Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
File: X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft (raw, json)
Hash identifier: waffSEjQpgu16XEfqP9eOo9q5EjTxLVFxLvLPyj6Be4=
Subject key identifier: BA:59:FB:D2:E3:12:A6:63:07:0C:F2:A0:67:D1:2C:2A:53:40:E2:D9
Authority key identifier: 5F:7A:12:35:46:FE:51:A9:E4:BE:DF:83:EE:E0:37:52:BD:96:39:D6
Certificate issuer: /CN=5f7a123546fe51a9e4bedf83eee03752bd9639d6
Certificate serial: 019A4D3CBFFD0094917398519096494FB2B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
Manifest number: 04E3
Signing time: Tue 04 Nov 2025 05:00:18 +0000
Manifest this update: Tue 04 Nov 2025 05:00:18 +0000
Manifest next update: Wed 05 Nov 2025 05:00:18 +0000
Files and hashes: 1: X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl (hash: jg8VjdmI5/JkpGRP3PUpNbG5LFSpT72ofM6k6QiQCqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3c:bf:fd:00:94:91:73:98:51:90:96:49:4f:b2:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7a123546fe51a9e4bedf83eee03752bd9639d6
Validity
Not Before: Nov 4 05:00:18 2025 GMT
Not After : Nov 5 05:00:18 2025 GMT
Subject: CN=ba59fbd2e312a663070cf2a067d12c2a5340e2d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e7:fa:e2:8b:e2:73:7a:51:95:1d:d9:51:33:
e8:d2:ed:5b:8f:77:14:07:a7:95:6a:78:6b:b2:65:
89:78:b4:84:ec:6a:fb:50:8b:46:ac:18:c7:a7:71:
a2:f7:3b:71:2f:ac:58:c3:91:18:1d:4d:2b:c9:f1:
01:0b:15:60:84:0f:c5:e1:44:34:b8:2b:d4:eb:bd:
f9:0a:7f:ca:7d:6b:55:4c:20:3f:7b:93:39:2c:38:
e4:c5:ce:fb:56:31:a9:09:25:18:9b:1a:45:f1:e0:
b6:ab:55:28:c9:f9:5f:6b:42:9b:c3:62:d4:2d:53:
68:78:cf:fe:7c:cf:bf:91:33:c7:d9:74:bd:d2:59:
ee:d9:5b:2b:a5:94:1f:b1:4c:96:cd:8e:35:70:38:
8d:f6:53:23:3d:a1:5b:b4:5a:ca:f2:c8:12:9f:85:
45:80:3b:67:de:c7:b9:a8:eb:c8:ef:47:0f:5b:33:
a0:a6:ef:4e:38:55:18:6e:9f:fb:14:df:c8:90:46:
a0:f0:bc:e6:83:2a:89:23:0e:a7:c0:a5:eb:fc:eb:
5d:a5:48:f8:88:26:a4:e8:0c:ca:12:ca:c3:df:5a:
6b:d0:46:26:62:ba:af:45:3f:5d:1a:78:27:63:a9:
8f:42:6c:f8:d4:b6:41:42:90:18:de:50:55:d7:24:
9e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:59:FB:D2:E3:12:A6:63:07:0C:F2:A0:67:D1:2C:2A:53:40:E2:D9
X509v3 Authority Key Identifier:
keyid:5F:7A:12:35:46:FE:51:A9:E4:BE:DF:83:EE:E0:37:52:BD:96:39:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:28:cb:99:57:4b:f5:f0:f5:c6:2f:3d:9b:00:3b:21:e9:18:
c3:00:be:90:3b:38:ac:e7:bd:51:3b:42:ee:4b:8b:52:5f:cf:
56:39:42:59:63:e9:ce:cd:e2:b0:45:5c:87:4b:1b:f6:ce:13:
e7:8e:47:53:67:ab:62:00:2a:ba:d0:42:14:55:b5:f9:63:87:
af:ac:3d:93:d6:02:71:67:35:2d:c0:3f:55:c8:08:92:4f:f9:
39:36:fa:70:c0:60:20:a4:f6:19:12:e7:b6:75:83:d4:d0:ab:
67:82:df:4d:bc:6d:6a:49:ad:99:00:90:cb:cf:f4:7d:e2:c6:
44:f8:60:8d:b4:2b:7d:fa:f9:ce:28:5b:ca:87:89:02:40:92:
99:3b:92:b0:72:54:7d:62:c8:1f:5a:a6:3a:8e:59:d6:a4:f8:
b1:7d:c5:f7:39:b3:5b:b9:4a:c9:97:ec:00:f9:53:9b:96:52:
9d:9e:7e:47:61:01:14:06:b8:3f:88:84:52:2f:05:b7:b6:86:
22:48:a3:f8:2c:e6:a9:8b:45:77:d0:c0:94:0a:b4:fa:53:e4:
c1:98:a3:4c:9b:45:e0:9a:3d:6a:e6:20:b4:c4:fb:d3:70:83:
44:23:8f:f7:f0:8b:16:c2:7e:be:e1:22:e2:f2:2c:d8:6b:a0:
26:c6:75:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:47:57 2025 by rpki-client