Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.mft
File: if4_e4M8MGAut5hY5-r67VVPTFs.mft (raw, json)
Hash identifier: mK0rUfJD8FiJAXJCT2NaRc8dAxclam0PaOYPLmMvgAw=
Subject key identifier: AD:63:C2:1D:46:6C:E7:A5:49:4E:BE:55:BC:77:2B:19:70:CD:93:08
Authority key identifier: 89:FE:3F:7B:83:3C:30:60:2E:B7:98:58:E7:EA:FA:ED:55:4F:4C:5B
Certificate issuer: /CN=89fe3f7b833c30602eb79858e7eafaed554f4c5b
Certificate serial: 0199FC58282B5B3C73FBD25A0CC3C4A631A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/if4_e4M8MGAut5hY5-r67VVPTFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.mft
Manifest number: 093E
Signing time: Sun 19 Oct 2025 12:00:59 +0000
Manifest this update: Sun 19 Oct 2025 12:00:59 +0000
Manifest next update: Mon 20 Oct 2025 12:00:59 +0000
Files and hashes: 1: if4_e4M8MGAut5hY5-r67VVPTFs.crl (hash: lfNpf8I5vdoLowh+qUzaimATJwfr7eN1x54eAap00Z0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/if4_e4M8MGAut5hY5-r67VVPTFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:28:2b:5b:3c:73:fb:d2:5a:0c:c3:c4:a6:31:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89fe3f7b833c30602eb79858e7eafaed554f4c5b
Validity
Not Before: Oct 19 12:00:59 2025 GMT
Not After : Oct 20 12:00:59 2025 GMT
Subject: CN=ad63c21d466ce7a5494ebe55bc772b1970cd9308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ce:dd:c7:1d:0b:dc:87:24:61:3e:14:2d:e3:
e9:58:fc:fb:c3:a5:8e:95:c9:eb:fb:f3:bd:87:00:
7e:71:45:75:31:a6:e7:08:c1:24:04:42:b7:33:c8:
63:93:5e:03:eb:d8:fb:7a:12:3b:38:91:53:ff:f0:
60:fb:31:0d:16:65:e8:fd:de:0a:22:7d:b1:24:b6:
63:c2:62:dc:a1:50:35:26:c3:2d:a9:f7:b6:51:06:
1c:b2:6f:b0:06:4d:2d:1f:1a:e0:3f:12:98:1f:fa:
33:69:3a:a2:55:1a:05:1d:ea:55:33:b9:0f:af:e8:
03:03:af:9a:bf:44:e0:64:60:0f:6e:6e:1a:ee:09:
2b:e6:1b:a5:23:3b:bd:56:a6:64:70:1e:30:b7:29:
47:dc:04:47:6a:a6:40:bc:ac:2a:7f:ba:40:01:93:
cd:3e:38:ba:5a:06:b8:e2:6b:fa:79:84:ab:bc:06:
8b:16:e8:0d:8e:37:8a:12:b5:34:2c:b5:db:ed:0f:
ad:d6:eb:6b:e9:e2:18:9d:e3:c0:f9:7a:a6:a6:86:
d3:ce:be:33:57:cf:0f:64:e9:27:63:34:44:5d:46:
2f:de:fa:ee:8b:4b:94:11:2d:8d:36:66:5e:f7:aa:
c2:67:4e:ab:89:0c:2b:ce:17:83:ec:6d:44:73:81:
1c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:63:C2:1D:46:6C:E7:A5:49:4E:BE:55:BC:77:2B:19:70:CD:93:08
X509v3 Authority Key Identifier:
keyid:89:FE:3F:7B:83:3C:30:60:2E:B7:98:58:E7:EA:FA:ED:55:4F:4C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/if4_e4M8MGAut5hY5-r67VVPTFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b689fd-b13e-4332-9eb7-65cb63afce5e/1/if4_e4M8MGAut5hY5-r67VVPTFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:7f:e5:8c:73:12:4e:be:b5:5a:ac:aa:92:7b:b9:32:fd:11:
ca:94:19:4f:58:31:8a:67:15:07:13:28:1f:ea:47:d9:c6:67:
1b:c7:e1:11:b9:1b:9b:9b:09:16:37:f5:f1:0e:5e:00:d3:e3:
e1:3f:27:ce:0f:74:af:c7:58:06:ea:73:dc:af:f4:08:1f:78:
32:52:b9:36:6f:82:ad:9e:9a:f4:72:f1:ea:cc:c8:17:fe:78:
8d:8a:18:48:be:01:ea:d9:bd:b5:e7:b1:0c:28:d9:a5:da:85:
6a:0b:3b:48:4f:3c:f8:5d:2d:cf:6f:80:6f:a3:df:1c:56:2c:
2d:63:5c:b6:cb:be:f6:9d:1f:c1:a0:1f:ab:8e:40:d9:3e:a8:
30:71:85:6c:cc:22:c1:35:4f:86:f8:c0:cb:3f:74:3a:5e:a1:
ac:cb:65:11:01:9e:b8:b2:b7:b8:e1:09:6f:fd:3d:3d:e2:52:
ef:ed:d5:44:4e:2c:55:af:54:6c:50:37:33:24:74:07:0f:42:
94:e0:ef:1b:85:72:23:09:4d:4b:bf:dc:fa:26:0d:81:a8:66:
10:16:2e:b8:c6:03:a4:2b:db:11:e5:a1:b1:2e:8d:a4:0d:cf:
84:32:b3:4f:6b:ae:07:c3:24:0f:5f:e6:98:d4:b5:3c:85:75:
76:eb:e1:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:38:33 2025 by rpki-client