Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/11f004-441f-470d-8927-76a9109a62e7/1/T7murXluvL6SUPqiksQOioWIx50.mft
File: T7murXluvL6SUPqiksQOioWIx50.mft (raw, json)
Hash identifier: Tv/RRFkYurp6vetczod+hGjoqO75zfuETa/9hwJIYhA=
Subject key identifier: 35:E7:21:32:B1:51:1C:4A:C2:C4:8D:0E:B3:AC:4F:40:5A:40:43:2E
Authority key identifier: 4F:B9:AE:AD:79:6E:BC:BE:92:50:FA:A2:92:C4:0E:8A:85:88:C7:9D
Certificate issuer: /CN=4fb9aead796ebcbe9250faa292c40e8a8588c79d
Certificate serial: 0199FDD9555C1F30EC99A91E46EEFCDF57B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T7murXluvL6SUPqiksQOioWIx50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/11f004-441f-470d-8927-76a9109a62e7/1/T7murXluvL6SUPqiksQOioWIx50.mft
Manifest number: 11C7
Signing time: Sun 19 Oct 2025 19:01:42 +0000
Manifest this update: Sun 19 Oct 2025 19:01:42 +0000
Manifest next update: Mon 20 Oct 2025 19:01:42 +0000
Files and hashes: 1: T7murXluvL6SUPqiksQOioWIx50.crl (hash: Ao6HtjbA670QorrhLZiQEmVrdGZ6/Bw+rgFTryvR7vk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/11f004-441f-470d-8927-76a9109a62e7/1/T7murXluvL6SUPqiksQOioWIx50.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/11f004-441f-470d-8927-76a9109a62e7/1/T7murXluvL6SUPqiksQOioWIx50.mft
rsync://rpki.ripe.net/repository/DEFAULT/T7murXluvL6SUPqiksQOioWIx50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:55:5c:1f:30:ec:99:a9:1e:46:ee:fc:df:57:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fb9aead796ebcbe9250faa292c40e8a8588c79d
Validity
Not Before: Oct 19 19:01:42 2025 GMT
Not After : Oct 20 19:01:42 2025 GMT
Subject: CN=35e72132b1511c4ac2c48d0eb3ac4f405a40432e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e6:7a:75:b3:35:f5:3b:50:6a:78:1b:40:14:
c1:14:9d:96:70:f6:ba:c8:40:5c:4a:08:c4:69:80:
17:69:da:1c:49:94:58:f2:b5:d1:15:01:4c:32:db:
82:f4:79:cf:72:ea:42:0c:ca:a1:c1:7c:bb:4f:f5:
a8:e1:bc:a1:b5:85:a2:57:25:44:05:55:44:eb:c9:
9b:22:18:a2:36:33:5e:76:72:ab:65:67:4a:6a:73:
50:0c:88:f6:5b:ce:2b:d3:48:83:6f:8f:f2:80:58:
68:b7:49:ce:a8:6d:22:df:63:18:25:94:9d:3e:db:
8b:1d:01:3f:73:d0:19:d1:83:89:9c:db:de:fc:bc:
e9:98:fe:4b:13:7b:f8:1a:b0:42:9d:31:d4:08:5d:
8a:4d:71:b5:0b:e6:d7:b9:e0:b8:fe:49:27:f3:c1:
fb:90:91:1a:bf:fa:6f:9c:67:15:97:e1:9d:8e:53:
be:63:14:97:63:8d:e7:17:1c:89:b4:37:00:c0:78:
33:3d:ad:0e:3f:46:90:db:fe:84:17:50:ac:60:30:
97:f6:fe:7a:6f:78:e9:57:b5:88:e4:16:9b:7f:14:
f9:e9:56:84:a3:be:ce:63:fc:c2:f4:d5:88:83:fe:
1f:40:e5:1e:2b:30:2a:31:97:fd:cd:25:00:bb:b1:
a9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:E7:21:32:B1:51:1C:4A:C2:C4:8D:0E:B3:AC:4F:40:5A:40:43:2E
X509v3 Authority Key Identifier:
keyid:4F:B9:AE:AD:79:6E:BC:BE:92:50:FA:A2:92:C4:0E:8A:85:88:C7:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T7murXluvL6SUPqiksQOioWIx50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/11f004-441f-470d-8927-76a9109a62e7/1/T7murXluvL6SUPqiksQOioWIx50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/11f004-441f-470d-8927-76a9109a62e7/1/T7murXluvL6SUPqiksQOioWIx50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:0f:0c:92:11:ed:2e:d9:b2:e6:86:a0:56:e1:52:1a:b7:06:
63:8f:d9:ed:6d:a4:5a:b2:84:cb:b4:f1:d7:57:bd:89:32:69:
c3:05:0f:44:85:29:46:e7:52:2a:9f:31:94:e6:17:dd:f1:b4:
cd:a1:8e:67:17:c3:91:7e:4b:e4:db:50:07:fb:ec:53:41:94:
c9:5b:70:ed:fc:1d:40:f8:ce:f9:d2:20:b5:ce:ea:15:f4:f6:
fa:c7:4f:0a:38:d7:21:cc:5f:cf:01:4a:d5:ca:5f:72:73:60:
78:72:ca:d0:b1:8f:06:46:d8:9f:70:5c:d5:74:a7:c3:e6:3f:
7d:70:ad:09:c1:68:c4:0e:7a:09:dc:f1:09:c7:c9:8c:67:09:
7a:23:e0:b7:5e:a0:be:0e:11:b1:51:18:65:9d:7d:45:80:88:
53:a3:91:f4:1d:5c:d8:ce:cb:e7:3c:1e:18:71:d0:7e:c3:2a:
2e:c5:30:86:ac:07:b3:08:6a:05:68:40:ee:b5:cc:ce:6b:f7:
3d:81:63:55:aa:1d:81:f3:14:58:b3:56:6f:da:88:93:9d:b3:
d8:5c:76:14:32:e2:25:64:3e:00:79:09:d5:87:96:a7:26:f4:
c6:d9:e1:a9:09:74:10:e4:dc:27:8c:19:38:bc:1b:e0:a3:55:
91:eb:43:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:55:33 2025 by rpki-client