:e6:49:2e:8a:b7:86:32:4d:
1c:93:68:12:37:cb:42:a8:88:81:15:c6:04:95:8d:9f:1c:ae:
e6:40:fa:5c:dc:52:43:2f:f9:b4:09:d9:73:ba:b5:5c:19:21:
ca:08:ec:7f:dc:ed:59:71:54:ab:31:7c:42:d5:fd:8f:b7:d5:
4d:24:9b:45:f3:80:e2:96:11:5e:b8:95:31:8a:94:41:ea:60:
59:42:26:fa:35:66:29:29:85:74:1e:eb:b3:6e:a2:36:06:a7:
be:f6:1b:22:2c:e4:61:0b:0f:66:c4:f7:c8:89:24:7a:a7:05:
5f:92:f8:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:01:49 2025 by rpki-client