Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft
File: T4BFzPUJd-vDBmo87tj9MvHwI94.mft (raw, json)
Hash identifier: InEta2o9opXCc5l55jVOLeOYag78bslXSBX0Ota0UKM=
Subject key identifier: 55:F8:81:A2:75:F9:29:83:39:50:E8:EA:32:D9:82:84:57:C2:2B:79
Authority key identifier: 4F:80:45:CC:F5:09:77:EB:C3:06:6A:3C:EE:D8:FD:32:F1:F0:23:DE
Certificate issuer: /CN=4f8045ccf50977ebc3066a3ceed8fd32f1f023de
Certificate serial: 019A72263254005F91F49DB298ECF9002478
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4BFzPUJd-vDBmo87tj9MvHwI94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft
Manifest number: 165D
Signing time: Tue 11 Nov 2025 09:01:37 +0000
Manifest this update: Tue 11 Nov 2025 09:01:37 +0000
Manifest next update: Wed 12 Nov 2025 09:01:37 +0000
Files and hashes: 1: T4BFzPUJd-vDBmo87tj9MvHwI94.crl (hash: z0qW0J2ZGZYen9d2jP3AdozeqUY0jS4eEXZsWjImXpo=)
2: YKTSjuC1HFTX7b7hXOaQuasHjw8.roa (hash: DCJ4Y27xyiCClFTgENixBHPREjuVymaDjhE/h8glQl4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft
rsync://rpki.ripe.net/repository/DEFAULT/T4BFzPUJd-vDBmo87tj9MvHwI94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:32:54:00:5f:91:f4:9d:b2:98:ec:f9:00:24:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8045ccf50977ebc3066a3ceed8fd32f1f023de
Validity
Not Before: Nov 11 09:01:37 2025 GMT
Not After : Nov 12 09:01:37 2025 GMT
Subject: CN=55f881a275f929833950e8ea32d9828457c22b79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4a:99:4f:90:b6:d5:89:96:13:14:fe:2a:ba:
79:3b:01:c3:91:7c:4c:4b:cc:77:df:30:12:c6:c3:
ea:35:e0:f4:ae:e7:df:8b:89:6b:d5:9c:f4:fe:79:
6d:c1:a8:fc:a1:95:42:62:60:3d:c2:8a:b8:65:05:
3e:91:f2:a3:f1:ca:14:7c:d5:e6:86:13:9a:69:32:
67:a5:c5:dc:84:cc:82:b2:3d:b5:6e:87:d3:f9:ba:
86:2b:c3:7c:29:df:43:da:20:b0:ed:88:a9:b3:62:
12:d1:1c:af:fc:9c:ad:f1:ce:81:53:24:99:ba:ec:
69:94:9b:69:ba:ab:02:47:ef:48:f1:a7:d8:ba:a3:
6a:53:5f:dd:42:83:05:79:59:f4:5e:13:cf:62:d1:
6c:b1:55:91:b9:de:e0:b0:4b:cb:7d:26:85:74:03:
7b:0a:70:72:d6:33:93:90:4f:8b:04:71:c7:57:e3:
2f:19:4e:25:28:ea:cb:f9:f2:fb:67:6c:85:13:66:
5e:91:78:89:9b:25:7b:45:66:2b:d0:dc:d5:ac:7d:
88:2d:80:03:7d:62:5a:f6:89:d0:a1:6a:78:e0:6f:
8d:44:3d:7f:e4:61:89:22:fe:80:60:e8:53:63:37:
ac:a6:de:5a:b4:5d:4a:f7:52:31:1d:88:64:7a:08:
38:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:F8:81:A2:75:F9:29:83:39:50:E8:EA:32:D9:82:84:57:C2:2B:79
X509v3 Authority Key Identifier:
keyid:4F:80:45:CC:F5:09:77:EB:C3:06:6A:3C:EE:D8:FD:32:F1:F0:23:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4BFzPUJd-vDBmo87tj9MvHwI94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:92:96:3d:7a:8f:af:12:1d:76:e0:da:ec:3d:c8:09:d8:9f:
2b:b7:b5:04:8e:b5:bf:ce:bb:6a:ea:c2:14:cb:56:10:b0:dd:
bc:1b:0f:5e:43:9d:f2:e7:a3:a8:70:8f:14:42:47:0b:3c:7a:
0d:d1:13:6e:be:63:64:d2:86:11:63:96:3f:7c:66:4b:6d:44:
89:18:66:60:27:68:58:e1:c9:13:0e:77:5a:9d:f8:47:14:48:
61:1f:5c:98:71:a0:eb:85:c4:2e:41:cc:aa:b1:d5:53:bb:27:
77:9d:24:1c:14:20:cd:b0:d2:c6:f0:86:00:c4:7e:8a:38:19:
d6:43:27:c1:6a:60:a7:d7:9d:72:d2:96:5f:e9:a4:25:c6:bb:
84:7b:a6:69:48:70:2f:89:36:14:a1:cc:6d:d3:f5:6e:d0:c7:
a1:aa:14:01:9d:40:bf:99:61:f1:00:d6:3b:35:71:ab:a3:72:
02:08:01:a5:75:1d:96:5e:7e:ba:cd:2f:62:79:30:8c:c4:25:
61:fd:19:b6:85:15:7b:69:94:cc:25:56:d2:74:af:ed:57:01:
f3:94:b7:30:aa:61:74:6a:a2:c7:01:19:7d:20:91:99:f8:4f:
23:ec:7a:e3:68:e6:7c:53:65:9f:7c:b5:33:0c:1a:fd:60:c6:
f0:79:a2:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJjJUAF+R9J2ymOz5ACR4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmODA0NWNjZjUwOTc3ZWJjMzA2NmEzY2VlZDhmZDMyZjFm
MDIzZGUwHhcNMjUxMTExMDkwMTM3WhcNMjUxMTEyMDkwMTM3WjAzMTEwLwYDVQQD
Eyg1NWY4ODFhMjc1ZjkyOTgzMzk1MGU4ZWEzMmQ5ODI4NDU3YzIyYjc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2EqZT5C21YmWExT+Krp5OwHDkXxM
S8x33zASxsPqNeD0ruffi4lr1Zz0/nltwaj8oZVCYmA9woq4ZQU+kfKj8coUfNXm
hhOaaTJnpcXchMyCsj21bofT+bqGK8N8Kd9D2iCw7Yips2IS0Ryv/Jyt8c6BUySZ
uuxplJtpuqsCR+9I8afYuqNqU1/dQoMFeVn0XhPPYtFssVWRud7gsEvLfSaFdAN7
CnBy1jOTkE+LBHHHV+MvGU4lKOrL+fL7Z2yFE2ZekXiJmyV7RWYr0NzVrH2ILYAD
fWJa9onQoWp44G+NRD1/5GGJIv6AYOhTYzespt5atF1K91IxHYhkegg4RQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFX4gaJ1+SmDOVDo6jLZgoRXwit5MB8GA1UdIwQY
MBaAFE+ARcz1CXfrwwZqPO7Y/TLx8CPeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDRCRnpQVUpkLXZEQm1vODd0ajlNdkh3STk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83ZDllMTAtMmMxOS00ZGQ4LWE4MGYt
NDBjODY5N2JiZGU5LzEvVDRCRnpQVUpkLXZEQm1vODd0ajlNdkh3STk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi83ZDllMTAtMmMxOS00ZGQ4LWE4MGYtNDBjODY5N2JiZGU5
LzEvVDRCRnpQVUpkLXZEQm1vODd0ajlNdkh3STk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU5KWPXqP
rxIdduDa7D3ICdifK7e1BI61v867aurCFMtWELDdvBsPXkOd8uejqHCPFEJHCzx6
DdETbr5jZNKGEWOWP3xmS21EiRhmYCdoWOHJEw53Wp34RxRIYR9cmHGg64XELkHM
qrHVU7snd50kHBQgzbDSxvCGAMR+ijgZ1kMnwWpgp9edctKWX+mkJca7hHumaUhw
L4k2FKHMbdP1btDHoaoUAZ1Av5lh8QDWOzVxq6NyAggBpXUdll5+us0vYnkwjMQl
Yf0ZtoUVe2mUzCVW0nSv7VcB85S3MKphdGqixwEZfSCRmfhPI+x642jmfFNln3y1
Mwwa/WDG8HmiBQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:03:43 2025 by rpki-client