Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
File: coCW6KzXbpqhfz62eAQG49pWPtI.mft (raw, json)
Hash identifier: 4RPp7t4/TAFofjssvt+Q7UKJ/40q3FW03/T+tOgoWNU=
Subject key identifier: 4A:C9:E5:E6:47:7F:73:F8:1A:45:69:C2:B0:7D:63:02:CB:09:83:0B
Authority key identifier: 72:80:96:E8:AC:D7:6E:9A:A1:7F:3E:B6:78:04:06:E3:DA:56:3E:D2
Certificate issuer: /CN=728096e8acd76e9aa17f3eb6780406e3da563ed2
Certificate serial: 019A4DE1BFD73A783590DD50B8D503882CF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
Manifest number: 15C6
Signing time: Tue 04 Nov 2025 08:00:31 +0000
Manifest this update: Tue 04 Nov 2025 08:00:31 +0000
Manifest next update: Wed 05 Nov 2025 08:00:31 +0000
Files and hashes: 1: coCW6KzXbpqhfz62eAQG49pWPtI.crl (hash: KSB7ojevOwKpHq5Bie1d2hnAtb5qJZp2oPBdJQNmKiY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:bf:d7:3a:78:35:90:dd:50:b8:d5:03:88:2c:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=728096e8acd76e9aa17f3eb6780406e3da563ed2
Validity
Not Before: Nov 4 08:00:31 2025 GMT
Not After : Nov 5 08:00:31 2025 GMT
Subject: CN=4ac9e5e6477f73f81a4569c2b07d6302cb09830b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cb:2d:84:a5:cf:da:13:5a:e4:5e:33:e5:57:
c1:40:a6:1e:89:c8:46:c4:11:fc:05:db:1e:cf:dc:
71:05:10:4f:c8:de:08:a6:81:b7:41:c2:6a:1c:83:
b3:55:a4:5e:70:15:78:48:22:21:ba:4a:1e:2d:3f:
cc:a3:d5:b1:69:31:66:ef:07:38:c0:75:07:02:01:
27:bd:3f:cb:be:e5:b5:ab:6f:92:f6:c9:e3:01:c0:
23:10:e8:fd:13:b0:ee:14:04:d0:27:ba:34:c9:95:
54:9c:e3:d0:ff:03:db:44:37:e7:77:b6:61:f2:33:
ed:55:1a:43:b1:7c:3d:be:d9:2d:ce:7c:b2:7f:cd:
e0:4e:3a:a7:65:6d:ba:2c:91:2e:10:27:45:f4:43:
c8:ae:87:3a:10:49:92:21:91:3f:cb:3e:ef:80:ef:
35:95:6a:f6:61:e2:da:3f:cf:38:5d:a4:47:0c:ae:
d3:81:0d:7a:8a:71:27:e6:28:50:e7:ba:0b:a1:aa:
91:1c:8e:d0:cd:a9:2d:9e:a2:0e:87:0b:5c:f3:a5:
ba:e7:0e:8b:f1:e7:2a:30:96:48:92:33:6c:9d:db:
26:a0:7f:b3:aa:88:bb:db:18:41:1e:f6:99:c5:5f:
c5:23:f7:d6:23:b6:dd:87:31:f5:52:a8:b9:b8:38:
e8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C9:E5:E6:47:7F:73:F8:1A:45:69:C2:B0:7D:63:02:CB:09:83:0B
X509v3 Authority Key Identifier:
keyid:72:80:96:E8:AC:D7:6E:9A:A1:7F:3E:B6:78:04:06:E3:DA:56:3E:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:a7:d6:cc:fb:ac:ef:c0:03:36:69:93:5d:bb:06:1f:41:20:
4f:d0:f8:9f:77:b3:1b:b9:69:32:79:82:6f:80:45:1d:d1:4a:
08:eb:d6:d8:5d:9a:6c:3a:d7:65:c2:1c:26:77:06:52:4a:f1:
b4:f9:96:e3:01:6f:62:75:21:b1:97:d5:dc:ea:41:94:01:9a:
ee:7f:5b:61:60:e0:f3:4a:6b:9d:c1:be:ee:5b:6b:17:88:66:
77:ac:0a:be:82:ed:e2:64:da:16:fb:97:90:38:36:79:2e:0c:
03:fd:33:7b:71:fb:b0:71:a0:e3:d0:21:8f:11:7a:55:2b:a4:
77:4a:e0:95:6c:d4:91:4a:f9:fc:e5:dd:14:f9:26:8a:c1:ea:
f3:89:86:72:26:cc:de:3f:8c:fd:bf:83:b1:85:93:a9:72:ac:
1b:87:40:cd:d4:5f:d1:b0:17:80:34:d2:39:49:47:17:d5:da:
72:ba:ee:e4:e8:83:77:7f:45:cb:a3:0c:ba:e8:99:47:25:a9:
65:79:ab:e1:51:e0:c4:2c:dd:ee:74:50:80:bf:07:d3:fa:6b:
72:07:4b:f7:df:13:15:c2:3e:40:8f:d5:8b:a1:ca:df:60:d6:
e2:c7:bb:da:8c:b8:87:e0:b6:7b:39:68:ef:9b:e1:74:c1:2d:
e4:19:db:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:17:37 2025 by rpki-client