Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
File: T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft (raw, json)
Hash identifier: +qLhtkTQS7/qIkCUIMAt3/G1B8wIdKlxvdvv6EgP7lI=
Subject key identifier: C7:98:04:6A:09:00:0E:88:50:65:23:AA:1B:DA:C4:6C:18:35:4E:60
Authority key identifier: 4F:50:A0:DC:C7:1C:42:92:3E:40:70:11:BD:21:2A:FA:5C:62:E5:9D
Certificate issuer: /CN=4f50a0dcc71c42923e407011bd212afa5c62e59d
Certificate serial: 019A21E53C3403B70BFF757569BBF5732FBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T1Cg3MccQpI-QHARvSEq-lxi5Z0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
Manifest number: 083F
Signing time: Sun 26 Oct 2025 19:01:02 +0000
Manifest this update: Sun 26 Oct 2025 19:01:02 +0000
Manifest next update: Mon 27 Oct 2025 19:01:02 +0000
Files and hashes: 1: O4ZnlVhhx3zd5V2McWkK5lXbTfU.roa (hash: 1/S6pfTZfcr0nY65o+eT5Gg2Gukw2uRx/s1OdeKWKmE=)
2: T1Cg3MccQpI-QHARvSEq-lxi5Z0.crl (hash: SvjVQ2wxklZ1Tk05gK4ZZBvkK9ao1G7kr9fHXeZwLlk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
rsync://rpki.ripe.net/repository/DEFAULT/T1Cg3MccQpI-QHARvSEq-lxi5Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:e5:3c:34:03:b7:0b:ff:75:75:69:bb:f5:73:2f:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f50a0dcc71c42923e407011bd212afa5c62e59d
Validity
Not Before: Oct 26 19:01:02 2025 GMT
Not After : Oct 27 19:01:02 2025 GMT
Subject: CN=c798046a09000e88506523aa1bdac46c18354e60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:07:37:da:fd:a9:22:3d:83:2f:75:84:3c:de:
c3:59:ff:b8:fe:d9:a6:80:e5:24:f4:c1:50:9b:1c:
cc:fe:de:4a:c6:35:b8:58:d2:3f:d2:9b:ce:1a:77:
78:37:79:bf:50:20:4e:3a:5e:5b:00:40:0e:c7:19:
07:d5:97:2a:74:26:4c:2a:08:9f:fc:40:d8:7d:3c:
98:cf:5e:30:dd:55:17:4a:4b:85:e3:ab:34:03:8b:
d7:d4:54:04:39:34:1f:75:84:c5:76:e4:4c:66:29:
af:4e:ef:bf:c2:65:3a:96:4d:68:c9:20:34:8d:e7:
76:45:16:c7:55:b8:7d:c0:ee:a0:57:e9:b3:de:3f:
f2:e1:c8:56:23:c7:00:40:10:50:5c:4f:09:08:81:
be:b9:71:28:43:18:f0:07:f1:33:e4:50:19:2f:09:
f3:29:a6:b1:b2:ec:9b:55:3b:14:c3:8a:93:7c:45:
c7:57:25:8b:64:a3:cf:a9:d9:b1:e5:0d:53:86:d5:
ae:56:db:a6:eb:af:b9:0a:4c:34:aa:22:74:09:20:
49:06:93:6b:40:a7:ac:e1:cc:ee:b3:7c:bd:66:ab:
52:4a:d4:d8:00:e6:d9:7e:21:fb:00:15:09:9b:91:
37:c3:dc:bf:1b:bd:3b:5c:51:0f:64:19:53:16:5e:
a6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:98:04:6A:09:00:0E:88:50:65:23:AA:1B:DA:C4:6C:18:35:4E:60
X509v3 Authority Key Identifier:
keyid:4F:50:A0:DC:C7:1C:42:92:3E:40:70:11:BD:21:2A:FA:5C:62:E5:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T1Cg3MccQpI-QHARvSEq-lxi5Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:06:d3:a5:22:60:7b:e5:e2:b6:0b:5f:8d:7a:8f:f9:81:f9:
e1:0c:ae:57:de:e2:5f:74:1d:13:ee:dd:e9:57:fd:00:87:1c:
5c:44:18:c0:43:39:d3:9d:25:ca:f6:c8:67:a4:02:d8:60:be:
ed:f1:aa:89:12:46:27:4f:5e:88:fd:f1:66:4d:fa:b1:8f:99:
26:39:05:e7:69:bf:bb:5e:bd:7a:65:49:a9:2e:76:4f:da:57:
bd:33:e4:80:b4:8a:b5:1e:8e:71:61:0d:a7:05:4b:37:e5:58:
1a:2a:9d:4b:f0:fa:20:4c:e8:04:34:00:ba:3a:22:50:de:a0:
21:d2:32:60:88:28:71:76:61:f3:10:d1:38:04:3e:a5:57:5c:
71:67:31:2a:67:31:f7:1e:a3:0a:f9:f1:d5:b5:b8:d1:45:b5:
20:f3:32:f8:30:96:4d:e5:34:85:19:62:b8:5f:63:d3:79:1a:
a7:ab:a1:1f:01:e4:87:f4:e9:51:0d:55:1e:9f:82:b3:70:2a:
02:dc:c9:be:6a:6c:7f:1c:f7:f6:5a:b7:6c:26:c1:9e:a5:47:
c1:c8:6e:c6:8f:ab:51:aa:00:56:89:b6:e6:db:00:f2:67:8f:
ef:9b:2d:2a:67:c6:40:9b:0a:c4:65:c8:c4:c0:65:81:84:c2:
cf:29:cb:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 01:31:56 2025 by rpki-client