Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/6da562-a836-48cc-aa57-8c4bb4485f34/1/9jOGnDZCtefqAii_DgspXO_MTd8.mft
File: 9jOGnDZCtefqAii_DgspXO_MTd8.mft (raw, json)
Hash identifier: R52DjDK2TmuUfYvR/hsjJa5b84FWoEeoirVG68GM9A0=
Subject key identifier: E4:48:D6:FA:F1:EC:36:48:20:4F:2D:1B:C6:17:0E:C8:21:84:0C:03
Authority key identifier: F6:33:86:9C:36:42:B5:E7:EA:02:28:BF:0E:0B:29:5C:EF:CC:4D:DF
Certificate issuer: /CN=f633869c3642b5e7ea0228bf0e0b295cefcc4ddf
Certificate serial: 019A4F994508A4418FFBC87FD602A6BA7B46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9jOGnDZCtefqAii_DgspXO_MTd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/6da562-a836-48cc-aa57-8c4bb4485f34/1/9jOGnDZCtefqAii_DgspXO_MTd8.mft
Manifest number: 1183
Signing time: Tue 04 Nov 2025 16:00:35 +0000
Manifest this update: Tue 04 Nov 2025 16:00:35 +0000
Manifest next update: Wed 05 Nov 2025 16:00:35 +0000
Files and hashes: 1: 9jOGnDZCtefqAii_DgspXO_MTd8.crl (hash: k+nrRH6okZmvZHDqpRefj/O2DRHa/fQ/OTXIeVXJAiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/6da562-a836-48cc-aa57-8c4bb4485f34/1/9jOGnDZCtefqAii_DgspXO_MTd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/6da562-a836-48cc-aa57-8c4bb4485f34/1/9jOGnDZCtefqAii_DgspXO_MTd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/9jOGnDZCtefqAii_DgspXO_MTd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:45:08:a4:41:8f:fb:c8:7f:d6:02:a6:ba:7b:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f633869c3642b5e7ea0228bf0e0b295cefcc4ddf
Validity
Not Before: Nov 4 16:00:35 2025 GMT
Not After : Nov 5 16:00:35 2025 GMT
Subject: CN=e448d6faf1ec3648204f2d1bc6170ec821840c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9c:c4:03:9a:1b:b0:df:4d:ee:d5:7a:7f:ce:
c7:f9:6d:5c:87:bd:fa:17:68:ab:33:7e:91:d5:8e:
30:1e:96:0e:b4:23:1b:f4:a2:fe:35:49:d0:78:21:
46:b7:c4:c2:60:ed:fc:e4:94:1f:a6:f1:87:72:a3:
7f:86:c7:5f:8c:7b:95:81:75:6f:80:69:17:17:da:
8f:6c:4d:4d:d8:50:70:7c:c7:4a:54:2a:63:ca:82:
ea:6a:69:b6:94:fb:e0:2d:7c:ad:59:fa:31:44:26:
3f:b0:39:56:86:e4:8b:24:c6:c1:3d:be:0d:80:8b:
5c:29:34:0f:60:f3:af:e7:69:a2:5f:7e:bf:f6:14:
8e:55:0c:c4:a7:4e:be:0f:7b:a7:ed:d9:18:bd:f7:
69:c5:15:8d:b1:07:97:e1:62:7a:8a:46:6e:a5:fe:
26:0e:b9:57:20:2f:5e:38:4e:5f:eb:45:2e:30:20:
54:8f:e3:ec:b6:44:eb:bb:17:bb:22:51:41:3d:78:
78:43:92:07:59:e2:b8:73:89:40:e9:b3:93:af:54:
1a:c6:2b:45:5d:3d:27:0e:ab:30:fe:77:e0:4c:b1:
15:bf:60:23:9f:31:f9:9c:5c:8b:78:6c:2f:cf:77:
1a:b2:2b:6d:1d:11:ed:d6:d4:44:86:a9:ff:bd:0e:
2d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:48:D6:FA:F1:EC:36:48:20:4F:2D:1B:C6:17:0E:C8:21:84:0C:03
X509v3 Authority Key Identifier:
keyid:F6:33:86:9C:36:42:B5:E7:EA:02:28:BF:0E:0B:29:5C:EF:CC:4D:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9jOGnDZCtefqAii_DgspXO_MTd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/6da562-a836-48cc-aa57-8c4bb4485f34/1/9jOGnDZCtefqAii_DgspXO_MTd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/6da562-a836-48cc-aa57-8c4bb4485f34/1/9jOGnDZCtefqAii_DgspXO_MTd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:0e:6f:3b:a1:e8:0d:3d:ad:e0:d4:23:c6:92:f0:fb:ca:63:
22:d6:a1:ab:59:24:47:cc:81:87:92:7f:ad:74:07:b2:af:21:
43:b8:2e:5a:a2:ef:15:66:cd:15:b9:21:ac:4b:5c:bc:59:cd:
5e:aa:e9:6d:8c:e4:aa:ce:52:6f:9c:51:e6:4e:da:4a:55:4f:
f0:33:ea:ac:6c:a8:5b:ca:b1:d3:a5:10:0a:c2:5d:64:77:95:
be:94:30:03:6c:0a:19:a3:bc:b9:f9:fa:0a:2a:f8:83:e9:59:
de:c2:e5:9c:a3:6d:00:b5:bd:f6:21:a1:f1:7d:9d:6d:92:8b:
94:98:ee:1e:10:ff:29:8d:49:a4:c5:39:50:74:d2:e2:5a:80:
d3:37:fe:1e:e8:da:00:46:f0:d8:2e:38:41:e0:63:b7:1b:bb:
f6:db:20:01:ce:54:5c:db:32:f6:8b:78:95:b6:de:55:5d:6f:
63:91:0c:17:8d:51:33:7a:6e:35:e8:6a:7f:d5:c3:1a:ea:82:
0f:3c:48:5e:24:f7:d9:39:8f:6c:0b:1e:84:b3:86:69:66:7a:
24:a3:6c:74:6c:b8:01:3c:77:6c:9f:b5:92:a2:b9:8d:76:4d:
9a:b0:35:3e:f8:07:7a:a1:1e:55:fe:19:c6:7d:7c:c8:70:58:
8f:b7:50:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:56:21 2025 by rpki-client