Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
File: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft (raw, json)
Hash identifier: pK7jWnDn1EAtAoOvMESbFvcTJOfIa2bQZzMXyFf8Ky4=
Subject key identifier: CC:AE:D2:67:DB:BA:00:74:FB:80:07:15:F5:A2:9C:07:13:E9:59:8C
Authority key identifier: B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
Certificate issuer: /CN=b56daa6f850414a13f650df094506628a46dc12f
Certificate serial: 019A503E6CAD04121A0EA7B40A9FC47C8DBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
Manifest number: 1209
Signing time: Tue 04 Nov 2025 19:00:59 +0000
Manifest this update: Tue 04 Nov 2025 19:00:59 +0000
Manifest next update: Wed 05 Nov 2025 19:00:59 +0000
Files and hashes: 1: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl (hash: QAbiy+btMqyNqJuJQwhoTftnw4HH4JRYZhW8MVqD99c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3e:6c:ad:04:12:1a:0e:a7:b4:0a:9f:c4:7c:8d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b56daa6f850414a13f650df094506628a46dc12f
Validity
Not Before: Nov 4 19:00:59 2025 GMT
Not After : Nov 5 19:00:59 2025 GMT
Subject: CN=ccaed267dbba0074fb800715f5a29c0713e9598c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c2:f7:79:57:36:6c:ec:15:c1:12:56:1d:41:
02:75:7c:f3:db:5c:21:e4:68:62:db:25:77:25:77:
41:a4:d7:b0:ca:0e:37:36:ba:7e:fe:fc:58:85:bf:
5a:3a:ca:65:de:fc:4f:42:b0:e0:b5:96:fa:34:78:
6d:29:80:5c:8c:f9:ae:5e:ed:0a:be:79:8f:79:03:
7a:f5:1e:b4:4b:6e:49:04:4c:41:e9:4a:e8:11:e3:
99:bb:22:aa:b5:2e:6a:36:24:5b:7d:60:67:63:58:
7e:24:38:98:53:1a:1b:ab:05:c2:d7:6b:11:af:b3:
61:ae:70:93:a7:af:13:c7:30:ec:0f:c4:23:50:46:
2e:1b:f2:11:ef:ab:14:7a:14:1f:92:78:6b:12:25:
a4:73:c0:82:ae:ff:0a:40:ff:1f:85:f5:d5:7e:d9:
90:06:07:aa:a2:f3:5e:7e:3b:1d:46:30:7e:86:df:
5c:c0:b1:34:b4:cc:72:ab:81:af:02:93:8b:74:89:
6c:81:92:2b:02:63:f9:5b:1d:2d:c6:e1:ef:59:21:
de:9a:e6:96:cc:6e:c8:28:6e:38:e3:3f:92:24:32:
a5:4e:4b:0e:a7:ed:07:8c:d1:31:13:2a:96:2d:57:
f3:1a:6b:12:75:bc:c5:6d:d7:89:56:ce:11:23:4a:
c8:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:AE:D2:67:DB:BA:00:74:FB:80:07:15:F5:A2:9C:07:13:E9:59:8C
X509v3 Authority Key Identifier:
keyid:B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:b3:e7:0f:0c:bd:53:b2:d0:b3:55:eb:1e:ff:33:bd:02:7d:
72:ab:55:cd:9d:6e:12:be:27:c3:a7:0d:72:66:32:96:5e:c3:
a6:58:c6:ed:21:e4:a9:fb:14:b6:57:03:bf:5d:d4:be:7a:c4:
b7:fd:c4:01:18:0c:5d:cb:e3:37:db:26:db:e5:95:5f:5d:fd:
9a:69:7b:b7:9c:fb:da:2c:67:f7:7e:e1:48:c3:fa:43:44:c4:
d0:bd:12:27:c1:47:2e:6e:d9:24:46:f3:93:39:a7:2f:63:26:
d0:e6:c9:cd:68:ef:ee:92:15:f1:b5:64:e5:39:82:bd:42:43:
a0:d4:19:1d:5c:61:9b:98:3c:7b:b7:1f:86:f2:81:e2:73:cf:
4d:75:c2:df:4a:09:b5:26:91:ba:9d:d3:2e:31:3b:6c:b0:21:
82:33:17:58:13:2b:1e:39:cd:5d:0a:58:69:12:bf:43:c9:99:
f0:24:8e:69:f2:7b:cb:6a:4e:7c:f3:41:e9:96:7b:ad:0e:24:
09:25:90:66:a9:41:e3:38:45:3f:25:c1:79:9c:2e:68:e4:c7:
31:d8:ef:68:29:4f:00:33:71:a2:e1:c8:51:0c:c4:b9:76:61:
5c:aa:32:9e:1f:24:fb:f9:ff:e6:eb:65:f6:aa:2e:66:b4:94:
88:c0:33:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:08:33 2025 by rpki-client