
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft
File: 1T5Pyhar83QtTaK_nD2abpHpbuU.mft (raw, json)
Hash identifier: DkbQ2QWYmAaJqgMFCUoMRn98uEOjo4UWdhyihacB9RU=
Subject key identifier: 70:1F:1C:C2:B9:8D:E0:6E:CC:20:07:85:3C:D4:97:1E:59:E2:86:1B
Authority key identifier: D5:3E:4F:CA:16:AB:F3:74:2D:4D:A2:BF:9C:3D:9A:6E:91:E9:6E:E5
Certificate issuer: /CN=d53e4fca16abf3742d4da2bf9c3d9a6e91e96ee5
Certificate serial: 0199FAD82B9E21D6F3C975B106CCC6AD3E7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1T5Pyhar83QtTaK_nD2abpHpbuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft
Manifest number: 13F4
Signing time: Sun 19 Oct 2025 05:01:34 +0000
Manifest this update: Sun 19 Oct 2025 05:01:34 +0000
Manifest next update: Mon 20 Oct 2025 05:01:34 +0000
Files and hashes: 1: 1T5Pyhar83QtTaK_nD2abpHpbuU.crl (hash: Kmy0jalkD4nsSI+FB8/GiMq4qcWw8RTyfrxHKFVv6X8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1T5Pyhar83QtTaK_nD2abpHpbuU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:2b:9e:21:d6:f3:c9:75:b1:06:cc:c6:ad:3e:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d53e4fca16abf3742d4da2bf9c3d9a6e91e96ee5
Validity
Not Before: Oct 19 05:01:34 2025 GMT
Not After : Oct 20 05:01:34 2025 GMT
Subject: CN=701f1cc2b98de06ecc2007853cd4971e59e2861b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:94:d7:56:00:e4:8d:1b:a4:8f:52:b8:c1:a9:
fc:46:24:f0:50:86:2d:89:87:fc:7a:83:54:5d:4f:
ef:85:ef:e4:b0:ba:1b:a1:15:8f:03:f0:70:47:1c:
d0:97:e8:74:9f:0a:4b:34:5b:12:bc:0c:c3:c5:68:
fb:81:0a:d5:c1:57:e6:8f:bf:d5:8b:35:16:0e:a0:
08:a8:14:72:fc:da:3b:24:24:fe:31:88:0a:17:23:
a7:df:6d:ca:5d:5d:e3:6a:b0:b5:f9:7a:d4:83:16:
aa:bf:34:af:79:6d:84:5e:71:7e:a7:88:1f:3c:0b:
d7:da:d8:4c:b6:49:40:84:8b:58:b5:ac:ee:d9:05:
ab:d4:63:c2:6d:ce:25:23:09:25:b7:a2:8c:f8:f4:
90:8c:d2:60:e0:fb:81:5e:d9:e6:4c:dc:30:44:dc:
86:35:5c:b8:e4:af:21:53:91:c5:bd:0b:c4:90:4a:
e1:39:95:34:a7:df:5a:02:ae:f7:7f:f4:a1:48:bc:
1d:d5:a1:9b:a5:bb:c5:e1:34:29:b2:d5:37:ac:78:
a3:9b:a2:24:2c:12:a7:f9:67:32:a8:a4:e6:20:97:
fc:56:a3:6c:cd:99:12:52:be:da:d1:e2:38:80:2b:
b8:51:18:2e:31:6a:00:b3:b7:16:2f:58:e4:1a:63:
4e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1F:1C:C2:B9:8D:E0:6E:CC:20:07:85:3C:D4:97:1E:59:E2:86:1B
X509v3 Authority Key Identifier:
keyid:D5:3E:4F:CA:16:AB:F3:74:2D:4D:A2:BF:9C:3D:9A:6E:91:E9:6E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1T5Pyhar83QtTaK_nD2abpHpbuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:3e:5c:6c:9a:54:1c:2d:f3:09:ea:13:f3:2c:59:a6:b3:00:
9e:a8:85:58:c8:7b:ae:80:02:ba:5e:72:0e:fe:13:6a:44:ce:
4d:4a:47:65:9e:2a:fc:19:20:c1:bb:c3:76:46:6f:44:1f:fe:
2d:84:25:fe:ba:c3:4b:aa:f1:ae:37:c6:99:46:01:35:e9:59:
29:9f:65:77:c1:93:c8:e7:03:ec:fa:bc:f2:85:16:4a:fc:9f:
b8:da:47:65:33:32:6c:ff:99:13:d5:4b:77:3f:36:40:2b:56:
dc:71:7a:e2:b7:03:95:26:e5:c6:6e:e0:f6:ce:ae:ed:ed:c6:
a0:3a:62:81:02:f5:5d:a0:ca:c0:7c:bf:6c:72:44:3d:1c:51:
4b:65:08:60:1f:0c:19:3c:ed:6c:9d:e4:25:f9:74:c8:0e:12:
20:a3:35:35:ce:ec:ee:35:8d:77:b1:19:d3:08:90:61:72:57:
86:cb:2f:5d:29:60:83:e0:ea:ef:46:11:02:05:c8:d6:5e:3f:
04:dc:4e:ea:64:9e:4d:fd:a8:76:77:50:6d:86:31:98:db:8c:
2e:5c:e0:81:1a:b6:82:ce:3b:e0:2b:35:0f:f5:9d:fe:32:60:
f8:3a:d3:e5:c7:ef:ae:a7:dc:ae:ff:f5:dc:cf:0b:37:4c:2d:
e2:aa:88:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn62CueIdbzyXWxBszGrT56MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1M2U0ZmNhMTZhYmYzNzQyZDRkYTJiZjljM2Q5YTZlOTFl
OTZlZTUwHhcNMjUxMDE5MDUwMTM0WhcNMjUxMDIwMDUwMTM0WjAzMTEwLwYDVQQD
Eyg3MDFmMWNjMmI5OGRlMDZlY2MyMDA3ODUzY2Q0OTcxZTU5ZTI4NjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZTXVgDkjRukj1K4wan8RiTwUIYt
iYf8eoNUXU/vhe/ksLoboRWPA/BwRxzQl+h0nwpLNFsSvAzDxWj7gQrVwVfmj7/V
izUWDqAIqBRy/No7JCT+MYgKFyOn323KXV3jarC1+XrUgxaqvzSveW2EXnF+p4gf
PAvX2thMtklAhItYtazu2QWr1GPCbc4lIwklt6KM+PSQjNJg4PuBXtnmTNwwRNyG
NVy45K8hU5HFvQvEkErhOZU0p99aAq73f/ShSLwd1aGbpbvF4TQpstU3rHijm6Ik
LBKn+WcyqKTmIJf8VqNszZkSUr7a0eI4gCu4URguMWoAs7cWL1jkGmNONwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHAfHMK5jeBuzCAHhTzUlx5Z4oYbMB8GA1UdIwQY
MBaAFNU+T8oWq/N0LU2iv5w9mm6R6W7lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVQ1UHloYXI4M1F0VGFLX25EMmFicEhwYnVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS8zZGYwOWItNjFlZC00MDgzLTk3OGIt
MjYzMzUwZGVjMTk0LzEvMVQ1UHloYXI4M1F0VGFLX25EMmFicEhwYnVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS8zZGYwOWItNjFlZC00MDgzLTk3OGItMjYzMzUwZGVjMTk0
LzEvMVQ1UHloYXI4M1F0VGFLX25EMmFicEhwYnVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFT5cbJpU
HC3zCeoT8yxZprMAnqiFWMh7roACul5yDv4TakTOTUpHZZ4q/BkgwbvDdkZvRB/+
LYQl/rrDS6rxrjfGmUYBNelZKZ9ld8GTyOcD7Pq88oUWSvyfuNpHZTMybP+ZE9VL
dz82QCtW3HF64rcDlSblxm7g9s6u7e3GoDpigQL1XaDKwHy/bHJEPRxRS2UIYB8M
GTztbJ3kJfl0yA4SIKM1Nc7s7jWNd7EZ0wiQYXJXhssvXSlgg+Dq70YRAgXI1l4/
BNxO6mSeTf2odndQbYYxmNuMLlzggRq2gs474Cs1D/Wd/jJg+DrT5cfvrqfcrv/1
3M8LN0wt4qqIqw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:19:09 2025 by rpki-client