Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft
File: T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft (raw, json)
Hash identifier: bt/0F32WZhf7OkWVFD3gkVLPM0xDEd+Y8qKtoSGITKQ=
Subject key identifier: 1F:42:51:B5:F3:B7:FA:B1:5D:00:11:9A:3C:39:C0:F2:8A:DF:B2:4E
Authority key identifier: 4F:A8:93:E3:3A:82:1F:F6:6D:38:F0:EB:CE:49:91:1F:3A:5F:96:4E
Certificate issuer: /CN=4fa893e33a821ff66d38f0ebce49911f3a5f964e
Certificate serial: 0199FEB49A98035869E77E49CDFD94D9DE05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T6iT4zqCH_ZtOPDrzkmRHzpflk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft
Manifest number: 07C8
Signing time: Sun 19 Oct 2025 23:01:12 +0000
Manifest this update: Sun 19 Oct 2025 23:01:12 +0000
Manifest next update: Mon 20 Oct 2025 23:01:12 +0000
Files and hashes: 1: T6iT4zqCH_ZtOPDrzkmRHzpflk4.crl (hash: x6vW3bcQtBypsWfYFM4YkArsXm2kWFJ6ecPe+PkSYCY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/T6iT4zqCH_ZtOPDrzkmRHzpflk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 23:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b4:9a:98:03:58:69:e7:7e:49:cd:fd:94:d9:de:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fa893e33a821ff66d38f0ebce49911f3a5f964e
Validity
Not Before: Oct 19 23:01:12 2025 GMT
Not After : Oct 20 23:01:12 2025 GMT
Subject: CN=1f4251b5f3b7fab15d00119a3c39c0f28adfb24e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:5b:dd:e0:8a:46:83:08:3d:64:a8:17:dc:30:
56:96:ce:c3:8f:b3:87:67:7b:04:4a:14:bb:e8:3d:
5a:cf:02:29:a0:b7:13:76:af:f8:41:12:f2:0e:6f:
ff:49:e8:77:ca:5a:e6:31:12:20:1d:08:3b:b9:a6:
5f:12:9d:67:e7:b0:72:9a:eb:58:53:d0:eb:78:de:
1c:02:89:f3:d2:31:a0:e5:53:05:4f:4d:36:4a:28:
eb:cf:81:52:c0:0c:4f:41:cf:fa:b4:8e:81:a2:67:
16:e2:b1:8e:56:e6:93:aa:b6:c7:20:0d:51:f7:50:
bd:a3:1b:7d:0a:9c:ac:6f:cb:e8:a7:a8:74:62:84:
a6:af:00:06:74:e7:9c:0c:7f:5f:0f:a9:f6:b3:9b:
02:38:0c:99:98:7f:17:84:51:c4:ea:08:2f:85:e3:
b3:d2:67:cc:ed:00:23:09:7d:41:58:c0:73:3e:e1:
07:49:e3:62:8f:c4:53:e8:a9:cf:27:29:76:39:5a:
50:a5:c8:f5:91:7b:74:cb:44:ab:51:a6:11:3d:e4:
92:3d:f1:6b:a6:1c:d9:13:d3:f1:be:ec:3f:97:bf:
b6:c9:e9:2f:31:a9:43:a5:c0:48:70:07:db:25:ea:
70:c1:39:89:00:46:32:15:52:b2:1e:47:f9:47:99:
06:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:42:51:B5:F3:B7:FA:B1:5D:00:11:9A:3C:39:C0:F2:8A:DF:B2:4E
X509v3 Authority Key Identifier:
keyid:4F:A8:93:E3:3A:82:1F:F6:6D:38:F0:EB:CE:49:91:1F:3A:5F:96:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T6iT4zqCH_ZtOPDrzkmRHzpflk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:a4:89:a7:8f:6b:fe:b1:22:07:03:65:55:c7:94:45:58:b8:
01:61:80:63:18:5d:a4:8a:55:19:83:10:62:2d:a1:22:75:b5:
6e:9b:96:ea:49:a6:a1:7c:ee:de:fa:87:f4:60:18:32:d3:74:
de:41:d8:2c:78:19:d4:67:b8:2c:e0:13:09:4d:46:8a:84:3d:
7c:a2:13:a6:ff:ed:ab:12:1d:b9:e6:6f:0c:f9:41:53:b8:69:
10:99:16:51:c9:15:64:8c:bd:17:d8:bc:a6:6d:d3:ea:46:3f:
fe:44:16:07:df:b0:dc:de:d9:7a:f3:b1:fe:42:f0:c7:2c:a7:
e9:f8:d9:0e:1b:d8:ef:ed:cf:47:cf:3c:5b:30:30:f7:29:f3:
f7:c2:ec:ac:a2:8d:b6:84:95:52:89:d8:a8:f6:bd:4b:04:68:
d6:03:03:a3:f0:b7:20:5b:28:f4:6b:3d:9b:ad:5b:f9:da:f9:
2c:fb:ee:af:40:12:49:73:e9:24:b7:f1:8b:18:5d:5d:49:c7:
90:28:9b:9d:a2:ab:7d:29:e0:6a:4a:73:ee:ee:34:1a:3c:79:
d2:7a:44:e2:16:1b:b3:12:87:0d:0f:95:06:b0:76:c4:af:07:
49:ca:82:8d:b8:33:0f:24:46:39:42:a2:e2:c3:30:11:c1:42:
67:a8:8d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:02:23 2025 by rpki-client