Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.mft
File: 4T3UuB8fx53U2mQo-cKgJzRX_wY.mft (raw, json)
Hash identifier: sDFSfTtC0QSEaOYHkmYPT20QuMcJODw8zH8H2KXPx90=
Subject key identifier: 7A:E4:53:1C:97:BC:5D:F6:9D:BD:CE:DC:00:5B:9F:51:15:65:89:AF
Authority key identifier: E1:3D:D4:B8:1F:1F:C7:9D:D4:DA:64:28:F9:C2:A0:27:34:57:FF:06
Certificate issuer: /CN=e13dd4b81f1fc79dd4da6428f9c2a0273457ff06
Certificate serial: 019A7112C5FE7130C88A2C5182D44B692BF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4T3UuB8fx53U2mQo-cKgJzRX_wY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.mft
Manifest number: 0598
Signing time: Tue 11 Nov 2025 04:00:46 +0000
Manifest this update: Tue 11 Nov 2025 04:00:46 +0000
Manifest next update: Wed 12 Nov 2025 04:00:46 +0000
Files and hashes: 1: 4T3UuB8fx53U2mQo-cKgJzRX_wY.crl (hash: Fi4BIwjwW1wUgyEOT1/a7l8Bo/1JYlxdE2qp2hC8FT0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4T3UuB8fx53U2mQo-cKgJzRX_wY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:c5:fe:71:30:c8:8a:2c:51:82:d4:4b:69:2b:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e13dd4b81f1fc79dd4da6428f9c2a0273457ff06
Validity
Not Before: Nov 11 04:00:46 2025 GMT
Not After : Nov 12 04:00:46 2025 GMT
Subject: CN=7ae4531c97bc5df69dbdcedc005b9f51156589af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e3:42:a4:0f:88:79:90:a7:fa:64:21:9d:97:
97:37:6d:b4:f3:e6:1f:78:b2:ff:00:28:b3:42:1a:
9d:7f:7c:c5:a0:a5:cf:31:31:4a:ba:05:08:eb:b0:
5d:13:f8:80:51:1c:dd:79:34:1d:8a:4d:54:35:04:
9d:ba:3c:78:6e:42:79:54:bf:81:b5:9e:55:79:06:
2b:8e:3b:04:97:a8:f5:4c:10:80:ff:ef:fb:a8:bc:
58:7c:ae:48:7e:05:fe:c7:3a:f1:dd:e4:02:83:47:
7b:c1:23:a0:cf:57:28:38:f9:dd:e9:16:81:fb:1d:
49:ea:bf:83:31:37:2f:70:39:1b:13:0b:7a:2f:56:
7a:e6:b9:fc:ba:d3:ca:0e:ff:c7:5d:62:1a:0b:06:
57:f7:4d:25:60:39:f7:2f:ca:49:c4:15:f3:e9:ec:
df:6f:16:c4:db:ce:7d:e4:e7:19:0e:d8:62:5a:bc:
e0:4c:0c:81:79:28:41:66:1e:fc:e7:44:a1:0b:45:
16:e1:c9:7b:13:d1:70:38:aa:c4:7e:74:76:1f:95:
1f:e5:7e:e8:25:04:eb:ba:a5:3f:5d:05:82:bb:f1:
9d:a7:b8:63:2f:35:53:bb:ee:5a:44:36:95:8a:0b:
86:8d:a0:da:8a:e0:2b:97:41:d7:0f:d5:b2:f7:90:
ce:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:E4:53:1C:97:BC:5D:F6:9D:BD:CE:DC:00:5B:9F:51:15:65:89:AF
X509v3 Authority Key Identifier:
keyid:E1:3D:D4:B8:1F:1F:C7:9D:D4:DA:64:28:F9:C2:A0:27:34:57:FF:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4T3UuB8fx53U2mQo-cKgJzRX_wY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:23:43:99:75:9a:b5:a4:7c:16:2b:33:27:1d:1a:fc:37:8c:
29:ba:41:9b:4d:88:ab:e7:01:10:f2:ad:81:43:68:09:2e:b1:
e7:ca:1f:31:3e:cc:29:ca:3d:ea:21:40:ff:a4:90:9e:75:0c:
18:24:c1:cb:3f:fd:ad:a6:a2:63:04:b9:31:fe:cc:53:6e:ca:
04:85:4b:56:db:11:bf:a2:a1:b2:b1:6d:ea:f9:fb:1c:d8:bd:
f3:53:cb:8e:78:d3:fd:d5:02:44:5d:4f:cc:51:be:3b:46:b7:
59:3e:43:00:3a:40:e1:ba:7c:d6:0d:92:e5:a8:ee:a8:e2:cd:
28:a9:5a:d9:96:66:17:ec:a4:14:4b:60:fb:96:b7:d6:bb:95:
eb:de:09:74:5d:cc:c9:b9:21:c1:80:28:00:9b:b9:10:53:9a:
3e:2b:e0:c5:a7:4d:3c:1d:16:92:cd:89:1a:ee:59:7b:1e:85:
48:b8:93:0e:0a:38:ef:ff:51:c7:d7:14:80:2f:c7:70:d9:cf:
3c:84:e3:a9:d0:ae:08:70:d1:8e:b8:33:98:04:87:4e:cb:30:
b8:80:7c:49:c7:99:58:77:5c:08:b6:f1:15:5b:31:2a:3f:27:
56:be:a5:7d:65:04:92:8b:5d:11:bc:be:fd:5b:bd:9e:fe:a5:
bf:3d:90:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:16 2025 by rpki-client