Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.mft
File: _4MmzOvF_DL70ONP7n85u6iPuaI.mft (raw, json)
Hash identifier: HpJ8pUgfonqu3MBkrMtWj396111Ocad7t655ymMxPWk=
Subject key identifier: 01:A3:AD:F8:E3:8B:3E:AE:90:CE:99:FE:81:5F:7C:7E:03:8C:BF:A1
Authority key identifier: FF:83:26:CC:EB:C5:FC:32:FB:D0:E3:4F:EE:7F:39:BB:A8:8F:B9:A2
Certificate issuer: /CN=ff8326ccebc5fc32fbd0e34fee7f39bba88fb9a2
Certificate serial: 019A729327999FE5F83A1A8F2E0D9F2F3BD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4MmzOvF_DL70ONP7n85u6iPuaI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.mft
Manifest number: 129F
Signing time: Tue 11 Nov 2025 11:00:37 +0000
Manifest this update: Tue 11 Nov 2025 11:00:37 +0000
Manifest next update: Wed 12 Nov 2025 11:00:37 +0000
Files and hashes: 1: _4MmzOvF_DL70ONP7n85u6iPuaI.crl (hash: G11FFrxTJ1/SYUhIIRF1p0rU4BufZVvKTivOfrp1NOs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.mft
rsync://rpki.ripe.net/repository/DEFAULT/_4MmzOvF_DL70ONP7n85u6iPuaI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:27:99:9f:e5:f8:3a:1a:8f:2e:0d:9f:2f:3b:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff8326ccebc5fc32fbd0e34fee7f39bba88fb9a2
Validity
Not Before: Nov 11 11:00:37 2025 GMT
Not After : Nov 12 11:00:37 2025 GMT
Subject: CN=01a3adf8e38b3eae90ce99fe815f7c7e038cbfa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8d:6a:4f:8f:75:e1:70:68:ef:76:6a:d2:e2:
b1:85:06:e9:34:c5:1f:ab:de:cb:28:ae:83:d9:6a:
89:bb:57:d2:5f:95:bd:18:4f:9a:fc:0a:87:0d:85:
f4:85:44:b3:3f:5f:57:87:24:99:c6:c5:08:05:11:
9e:6f:ab:d4:bd:28:7c:7a:18:3c:42:f5:be:6d:75:
51:7e:45:41:63:87:74:3c:b8:18:aa:d2:4e:d3:1c:
8c:86:7a:d6:e7:e0:ae:f4:95:28:26:9b:1a:7e:62:
d8:3e:6b:46:8b:2f:52:c6:ec:b9:f3:12:f9:cc:4e:
35:a7:d7:11:33:04:bc:be:3a:cd:20:32:27:38:a8:
8c:96:b8:61:5c:32:33:0d:39:90:87:fb:76:43:55:
14:01:7a:f2:17:79:dd:20:ab:8c:2b:0b:e7:a6:0a:
ee:0a:69:e9:91:91:ed:62:a8:dd:4b:9d:06:39:b2:
06:78:d7:8e:a8:19:ab:0f:b8:52:b2:cd:68:99:c0:
fd:20:7c:b1:7e:cd:6b:c1:71:f9:8e:95:71:17:82:
98:80:1e:fc:4f:4b:96:a5:6d:70:32:6f:b2:91:97:
e7:b0:ff:bd:1d:8a:c1:b4:18:f8:de:10:8a:87:d8:
5b:13:a2:1d:f8:42:86:92:2c:60:2d:d9:18:20:10:
dd:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A3:AD:F8:E3:8B:3E:AE:90:CE:99:FE:81:5F:7C:7E:03:8C:BF:A1
X509v3 Authority Key Identifier:
keyid:FF:83:26:CC:EB:C5:FC:32:FB:D0:E3:4F:EE:7F:39:BB:A8:8F:B9:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4MmzOvF_DL70ONP7n85u6iPuaI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:82:e6:2d:e3:d5:14:87:f4:5d:5d:a7:ac:2d:b1:06:f5:71:
d6:07:29:92:43:1c:2c:91:e7:8f:84:00:b0:c7:06:62:c0:7a:
6e:e7:38:c1:1f:8a:de:a9:9c:08:2e:a4:15:d2:0e:01:d5:52:
05:58:f7:42:87:db:09:75:60:2f:ac:d4:1d:6e:01:78:8a:f8:
08:1d:8a:7e:01:bf:1b:18:59:7f:48:9a:fe:f1:14:49:3b:dc:
32:ba:f2:e6:b7:96:e6:42:82:e5:8d:89:1d:cb:6b:32:c3:83:
24:e8:e1:d2:f9:87:3b:b7:16:4f:2e:5c:c9:6b:bf:a0:ca:2f:
7f:e1:89:24:d4:ae:81:4a:52:84:66:32:e7:72:13:37:e6:8e:
dc:6a:02:3a:19:70:1f:e0:c2:f5:e3:cc:8d:89:3c:3c:1e:fc:
9f:61:91:a6:29:df:7d:70:7a:ee:2f:4d:a4:9e:97:e2:5f:44:
90:d1:a0:0b:3e:58:62:2c:f8:bf:61:90:17:bc:9e:ca:3b:8c:
6d:d4:e9:24:15:a4:b1:85:10:1e:31:24:e4:a7:68:39:0e:39:
23:fe:ea:47:81:34:93:85:a8:97:df:5e:f3:d2:be:ca:11:6c:
27:48:b7:6e:b4:7f:66:24:ff:1c:ac:6d:bc:9d:34:b3:18:96:
1d:cb:56:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:17:17 2025 by rpki-client