Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.mft
File: TNN3vorxFHipq-Jx-L3i3j0zNAg.mft (raw, json)
Hash identifier: so/A2VOYnbGLakUoZKu75nI1AkJsyh7V3hju4mRyLR0=
Subject key identifier: F8:57:54:9F:BD:2B:36:66:65:91:96:23:FC:31:84:80:45:70:D3:EC
Authority key identifier: 4C:D3:77:BE:8A:F1:14:78:A9:AB:E2:71:F8:BD:E2:DE:3D:33:34:08
Certificate issuer: /CN=4cd377be8af11478a9abe271f8bde2de3d333408
Certificate serial: 019A7225BA21712318FDE20A04077F3328B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TNN3vorxFHipq-Jx-L3i3j0zNAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.mft
Manifest number: 096F
Signing time: Tue 11 Nov 2025 09:01:06 +0000
Manifest this update: Tue 11 Nov 2025 09:01:06 +0000
Manifest next update: Wed 12 Nov 2025 09:01:06 +0000
Files and hashes: 1: TNN3vorxFHipq-Jx-L3i3j0zNAg.crl (hash: V3UVzyKYs5/AmXhBxlIUZLMVmzpmpGzM+uW3Q75N950=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/TNN3vorxFHipq-Jx-L3i3j0zNAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:ba:21:71:23:18:fd:e2:0a:04:07:7f:33:28:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cd377be8af11478a9abe271f8bde2de3d333408
Validity
Not Before: Nov 11 09:01:06 2025 GMT
Not After : Nov 12 09:01:06 2025 GMT
Subject: CN=f857549fbd2b366665919623fc3184804570d3ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:38:11:50:b3:ee:99:d7:d9:82:be:01:e3:28:
43:05:4f:bc:05:4e:50:ff:c0:cd:2e:21:d4:c0:01:
ba:12:d7:c1:a8:ac:62:4c:3a:18:3d:19:05:59:4e:
23:fb:04:15:de:5a:7a:46:73:b1:c6:c1:c8:dd:95:
e7:28:c6:c7:19:15:db:f9:0a:f9:8e:e5:5d:6f:fb:
17:ad:9d:63:82:e9:03:b0:b3:7f:1b:80:85:07:31:
54:c3:ba:00:62:6c:3d:ee:64:e0:1a:e1:dd:a0:a1:
69:87:cc:0f:e9:32:8a:c0:ba:02:ff:43:d7:ef:55:
18:60:ae:00:5e:fd:5d:d1:1f:64:48:7e:8f:1e:f7:
07:3d:86:f5:91:62:64:1c:5b:9c:4b:55:9e:9b:3b:
54:c1:0f:d1:44:02:c8:a7:7b:5c:e5:a2:48:99:f6:
e9:89:1c:90:54:fc:8d:b5:63:cb:e6:72:18:37:d2:
e6:db:7c:f8:42:83:34:62:6a:a3:3f:ed:c4:fd:b3:
51:d4:82:e3:98:f8:d2:30:ac:cd:12:6d:7c:b3:55:
11:05:0f:66:d3:c0:55:23:f2:43:eb:63:0b:cb:45:
50:be:5e:ff:69:3a:9e:79:5c:19:28:fc:50:61:ce:
74:44:ba:0b:c4:d4:6b:d1:7e:62:56:a3:ba:79:26:
59:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:57:54:9F:BD:2B:36:66:65:91:96:23:FC:31:84:80:45:70:D3:EC
X509v3 Authority Key Identifier:
keyid:4C:D3:77:BE:8A:F1:14:78:A9:AB:E2:71:F8:BD:E2:DE:3D:33:34:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNN3vorxFHipq-Jx-L3i3j0zNAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:f3:4f:b1:27:a0:f4:2b:36:0b:10:f2:2c:8a:b3:d7:89:32:
db:cb:bf:7e:ae:04:d0:e1:8d:95:4f:92:61:c8:ca:34:3b:70:
d9:8c:a9:77:7c:81:88:86:88:03:83:f0:78:ab:43:6e:87:bb:
3e:b3:61:9b:cd:50:1c:29:2a:af:bf:ae:7e:ac:f5:b4:42:5c:
32:b5:3f:7f:bf:81:33:3a:e0:5d:fe:70:01:fd:12:d6:7f:b1:
6f:5d:5f:fc:3e:96:56:d8:f9:b0:3f:22:b8:4f:4a:e7:1f:02:
12:2b:23:f3:50:81:6c:bc:54:54:d7:c4:67:7c:71:ad:f8:de:
20:a7:c3:e1:52:fc:9b:8c:f5:52:cc:5b:89:ff:dc:6b:55:cb:
a9:b4:48:77:72:2c:39:01:f8:fb:3c:52:ef:77:97:6e:f0:47:
c9:05:6b:59:39:b9:a8:8c:6d:c2:24:74:1b:40:93:c7:1a:54:
1b:c1:68:bd:6d:9a:26:eb:91:ce:b5:c7:fe:53:59:72:6b:4e:
ac:d5:4c:3d:36:26:65:11:cb:57:92:92:80:85:36:04:82:4d:
31:93:ad:be:a2:23:df:b9:9e:ce:49:4a:f9:36:42:00:02:2e:
d6:1e:2d:8c:65:4c:12:60:2f:96:7f:be:50:02:fd:3e:b4:1b:
ed:97:c1:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:16:12 2025 by rpki-client