Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/d330c9-3a00-4e85-8a74-bddc3143b313/1/M1lkDZyLY0Pghqr4vosw6MMdK40.mft
File: M1lkDZyLY0Pghqr4vosw6MMdK40.mft (raw, json)
Hash identifier: 8PX37hGtLJFM3TTUHCCd6EsnHqfbb0OhVBQNlSWfIfU=
Subject key identifier: 60:0E:83:52:22:37:F4:8A:24:47:09:7C:9F:F0:1C:4B:6F:F8:80:1B
Authority key identifier: 33:59:64:0D:9C:8B:63:43:E0:86:AA:F8:BE:8B:30:E8:C3:1D:2B:8D
Certificate issuer: /CN=3359640d9c8b6343e086aaf8be8b30e8c31d2b8d
Certificate serial: 019A4EF5A426341F184976AFCEC8AD278270
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1lkDZyLY0Pghqr4vosw6MMdK40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/d330c9-3a00-4e85-8a74-bddc3143b313/1/M1lkDZyLY0Pghqr4vosw6MMdK40.mft
Manifest number: 0494
Signing time: Tue 04 Nov 2025 13:01:52 +0000
Manifest this update: Tue 04 Nov 2025 13:01:52 +0000
Manifest next update: Wed 05 Nov 2025 13:01:52 +0000
Files and hashes: 1: M1lkDZyLY0Pghqr4vosw6MMdK40.crl (hash: COsKxJh44R85JqyAzFKldPog9Cs7UNmnp+nWDowoM1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/d330c9-3a00-4e85-8a74-bddc3143b313/1/M1lkDZyLY0Pghqr4vosw6MMdK40.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/d330c9-3a00-4e85-8a74-bddc3143b313/1/M1lkDZyLY0Pghqr4vosw6MMdK40.mft
rsync://rpki.ripe.net/repository/DEFAULT/M1lkDZyLY0Pghqr4vosw6MMdK40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:a4:26:34:1f:18:49:76:af:ce:c8:ad:27:82:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3359640d9c8b6343e086aaf8be8b30e8c31d2b8d
Validity
Not Before: Nov 4 13:01:52 2025 GMT
Not After : Nov 5 13:01:52 2025 GMT
Subject: CN=600e83522237f48a2447097c9ff01c4b6ff8801b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f7:7f:f8:ab:98:ed:cd:8a:75:39:61:f1:ae:
2f:3c:1d:23:f8:e1:41:45:56:af:cb:6f:bc:b6:35:
21:fb:24:92:4b:e0:9c:3a:bd:37:eb:b4:cf:f9:4b:
62:f9:0a:17:ea:60:3e:99:d2:80:68:fd:05:a6:9c:
3e:bc:ce:5d:44:44:32:8c:5d:4e:02:7e:a2:fd:06:
37:e3:d3:71:ec:6f:42:9e:0f:45:d8:4a:16:34:5c:
f0:d7:fd:6a:a5:fc:e8:00:41:d3:46:50:c7:57:dc:
bf:d9:3f:46:9b:c0:ed:ff:c4:a9:17:c5:cc:d4:a0:
9a:35:72:d2:8a:53:d5:96:20:77:32:4b:88:9f:71:
81:b6:96:ec:56:19:8f:5c:11:c5:fe:22:25:7b:8a:
24:c6:d9:9f:f9:10:76:48:59:c6:0c:a6:1a:d7:84:
d5:a2:44:2a:a1:44:88:05:ab:01:f8:da:a0:48:0b:
81:e6:80:68:03:84:ec:35:ab:fa:28:55:2b:b5:12:
14:6f:be:f9:01:18:98:99:a1:60:cc:a3:3d:4a:60:
21:fe:d6:87:c4:77:94:8f:1e:c7:2a:fb:05:cf:48:
1a:e7:b0:da:39:bd:65:ee:42:03:25:b1:9f:f3:d1:
3d:f8:ff:43:f5:80:7f:ba:a0:39:97:66:0f:3f:3d:
29:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:0E:83:52:22:37:F4:8A:24:47:09:7C:9F:F0:1C:4B:6F:F8:80:1B
X509v3 Authority Key Identifier:
keyid:33:59:64:0D:9C:8B:63:43:E0:86:AA:F8:BE:8B:30:E8:C3:1D:2B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1lkDZyLY0Pghqr4vosw6MMdK40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/d330c9-3a00-4e85-8a74-bddc3143b313/1/M1lkDZyLY0Pghqr4vosw6MMdK40.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/d330c9-3a00-4e85-8a74-bddc3143b313/1/M1lkDZyLY0Pghqr4vosw6MMdK40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:cf:e0:ad:a9:78:5d:6d:aa:36:7f:40:ef:f9:a1:20:d8:34:
e6:8a:d6:af:93:6b:33:cb:3f:86:c4:00:6b:17:5c:27:b0:03:
d3:64:80:57:a7:58:9b:6e:e7:83:50:bb:45:86:5f:14:b3:10:
94:a5:78:7b:9d:8c:68:e5:d7:de:d2:50:c8:c0:4c:6e:7e:fa:
35:35:e1:52:30:c2:7f:9f:62:d7:ad:50:68:dc:d0:25:8d:69:
ee:62:be:2d:92:46:d7:54:97:1a:c5:97:fd:58:21:06:dd:80:
cc:e3:ac:5d:28:7d:94:62:b9:8b:1c:e8:c6:79:32:ca:d3:28:
70:b9:d6:f1:df:bd:8d:ec:66:86:17:8e:b9:e6:47:7c:09:be:
c8:5c:0f:00:fe:4d:aa:17:7f:20:07:58:47:1d:9f:af:06:68:
60:26:ab:ec:2f:11:ca:82:0f:d3:b5:76:a2:e1:25:96:c3:6a:
57:48:14:08:d5:47:21:e7:a3:b8:1f:9c:54:b4:f7:b5:b3:a0:
65:fb:e2:99:7d:9a:9f:b7:ce:50:53:fa:d3:ad:b7:a6:2f:d3:
19:ba:10:f7:64:b0:38:ea:3c:a7:95:18:fa:11:cb:69:cc:fe:
9d:90:67:b0:1a:18:41:34:d2:04:29:07:6b:99:a4:b3:b6:b9:
58:da:4a:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:21:19 2025 by rpki-client