Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
File: r4poziKkwZ8XcA9izPi7bC2vUeE.mft (raw, json)
Hash identifier: yphf7A3kWBU8gbcSasn2XjeUAy5vfDvQIMUmBLYPcHU=
Subject key identifier: D1:06:A8:83:BC:E5:BA:78:B9:CE:42:F4:D5:16:45:6D:4D:48:D5:2D
Authority key identifier: AF:8A:68:CE:22:A4:C1:9F:17:70:0F:62:CC:F8:BB:6C:2D:AF:51:E1
Certificate issuer: /CN=af8a68ce22a4c19f17700f62ccf8bb6c2daf51e1
Certificate serial: 0199FCC6BEFABA9989F769A96CCF3F1E4201
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
Manifest number: 105E
Signing time: Sun 19 Oct 2025 14:01:47 +0000
Manifest this update: Sun 19 Oct 2025 14:01:47 +0000
Manifest next update: Mon 20 Oct 2025 14:01:47 +0000
Files and hashes: 1: r4poziKkwZ8XcA9izPi7bC2vUeE.crl (hash: /daA3meWbcudYW1pgMNdju979yF+ncyYOqoevauNBNE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 14:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:be:fa:ba:99:89:f7:69:a9:6c:cf:3f:1e:42:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af8a68ce22a4c19f17700f62ccf8bb6c2daf51e1
Validity
Not Before: Oct 19 14:01:47 2025 GMT
Not After : Oct 20 14:01:47 2025 GMT
Subject: CN=d106a883bce5ba78b9ce42f4d516456d4d48d52d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:73:c9:aa:a3:fd:a0:15:55:e9:aa:66:9b:63:
5e:83:72:9d:c0:57:a1:16:4a:a6:2e:01:85:5e:b5:
d7:e5:0e:07:36:82:72:54:4d:0f:73:65:49:cb:bb:
5b:b5:bd:cb:5e:16:82:42:e4:5a:f0:6b:df:e1:12:
f0:46:47:4f:92:f3:c6:cf:aa:52:04:de:e5:f8:7a:
84:79:bb:92:a5:dc:02:85:cc:9b:e9:23:9f:ea:33:
37:30:0b:ae:e0:7b:b7:17:dc:0a:2b:e1:0b:1f:84:
35:36:cf:ed:0d:eb:7c:d8:5c:a9:a1:f5:f1:c8:90:
11:2f:d0:0d:ed:4c:17:a7:1e:07:8c:6b:85:24:41:
09:df:09:b6:a8:67:cb:9b:2d:1a:45:df:7f:dc:72:
94:30:4b:f5:ee:19:e6:28:4b:49:70:f2:3e:45:8e:
72:9f:ac:cf:d4:09:9b:9f:01:ba:01:87:13:5f:72:
3d:1d:23:e6:ea:64:fb:1b:ca:5c:d9:e4:f6:e7:c0:
08:8b:ab:23:ba:50:3c:6b:30:3f:6e:07:a0:45:e6:
5f:d5:d8:36:99:4f:6b:a8:c0:15:42:b2:8b:8c:3f:
92:41:2c:d8:ce:87:ba:0d:57:d0:11:b8:a6:cc:88:
91:3f:76:1b:ba:5d:61:6c:56:3b:93:3e:0c:75:14:
18:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:06:A8:83:BC:E5:BA:78:B9:CE:42:F4:D5:16:45:6D:4D:48:D5:2D
X509v3 Authority Key Identifier:
keyid:AF:8A:68:CE:22:A4:C1:9F:17:70:0F:62:CC:F8:BB:6C:2D:AF:51:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:47:fc:e8:de:53:25:0d:ca:1a:21:83:50:ae:ba:9e:11:2a:
33:62:00:29:67:ae:03:a0:8d:db:45:67:27:91:89:0d:59:12:
ec:bd:42:8b:10:b7:f2:47:d2:1b:a2:1d:7f:c2:26:66:a5:97:
61:2c:f2:dd:a9:30:4f:f0:76:da:e7:1a:b1:6f:c5:41:b5:f1:
5c:05:ff:b7:72:b5:59:63:eb:1b:dd:1f:8f:2b:a7:57:83:4e:
68:f4:bf:da:fc:ed:2d:5a:fb:a2:6e:8c:33:36:a7:31:f3:58:
0a:61:20:a3:51:94:ed:11:df:e5:1c:b5:15:49:61:3e:a7:77:
ed:4b:ce:ea:29:c5:17:95:3b:23:a2:8a:94:55:cb:6f:af:4b:
c8:95:08:75:5f:da:36:af:d6:f8:f7:06:e7:2c:d7:53:d6:93:
1c:aa:c7:c1:eb:f6:89:ae:b8:96:7c:d9:26:75:a6:82:13:b5:
af:17:0a:f0:93:e4:5b:4f:6e:22:aa:74:bf:8d:1a:6a:04:72:
3a:e7:98:e7:87:85:f2:a2:26:70:df:22:6b:5c:13:37:8a:bb:
a9:80:69:98:9f:48:c5:68:50:41:ff:07:fa:a0:03:6c:c4:d9:
81:0f:de:c9:fc:20:1a:dd:58:8a:e0:a2:ef:7c:ec:2b:cf:b3:
90:66:bb:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:10:51 2025 by rpki-client