Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft
File: 4TcnopRRvk3Zkitg0cWW6Aaplfs.mft (raw, json)
Hash identifier: /YgfiPwOPoFXelwVaBB6wr0gh9CB7Xa/ojlQLCrDCGc=
Subject key identifier: B5:44:45:10:F9:BD:FC:B9:DE:D7:C7:BE:FA:F7:AB:50:F9:4F:A3:21
Authority key identifier: E1:37:27:A2:94:51:BE:4D:D9:92:2B:60:D1:C5:96:E8:06:A9:95:FB
Certificate issuer: /CN=e13727a29451be4dd9922b60d1c596e806a995fb
Certificate serial: 0199FBEC348584F020D72C52360EF475B30A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4TcnopRRvk3Zkitg0cWW6Aaplfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft
Manifest number: 16DE
Signing time: Sun 19 Oct 2025 10:03:05 +0000
Manifest this update: Sun 19 Oct 2025 10:03:05 +0000
Manifest next update: Mon 20 Oct 2025 10:03:05 +0000
Files and hashes: 1: 4TcnopRRvk3Zkitg0cWW6Aaplfs.crl (hash: 08DIWKm2DDQZ5Z68Ahk8qOJqpKbWy1GHZ5J3RbUDA68=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/4TcnopRRvk3Zkitg0cWW6Aaplfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:03:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:34:85:84:f0:20:d7:2c:52:36:0e:f4:75:b3:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e13727a29451be4dd9922b60d1c596e806a995fb
Validity
Not Before: Oct 19 10:03:05 2025 GMT
Not After : Oct 20 10:03:05 2025 GMT
Subject: CN=b5444510f9bdfcb9ded7c7befaf7ab50f94fa321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:42:14:7c:f8:c8:51:01:56:ec:1a:50:58:09:
33:ca:6f:ff:80:fe:63:05:35:77:76:71:01:55:71:
77:f8:49:f4:f4:44:c4:9a:54:d2:ab:2a:ea:41:51:
21:5e:75:24:c8:77:90:ee:cb:50:42:2a:14:52:5b:
a0:82:2f:d9:81:90:b9:ba:5b:aa:f7:9f:43:4b:9d:
b9:1d:13:20:5b:f7:85:ba:bd:93:2b:00:e1:1b:73:
e0:52:04:79:ff:b1:31:93:f5:66:b6:be:9a:d9:40:
4f:0d:6f:2b:56:02:0c:9d:57:cf:a7:f6:02:55:6d:
57:85:b3:d1:f7:84:f6:3d:e8:98:34:06:97:76:0d:
2a:d0:92:41:d0:50:0d:73:e5:1a:04:88:26:28:78:
ab:fc:be:bf:99:46:e9:4d:7f:6b:e5:63:92:e6:a0:
c5:95:8a:a4:bd:b5:62:05:74:08:61:8c:c0:12:5e:
dc:e4:4c:79:7e:37:a1:99:3c:4b:71:54:4d:ae:29:
fc:36:33:b3:b7:bf:90:99:b8:6a:57:a6:a5:c7:98:
95:3d:b2:9e:9c:64:22:a3:0c:6f:26:19:8b:6b:47:
34:c1:b3:49:16:5a:1e:df:0a:40:c7:cd:d8:bd:03:
66:e3:4c:54:d7:82:3b:35:99:e0:90:0e:b6:a5:56:
c5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:44:45:10:F9:BD:FC:B9:DE:D7:C7:BE:FA:F7:AB:50:F9:4F:A3:21
X509v3 Authority Key Identifier:
keyid:E1:37:27:A2:94:51:BE:4D:D9:92:2B:60:D1:C5:96:E8:06:A9:95:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4TcnopRRvk3Zkitg0cWW6Aaplfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:fa:d5:bc:48:cb:b8:7b:6e:6e:7c:7a:6e:80:97:b9:fd:39:
ad:91:db:cc:00:1b:ea:f2:b6:f8:ab:b4:b7:38:d1:f5:bf:47:
c5:75:12:42:1b:75:fc:01:32:bd:05:4e:25:ad:e6:b0:2b:d7:
c2:b1:60:f1:f2:24:c0:86:24:37:93:74:1b:49:f2:11:e4:35:
ec:d0:f0:c8:c4:6e:26:a8:7b:f5:04:b4:cc:18:b2:83:fe:fc:
39:f9:e9:2f:f5:16:00:6a:84:7b:e3:6c:ca:e3:d3:ce:9d:d8:
0d:b6:bb:dd:59:e8:cf:15:da:41:63:b3:ce:0d:fe:ad:b1:36:
04:2a:9f:4f:f2:5a:c3:af:72:ef:04:55:ea:4a:18:8e:e0:de:
40:95:f6:ae:6e:d1:c6:70:4b:9b:82:f9:a6:55:66:ae:1a:91:
56:5a:ff:cc:d3:e6:bb:b3:c1:c1:59:ed:8f:f0:a6:e3:f9:39:
eb:3e:58:9f:bd:6c:80:a2:6f:be:37:dc:4d:40:3b:bf:13:8d:
5a:9d:a0:ca:d5:3d:a2:c6:31:31:5d:cb:78:90:09:ad:1f:6e:
0b:f6:48:e1:5a:95:e4:33:0d:26:48:2b:27:1e:7b:0e:19:44:
10:87:9a:0d:e1:d3:fb:2c:e6:3a:f0:a4:cc:0c:82:50:b4:8c:
82:a4:d1:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:06:50 2025 by rpki-client