Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft
File: w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft (raw, json)
Hash identifier: xI8batxIaSskZjRB59v42spK/XxjwcW3Srfk4JuBTcg=
Subject key identifier: 00:E3:98:06:8F:80:1D:F3:B7:37:6D:39:3E:16:2A:42:1F:D3:8B:77
Authority key identifier: C3:BC:2D:2F:68:17:B9:4C:26:AE:FD:D8:9F:F9:43:A8:8F:3F:1C:84
Certificate issuer: /CN=c3bc2d2f6817b94c26aefdd89ff943a88f3f1c84
Certificate serial: 019A4E18BFA8731BB3669980276EE0FEAE13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft
Manifest number: 06CB
Signing time: Tue 04 Nov 2025 09:00:35 +0000
Manifest this update: Tue 04 Nov 2025 09:00:35 +0000
Manifest next update: Wed 05 Nov 2025 09:00:35 +0000
Files and hashes: 1: w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.crl (hash: J5ve3jm9hLNkzEd+c9pwAzx3NNlylHU5bFdxkVIgTRc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:bf:a8:73:1b:b3:66:99:80:27:6e:e0:fe:ae:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3bc2d2f6817b94c26aefdd89ff943a88f3f1c84
Validity
Not Before: Nov 4 09:00:35 2025 GMT
Not After : Nov 5 09:00:35 2025 GMT
Subject: CN=00e398068f801df3b7376d393e162a421fd38b77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e9:35:05:ac:29:6d:91:db:09:78:e9:e5:1f:
fb:19:f4:c8:41:ff:52:fe:91:db:98:0a:66:ca:7e:
0d:89:53:67:ef:c7:fc:5d:c1:ae:35:ca:07:3b:21:
df:97:e5:7c:75:ad:6f:dd:bd:fe:d2:81:ed:f5:57:
5a:54:f6:5e:86:a6:3a:3a:56:98:b6:57:7d:9d:1b:
08:39:8d:f1:82:bd:b1:a7:e0:72:0c:37:a9:ce:a0:
ca:35:39:a5:b2:10:bc:58:63:63:92:61:51:6b:aa:
3f:7a:16:b3:16:1b:c7:70:ea:86:d0:e8:ec:22:18:
f1:c4:6c:4b:12:9e:25:98:0d:3c:75:dc:ad:9c:09:
51:76:4c:8f:ed:dc:85:99:46:5f:9a:58:c0:1e:ab:
48:ca:d0:a7:04:4b:c3:65:35:8e:8f:39:1f:5a:7e:
18:a9:c0:07:0d:17:01:cf:64:7f:a8:80:c3:65:bf:
5e:01:12:20:2a:a2:87:29:c7:b0:1b:5d:e6:67:57:
61:87:eb:60:96:6a:83:0c:b9:d8:06:d7:7f:36:db:
af:0a:43:2a:82:6b:ba:19:24:dd:72:60:02:af:00:
a7:5e:da:c6:05:eb:d2:50:35:e3:a1:d4:d8:2c:c6:
f4:c1:e0:26:1b:80:e7:fd:a7:96:36:b7:43:74:8c:
ff:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E3:98:06:8F:80:1D:F3:B7:37:6D:39:3E:16:2A:42:1F:D3:8B:77
X509v3 Authority Key Identifier:
keyid:C3:BC:2D:2F:68:17:B9:4C:26:AE:FD:D8:9F:F9:43:A8:8F:3F:1C:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:82:cf:25:b9:67:11:3d:ed:a8:41:44:16:0c:f5:c1:bd:55:
b0:67:b5:5a:9f:8b:a3:c2:b3:c8:e3:81:17:aa:6c:9b:84:3d:
1a:0d:cc:e8:6b:d8:c3:76:3a:5a:75:5d:c5:c6:26:4f:f1:28:
ce:a8:54:9a:62:be:62:49:7c:f1:86:fc:8f:a9:81:33:b4:f2:
7e:cf:d3:9c:4c:3a:2e:4c:01:67:2d:a3:89:af:2c:dc:ab:79:
2c:30:5f:cf:21:83:86:ad:7c:fc:e3:90:cd:e6:39:6d:b4:25:
ef:7b:c0:93:3f:5d:78:85:a0:6e:c9:db:37:25:ae:cf:5d:dd:
fd:ea:f0:fc:a1:ae:f3:5c:2a:16:7f:a8:a7:f2:0c:82:45:62:
e5:48:2b:f0:1c:4a:43:fc:4b:1e:64:a4:7b:ba:61:6d:41:d2:
f4:10:f3:a2:3c:5a:be:5c:62:13:03:bd:d3:cf:dc:a1:bd:d7:
72:fa:34:14:a6:6b:96:54:10:e2:28:0c:59:41:a4:6a:3d:62:
61:7e:62:6e:6f:07:58:dd:29:91:99:3b:7a:7e:58:d8:c0:5f:
ba:99:d5:96:cf:72:4d:06:4e:2c:3d:17:a6:98:05:25:66:21:
9e:ca:e2:97:36:80:01:19:b9:2f:41:29:d4:7c:d7:1d:09:00:
4b:0b:de:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:14:14 2025 by rpki-client