Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
File: rKcX8QfgYizkyz71KwFU-n-baS0.mft (raw, json)
Hash identifier: 7wC7Z7wObvm1C46GTCtmyaM1FTdc0Og+aqNbdTuIQcA=
Subject key identifier: F0:EC:C6:72:9F:5F:41:85:85:FD:21:A4:EA:B7:0D:FE:6C:82:62:DD
Authority key identifier: AC:A7:17:F1:07:E0:62:2C:E4:CB:3E:F5:2B:01:54:FA:7F:9B:69:2D
Certificate issuer: /CN=aca717f107e0622ce4cb3ef52b0154fa7f9b692d
Certificate serial: 019A50E39BF26B4A30EB793BCC296AB7768C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
Manifest number: 128C
Signing time: Tue 04 Nov 2025 22:01:25 +0000
Manifest this update: Tue 04 Nov 2025 22:01:25 +0000
Manifest next update: Wed 05 Nov 2025 22:01:25 +0000
Files and hashes: 1: rKcX8QfgYizkyz71KwFU-n-baS0.crl (hash: MFKNfRR87sF0f8En+il+Ftn+TbhgG2ptARXEUntGgq0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e3:9b:f2:6b:4a:30:eb:79:3b:cc:29:6a:b7:76:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca717f107e0622ce4cb3ef52b0154fa7f9b692d
Validity
Not Before: Nov 4 22:01:25 2025 GMT
Not After : Nov 5 22:01:25 2025 GMT
Subject: CN=f0ecc6729f5f418585fd21a4eab70dfe6c8262dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:76:ab:3b:74:21:6f:39:12:81:a5:84:5d:49:
4b:2c:1c:ff:09:7e:ae:44:04:68:15:ed:c1:85:fb:
1e:5b:69:42:6e:d8:7a:93:20:56:85:9e:99:d4:45:
10:54:e5:16:68:47:bb:2c:9c:d9:24:a9:9c:1b:58:
82:fc:d1:0c:62:31:f8:33:4c:d7:68:4b:55:c1:1f:
cf:1f:03:34:b3:76:de:25:a3:e9:92:45:54:53:93:
f3:ef:9d:ce:26:46:8d:83:08:5d:35:24:e7:26:3f:
a2:f1:44:f1:f9:43:aa:c6:fb:33:15:99:cb:a9:c7:
92:8f:c6:60:25:65:32:a8:03:2a:69:c9:8d:c7:18:
d7:35:26:89:2d:b2:83:be:d0:68:1b:83:45:97:2c:
79:74:43:80:b9:31:86:f5:3d:63:35:f4:f8:21:6a:
17:79:3d:a5:2c:ab:98:3e:87:e6:82:52:06:a2:74:
e4:5f:b8:ef:01:a7:0a:1d:b0:52:50:3a:0c:09:47:
aa:42:da:e7:f5:f9:be:a6:78:c9:1b:ff:36:34:f8:
a0:0a:5c:77:cd:ff:e5:9a:b9:d5:dc:28:97:f8:56:
8e:34:91:34:e8:31:db:5c:17:5c:1a:2f:f2:1a:fd:
92:b4:70:7b:09:e9:55:d4:4a:81:98:79:9b:2e:cb:
6f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:EC:C6:72:9F:5F:41:85:85:FD:21:A4:EA:B7:0D:FE:6C:82:62:DD
X509v3 Authority Key Identifier:
keyid:AC:A7:17:F1:07:E0:62:2C:E4:CB:3E:F5:2B:01:54:FA:7F:9B:69:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:da:8e:85:5d:20:82:57:c6:12:c6:72:23:23:15:fe:e2:8b:
ac:96:b6:bc:9b:36:48:f7:2b:e6:75:83:71:19:c5:60:61:d8:
39:72:29:9a:eb:c7:00:d6:66:45:9f:f6:1d:ee:ae:bc:39:cc:
9f:e6:6b:1b:63:78:17:15:4a:b1:a1:28:0d:6a:59:78:00:68:
ee:1b:8c:8f:d4:fa:d1:c5:f9:9c:26:db:99:b1:26:d1:2a:10:
f2:38:62:3e:38:5e:71:78:f0:4e:d0:0c:dd:e6:46:8f:de:a8:
8d:66:b1:fa:62:82:5e:8e:80:bc:fb:7e:a5:86:4a:b5:47:ed:
c8:06:83:9a:b2:2b:96:f2:b8:88:bd:92:61:60:8c:93:d5:5f:
ac:05:79:ad:35:86:85:4b:57:d8:c7:9b:45:fc:bd:53:7e:63:
7f:50:fd:f3:20:80:f4:d9:f6:51:12:11:b5:29:a2:c7:ef:dc:
a2:33:e6:e8:7d:e4:94:9b:7d:28:ca:89:1d:2e:05:03:47:f3:
33:a7:e7:9d:23:aa:ba:aa:1b:b5:71:52:f3:f7:ae:0a:c6:87:
92:3f:b2:49:62:ea:cc:79:66:bf:f9:1b:2e:00:ed:01:3b:f6:
f0:6c:67:81:9e:c1:b6:93:d5:e5:fa:aa:4e:a8:6c:af:7c:e0:
ec:9a:bf:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:28:30 2025 by rpki-client