Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.mft
File: MUzpW6I83J1gmXwjDWNZrTHBpZ0.mft (raw, json)
Hash identifier: r2l37L/WebFI9k2qw9eINRBUdbPA1+CH51nkDw92m64=
Subject key identifier: 00:83:54:BF:F9:BD:EC:67:36:7C:61:C6:6A:95:4F:03:EA:87:0D:EA
Authority key identifier: 31:4C:E9:5B:A2:3C:DC:9D:60:99:7C:23:0D:63:59:AD:31:C1:A5:9D
Certificate issuer: /CN=314ce95ba23cdc9d60997c230d6359ad31c1a59d
Certificate serial: 019A4F2B49D0D421CE73C4C5FA7B0CFFEAD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MUzpW6I83J1gmXwjDWNZrTHBpZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.mft
Manifest number: 0659
Signing time: Tue 04 Nov 2025 14:00:28 +0000
Manifest this update: Tue 04 Nov 2025 14:00:28 +0000
Manifest next update: Wed 05 Nov 2025 14:00:28 +0000
Files and hashes: 1: MUzpW6I83J1gmXwjDWNZrTHBpZ0.crl (hash: hpy+RFzO0ZMBr0N9P8M97EZsatrOZeHhB/MeRSry0Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/MUzpW6I83J1gmXwjDWNZrTHBpZ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:49:d0:d4:21:ce:73:c4:c5:fa:7b:0c:ff:ea:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=314ce95ba23cdc9d60997c230d6359ad31c1a59d
Validity
Not Before: Nov 4 14:00:28 2025 GMT
Not After : Nov 5 14:00:28 2025 GMT
Subject: CN=008354bff9bdec67367c61c66a954f03ea870dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d5:c4:cb:9a:57:cf:52:64:43:13:61:b4:ed:
c7:98:8b:5a:ad:1c:bd:44:19:b0:b6:27:76:c1:0c:
0d:88:e5:c1:7f:4f:6e:5f:42:39:de:05:d6:ee:04:
82:ac:55:fc:f8:ee:ab:02:93:53:e7:5a:63:52:90:
29:ce:1c:dc:1d:32:0c:92:18:5c:4e:97:db:8e:0c:
a2:8d:e1:56:59:a1:45:f8:c1:f3:e9:a0:d3:34:b6:
26:a6:77:99:ad:fb:41:ab:7a:f4:ff:ec:93:91:f8:
3e:da:62:46:9c:19:5b:d8:46:d4:5b:8a:c3:6a:03:
6e:2f:c2:fd:3b:c8:2b:44:77:17:6b:06:10:46:9b:
07:58:bc:ab:19:ca:81:e4:40:6f:37:7a:8b:86:a3:
ba:f9:74:18:d0:8f:af:1c:30:cb:1c:52:a7:64:29:
98:62:de:4b:22:15:fe:87:61:c7:94:52:e8:a3:24:
f9:23:11:90:0a:82:05:4d:c1:fd:71:8f:c6:e6:67:
10:0a:39:1f:a4:9f:38:99:11:2d:fd:87:41:1a:9d:
bb:f7:5b:54:ae:fd:89:01:cd:f6:82:45:f6:e0:ff:
bf:70:89:0c:9a:eb:cc:74:60:80:2f:dd:fd:f7:19:
e5:0d:eb:96:0d:8c:da:dc:35:f1:89:3e:70:32:51:
d0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:83:54:BF:F9:BD:EC:67:36:7C:61:C6:6A:95:4F:03:EA:87:0D:EA
X509v3 Authority Key Identifier:
keyid:31:4C:E9:5B:A2:3C:DC:9D:60:99:7C:23:0D:63:59:AD:31:C1:A5:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MUzpW6I83J1gmXwjDWNZrTHBpZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:31:0f:b0:4c:94:95:8a:28:e5:be:73:b5:c2:6a:73:cc:ac:
2e:e2:0b:fd:74:dc:58:23:80:61:8e:97:52:2f:4a:14:dc:d6:
2f:46:6e:08:54:07:6d:03:19:1a:5e:28:81:1e:73:02:bc:8f:
87:8d:59:63:0b:22:35:17:eb:ec:09:86:4d:8e:f0:20:5c:45:
d3:a2:da:51:8e:c7:e7:72:2c:02:10:1c:3f:03:d2:c5:bb:da:
5c:07:0c:fa:a4:66:97:33:bd:bd:8f:42:40:13:bd:d4:44:77:
d3:a4:bb:96:82:1a:7e:f6:35:ee:a5:60:f1:19:a4:1a:c1:33:
7a:46:a8:56:c2:84:c1:0d:72:05:7c:ba:75:6f:cf:a7:47:ac:
a5:8e:8a:6f:a4:11:7f:7f:b7:d7:c7:49:0a:0a:12:30:8e:fc:
79:ea:53:15:0e:f6:21:38:d4:5f:df:bd:a1:44:82:82:0e:b6:
9e:12:0f:4d:be:04:1b:ae:51:ea:a2:a9:89:6b:5f:36:76:ac:
3f:ff:2c:6f:c0:c4:8b:7d:ff:73:68:33:af:5c:d4:fd:9e:46:
7f:d1:1d:98:f0:0c:78:f8:d6:97:b3:a4:9a:df:39:c2:31:3a:
08:42:a3:54:1b:24:be:e6:b6:0f:a4:45:e8:2c:6b:20:14:e7:
3e:50:94:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:09:29 2025 by rpki-client