Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/6bc0c8-1ad7-46ed-8ec2-c74cc54a7e85/1/RAWGxUYUuW7bhHCVJKM0sxyZmf0.mft
File: RAWGxUYUuW7bhHCVJKM0sxyZmf0.mft (raw, json)
Hash identifier: oKeIEG5jNgZROybooQmeFF0I8RyKQ9oYsk7bdwUC8R8=
Subject key identifier: 74:C4:56:46:DC:AB:F7:C1:08:D2:3D:21:CB:5F:25:86:F9:72:6F:F4
Authority key identifier: 44:05:86:C5:46:14:B9:6E:DB:84:70:95:24:A3:34:B3:1C:99:99:FD
Certificate issuer: /CN=440586c54614b96edb84709524a334b31c9999fd
Certificate serial: 019A4EF46C950B56B9185E328918EF89BAD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RAWGxUYUuW7bhHCVJKM0sxyZmf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/6bc0c8-1ad7-46ed-8ec2-c74cc54a7e85/1/RAWGxUYUuW7bhHCVJKM0sxyZmf0.mft
Manifest number: 0A15
Signing time: Tue 04 Nov 2025 13:00:32 +0000
Manifest this update: Tue 04 Nov 2025 13:00:32 +0000
Manifest next update: Wed 05 Nov 2025 13:00:32 +0000
Files and hashes: 1: RAWGxUYUuW7bhHCVJKM0sxyZmf0.crl (hash: as8cegVDsyGbjBODn3uUB3G3k5Nmyw+ylgV8LC9Mi54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/6bc0c8-1ad7-46ed-8ec2-c74cc54a7e85/1/RAWGxUYUuW7bhHCVJKM0sxyZmf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/6bc0c8-1ad7-46ed-8ec2-c74cc54a7e85/1/RAWGxUYUuW7bhHCVJKM0sxyZmf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/RAWGxUYUuW7bhHCVJKM0sxyZmf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:6c:95:0b:56:b9:18:5e:32:89:18:ef:89:ba:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=440586c54614b96edb84709524a334b31c9999fd
Validity
Not Before: Nov 4 13:00:32 2025 GMT
Not After : Nov 5 13:00:32 2025 GMT
Subject: CN=74c45646dcabf7c108d23d21cb5f2586f9726ff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4c:fc:ea:0a:11:e6:d2:1c:a2:b1:33:4f:18:
68:0e:93:18:23:75:da:5b:53:66:15:6c:24:b4:1a:
de:89:21:b2:97:f6:41:ac:fe:27:6f:55:a9:df:5d:
cd:d1:49:fd:9c:76:75:81:e2:3a:da:58:7f:be:8d:
65:96:e3:78:40:84:07:4f:53:17:27:58:fb:37:1c:
94:ec:50:2e:c2:6d:c4:3a:11:3d:df:2b:84:34:d1:
7e:2b:96:96:3f:aa:ee:26:a7:b1:63:56:e0:4e:4a:
4b:e3:88:0f:ee:4d:32:c6:45:70:e4:83:bb:f5:ca:
c3:12:91:b6:48:19:78:2d:51:62:30:a7:08:3c:c2:
3b:1c:18:05:72:e6:61:9c:62:d4:c6:fa:f0:92:1a:
53:e5:37:39:d1:b5:ae:4a:b1:c1:44:44:80:cd:24:
72:90:bf:93:e0:1e:ee:34:60:29:74:52:3e:ec:42:
e8:0a:d6:f0:c2:df:66:66:cc:30:fb:f4:33:b3:27:
47:1a:bd:69:01:2b:0f:58:a2:ea:66:7e:74:4b:ac:
47:55:b8:23:92:1d:3a:ba:5a:77:e7:93:2b:c6:7d:
e3:b6:c9:6b:53:d4:db:10:6e:2d:21:d7:17:ca:29:
46:d5:d9:01:4a:cd:bd:1f:3e:a0:50:22:c0:39:6d:
65:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:C4:56:46:DC:AB:F7:C1:08:D2:3D:21:CB:5F:25:86:F9:72:6F:F4
X509v3 Authority Key Identifier:
keyid:44:05:86:C5:46:14:B9:6E:DB:84:70:95:24:A3:34:B3:1C:99:99:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RAWGxUYUuW7bhHCVJKM0sxyZmf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/6bc0c8-1ad7-46ed-8ec2-c74cc54a7e85/1/RAWGxUYUuW7bhHCVJKM0sxyZmf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/6bc0c8-1ad7-46ed-8ec2-c74cc54a7e85/1/RAWGxUYUuW7bhHCVJKM0sxyZmf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:fb:9b:2c:0e:9b:ad:71:53:87:33:5b:99:01:60:5d:da:15:
d3:e9:9b:57:89:c5:70:56:31:ac:c4:ab:80:1c:cf:e7:15:6a:
5a:c2:3b:e1:98:32:c8:09:7e:b4:a4:93:2c:a3:f5:0a:2c:ee:
81:86:5e:da:fe:c4:bd:08:86:ef:72:71:ee:5b:8e:98:40:ca:
2a:d8:3d:82:4e:c1:7c:1c:2c:03:0f:b0:95:ba:d0:7f:ba:9f:
2a:c1:e2:93:12:74:ad:f4:c3:0b:90:f6:d1:cb:a5:a4:7f:9f:
38:32:ad:a9:e8:65:5a:9b:09:a5:1b:3c:d7:62:44:f0:0d:1d:
87:be:ca:dd:57:1b:c8:00:8c:98:ba:5a:14:f6:3a:52:c8:7c:
22:4c:b0:8d:ba:9a:9f:1b:b2:cd:98:bc:d4:93:73:82:a7:5b:
f1:40:49:9a:9f:f9:96:1c:7c:dd:28:93:df:d0:2e:91:0f:1c:
da:44:3b:9e:4b:be:c0:3c:fe:a4:79:ea:b1:dc:ed:f5:31:aa:
27:ea:cd:df:9c:ba:97:e3:21:49:d6:2b:d5:92:fc:ba:4f:55:
7b:74:4c:bc:da:70:db:77:72:cf:ad:95:75:94:d3:78:be:98:
e2:06:3d:47:fe:3e:7c:7d:c8:5c:5e:75:25:4c:a8:48:d4:a8:
75:10:83:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:08:10 2025 by rpki-client