Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft
File: gU3w5sDcpazuCDqMcwTUXz0z1W0.mft (raw, json)
Hash identifier: 6fKD7j6ZyY7GUZL/BqcuxuoV+G4L8rt92TLi8OcaH1M=
Subject key identifier: BB:9F:65:A8:66:1D:C0:02:EE:01:9D:1F:8B:D4:B2:12:56:AC:9F:74
Authority key identifier: 81:4D:F0:E6:C0:DC:A5:AC:EE:08:3A:8C:73:04:D4:5F:3D:33:D5:6D
Certificate issuer: /CN=814df0e6c0dca5acee083a8c7304d45f3d33d56d
Certificate serial: 019A4EF4C3065D5A98FD85E2096243511213
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gU3w5sDcpazuCDqMcwTUXz0z1W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft
Manifest number: 0DED
Signing time: Tue 04 Nov 2025 13:00:54 +0000
Manifest this update: Tue 04 Nov 2025 13:00:54 +0000
Manifest next update: Wed 05 Nov 2025 13:00:54 +0000
Files and hashes: 1: gU3w5sDcpazuCDqMcwTUXz0z1W0.crl (hash: f9wBkm8vpOoehYuC6tsS99ewpCrO+g2BX0Icz3GdFcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft
rsync://rpki.ripe.net/repository/DEFAULT/gU3w5sDcpazuCDqMcwTUXz0z1W0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:c3:06:5d:5a:98:fd:85:e2:09:62:43:51:12:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=814df0e6c0dca5acee083a8c7304d45f3d33d56d
Validity
Not Before: Nov 4 13:00:54 2025 GMT
Not After : Nov 5 13:00:54 2025 GMT
Subject: CN=bb9f65a8661dc002ee019d1f8bd4b21256ac9f74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5c:f4:dc:29:28:14:fc:0b:a8:cc:07:83:fc:
80:02:cf:2e:59:ce:4f:08:3e:15:c5:0e:79:a7:bf:
f4:17:f7:ac:a5:50:d1:00:a1:13:16:92:c6:d5:82:
bf:e5:4c:5d:ea:fa:e5:f5:fd:a8:bd:21:c4:58:92:
ad:55:28:da:20:6f:54:c1:16:e6:82:fb:84:ea:04:
d0:0e:66:43:55:12:79:48:0d:8d:b8:58:21:d6:63:
d2:06:1b:92:16:5a:4b:96:f2:e7:37:a8:f9:c3:26:
44:f2:a8:e3:b5:56:28:d9:a1:17:de:88:e7:d3:89:
27:5f:87:c2:6a:87:8c:e7:5f:3d:bc:0c:12:73:2c:
c3:ba:7f:28:fa:c8:5a:e3:87:29:b6:fc:b9:3d:60:
13:14:5f:c6:af:98:66:d7:41:6a:92:95:61:98:7f:
1e:bc:21:98:cb:2d:9e:8d:06:4c:eb:60:63:5a:de:
36:a9:fb:bf:1f:b8:8a:ff:df:b8:6a:57:40:45:5f:
7f:de:21:67:88:83:04:c5:04:24:94:56:a7:2e:3d:
d3:a1:bb:53:e0:95:40:71:cd:36:7d:f9:89:e0:58:
41:bf:2b:35:d0:de:ac:53:4b:0a:ba:aa:bb:91:6c:
62:6c:79:0b:c2:25:0b:f1:0b:9f:88:c9:63:c7:25:
3e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:9F:65:A8:66:1D:C0:02:EE:01:9D:1F:8B:D4:B2:12:56:AC:9F:74
X509v3 Authority Key Identifier:
keyid:81:4D:F0:E6:C0:DC:A5:AC:EE:08:3A:8C:73:04:D4:5F:3D:33:D5:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gU3w5sDcpazuCDqMcwTUXz0z1W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:12:70:87:77:7d:ac:6d:bb:47:fa:68:19:c9:2f:6a:ea:eb:
63:41:73:eb:d6:2b:3b:b5:31:03:32:4e:e1:3b:bf:ea:70:9e:
e8:08:0d:9f:36:be:fa:ff:49:86:9f:4f:e9:ae:43:e7:cb:37:
2f:df:50:61:eb:a8:ea:7d:d4:c7:0b:79:a4:1a:3a:ae:63:61:
45:4f:bb:4a:99:f7:55:b3:f1:0c:90:cc:73:36:fc:5c:9a:b3:
96:63:4b:17:43:dd:9c:d3:0e:e4:3b:5b:05:ab:9e:0a:3e:41:
38:16:26:c8:69:96:9d:02:c7:2a:a8:95:2e:5e:52:df:60:34:
af:5a:1e:ce:e1:14:65:0f:12:a7:ff:a8:13:a9:1e:5b:47:95:
db:09:fa:fe:c4:ee:d0:01:d4:87:3c:1c:bf:6c:3d:32:a4:b6:
fb:3b:4a:c5:67:48:7c:d9:9e:db:77:e7:00:35:9f:2e:e1:96:
78:a5:6f:93:2a:1f:b0:d4:1f:59:92:6b:42:05:be:b7:b3:5c:
10:c1:f3:12:1d:34:02:21:a2:6f:b3:c5:42:9f:94:bd:5c:ff:
6a:0e:9b:4c:37:22:27:71:4a:ef:c6:85:66:fa:09:10:a4:fb:
de:fe:11:6c:1d:ab:b2:27:b6:22:c8:5c:82:9e:47:a3:93:16:
75:91:c5:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:47:54 2025 by rpki-client