Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
File: FYi9izG5XpysnzgSjZW4UvA9V4Q.mft (raw, json)
Hash identifier: lOMjvHRFiNDleYgefJrT72TrX7S9fZTutA9uRCLSPuc=
Subject key identifier: CF:79:81:51:F0:CF:05:1F:81:5D:0C:4B:48:5C:82:B9:D5:DB:B4:E1
Authority key identifier: 15:88:BD:8B:31:B9:5E:9C:AC:9F:38:12:8D:95:B8:52:F0:3D:57:84
Certificate issuer: /CN=1588bd8b31b95e9cac9f38128d95b852f03d5784
Certificate serial: 019A52D1BF1143E26562ADF88C461C45973B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
Manifest number: 170C
Signing time: Wed 05 Nov 2025 07:01:08 +0000
Manifest this update: Wed 05 Nov 2025 07:01:08 +0000
Manifest next update: Thu 06 Nov 2025 07:01:08 +0000
Files and hashes: 1: FYi9izG5XpysnzgSjZW4UvA9V4Q.crl (hash: uAGc0GMcLc6JLI2jE77cV9hSUs0zWaFKrLKrYQ0XoDs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 07:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d1:bf:11:43:e2:65:62:ad:f8:8c:46:1c:45:97:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1588bd8b31b95e9cac9f38128d95b852f03d5784
Validity
Not Before: Nov 5 07:01:08 2025 GMT
Not After : Nov 6 07:01:08 2025 GMT
Subject: CN=cf798151f0cf051f815d0c4b485c82b9d5dbb4e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1f:7a:a0:16:8f:a6:a9:3a:5c:d3:92:a3:5c:
b0:ec:54:09:58:89:c4:d7:46:20:84:bb:3e:8c:8b:
9f:ad:fb:56:ec:3b:c0:b6:80:5a:e9:6c:d2:46:e9:
3b:f3:0c:c4:5c:59:6c:8f:96:39:68:e1:85:5e:3f:
da:07:a7:c5:2d:f8:aa:3d:b4:58:92:2a:a3:d8:05:
df:92:5c:2e:54:cd:0d:40:2f:06:8e:58:a1:84:f6:
fd:d7:09:46:a4:d3:dc:7e:aa:55:94:aa:ed:60:33:
e0:e8:61:b0:6a:f5:ec:52:18:37:a8:7b:23:6e:3a:
08:39:44:92:4d:67:3b:de:aa:be:e1:71:55:4b:40:
cb:07:0e:1a:8a:5f:09:bf:38:ed:f9:07:07:8a:c6:
30:8c:9e:ef:4a:ec:1e:24:65:84:63:0b:ef:5f:8f:
0c:53:1b:fa:d1:cf:d7:56:b5:3b:c0:0d:95:be:0e:
55:b4:f8:b3:eb:6d:f4:7e:7b:59:a3:0d:1a:bd:6b:
d3:06:f1:87:e0:33:5e:f0:33:f7:98:6b:e9:5e:8a:
f3:01:b9:24:8e:e0:37:96:ae:f1:2a:ce:98:e5:7e:
19:21:ed:59:e5:c3:a7:fd:5f:a5:dc:54:fa:ce:3c:
37:e3:9e:62:ee:52:15:c4:dc:14:40:e3:17:6c:85:
16:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:79:81:51:F0:CF:05:1F:81:5D:0C:4B:48:5C:82:B9:D5:DB:B4:E1
X509v3 Authority Key Identifier:
keyid:15:88:BD:8B:31:B9:5E:9C:AC:9F:38:12:8D:95:B8:52:F0:3D:57:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:64:1c:c9:9e:52:4e:1b:5b:62:86:23:92:14:08:8a:f8:f8:
26:7f:c0:b2:b9:66:60:8d:9c:f9:5c:8a:c2:75:31:06:31:96:
74:27:1b:48:0d:6d:72:c1:b7:93:15:d2:33:fb:23:35:31:37:
11:38:7e:b0:18:c8:6e:75:8b:ac:10:25:a7:e3:cf:16:44:7b:
42:08:d3:97:d9:b8:c2:bf:b6:22:e1:d2:b4:54:d9:17:6b:d7:
4d:06:22:a4:f5:a9:f7:da:c1:43:e9:7e:23:e6:a3:6b:d9:19:
a0:bd:e5:96:98:7d:90:4b:3a:f9:8c:9a:8d:5c:34:e2:43:96:
2d:26:37:7a:31:23:b7:c1:c4:26:8b:1b:e8:e9:16:8f:e5:11:
51:61:01:47:88:e1:e6:e8:e5:ca:a5:77:db:73:a3:9f:3d:4c:
f7:2a:8a:1c:b6:7a:9c:18:1e:cd:45:39:cd:dd:44:b0:c1:9a:
e3:13:ec:dc:b0:24:43:1d:a7:7a:d2:ba:32:49:66:c7:26:b0:
8b:6e:77:f8:df:43:44:11:c2:2a:5e:16:c3:26:fd:24:d3:3c:
fa:33:72:02:08:f1:85:a4:2a:23:e5:8e:c9:44:8a:68:97:14:
f1:57:6b:50:95:21:28:d7:b9:c0:ae:03:37:28:84:9e:df:93:
e4:21:e4:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 16:21:05 2025 by rpki-client