Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
File: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft (raw, json)
Hash identifier: TQ6Pk0DfYZ31Ytibg8jTzZwAL8UJtcI108ZYPeMcSPk=
Subject key identifier: DD:68:C8:C0:3A:12:5B:7D:D7:D3:8F:72:7E:23:FB:14:0F:DF:9E:2E
Authority key identifier: BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD
Certificate issuer: /CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad
Certificate serial: 019A4DE16BF98E826E463026847E9AC7B92F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
Manifest number: 03D5
Signing time: Tue 04 Nov 2025 08:00:10 +0000
Manifest this update: Tue 04 Nov 2025 08:00:10 +0000
Manifest next update: Wed 05 Nov 2025 08:00:10 +0000
Files and hashes: 1: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl (hash: OB0sfT5eURW45Ef6jxcLbeLZkyz19TmgTfBXGf94Yxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:6b:f9:8e:82:6e:46:30:26:84:7e:9a:c7:b9:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad
Validity
Not Before: Nov 4 08:00:10 2025 GMT
Not After : Nov 5 08:00:10 2025 GMT
Subject: CN=dd68c8c03a125b7dd7d38f727e23fb140fdf9e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7a:7d:b1:f0:42:37:4c:6c:de:10:fa:f1:65:
40:7d:74:50:39:c1:25:b3:33:d7:bb:a3:0a:aa:62:
bd:8f:33:49:e7:b9:6c:34:64:17:50:35:9c:7b:5f:
56:73:f7:4e:e6:95:2c:2c:36:81:6e:73:71:11:a5:
24:af:4b:95:7f:f6:85:9a:df:69:00:97:d5:71:30:
9d:7d:65:90:fe:15:65:ea:d5:19:92:ca:82:72:ac:
69:09:ce:19:27:5e:04:35:34:86:c0:f2:c6:66:85:
9e:b4:ff:ac:3a:e9:6c:9a:e3:c3:fc:34:38:d9:5d:
3b:13:ef:63:d9:8a:fa:3b:bd:7a:f6:f4:06:a7:9f:
3f:2d:91:1a:28:8c:e7:5a:89:51:6f:db:69:99:77:
f7:5f:fc:50:7c:42:28:c3:e0:e8:67:24:4c:ec:ee:
92:fb:c9:d5:71:6e:be:50:02:df:3a:d3:f8:26:b3:
b8:c9:33:ae:0a:87:f6:cf:33:05:84:e9:ff:55:46:
71:b5:5e:8f:df:65:0c:29:03:db:cc:9b:d1:45:3d:
20:88:ce:d4:e9:c8:50:b9:1b:8b:95:8e:58:29:f8:
e4:5e:00:f8:7d:8d:2c:a9:a5:ef:46:77:51:d0:a7:
4f:c6:8b:71:30:95:4b:82:ce:e8:b9:11:46:2d:cb:
57:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:68:C8:C0:3A:12:5B:7D:D7:D3:8F:72:7E:23:FB:14:0F:DF:9E:2E
X509v3 Authority Key Identifier:
keyid:BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:92:a0:4d:49:0d:2a:cb:f6:94:87:5b:75:73:b8:86:61:e7:
a1:04:d8:cb:b4:ac:2f:c3:ff:d1:13:82:bd:f2:82:69:da:8b:
ec:40:f0:c2:09:ba:f5:45:14:b3:bd:99:dd:ee:23:3b:0a:5d:
37:a5:79:cc:fe:93:d8:ea:77:3f:75:70:e6:14:94:4e:ce:a8:
51:53:22:e7:6e:15:0f:c8:f7:a5:bf:1d:74:d0:78:54:1d:80:
ac:0c:06:f4:f1:18:74:b8:23:d1:2b:bd:3a:67:ae:c7:10:6b:
d9:9d:ac:c9:24:85:7b:0a:01:dd:d3:44:09:c3:2b:e9:95:bb:
be:95:e3:33:fd:61:a0:8e:2a:bf:86:a4:93:12:82:da:0f:68:
3f:78:12:be:3d:5a:8e:e8:ff:e8:4f:e7:96:dc:9e:82:7f:87:
6a:d3:dd:85:70:66:64:82:8b:82:4e:3e:f3:52:2e:5e:3f:0d:
fa:a1:2d:f5:ce:98:ec:2a:8d:c2:ff:f7:0a:a2:46:2c:ea:a7:
c2:8e:c8:12:37:e7:29:6a:e2:d9:72:0c:37:c6:ab:b1:6d:b0:
76:26:fb:d8:71:35:79:d6:10:e7:37:b1:79:b3:e9:af:68:4f:
52:f2:77:ee:13:38:a5:ff:41:27:24:53:02:ea:98:c8:1f:f0:
81:67:19:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 11:00:43 2025 by rpki-client