Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
File: T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft (raw, json)
Hash identifier: /zBn7NzaXzcIEiW58h3Oee/xNaj6HBNiU/0/ihqY2uc=
Subject key identifier: 8E:85:5B:B1:D2:CD:A7:6D:AE:37:F4:59:7D:E5:B6:FB:50:5E:26:F3
Authority key identifier: 4F:50:A0:DC:C7:1C:42:92:3E:40:70:11:BD:21:2A:FA:5C:62:E5:9D
Certificate issuer: /CN=4f50a0dcc71c42923e407011bd212afa5c62e59d
Certificate serial: 01992CA1D8029E6B441EFFB3D815D21A6C16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T1Cg3MccQpI-QHARvSEq-lxi5Z0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
Manifest number: 07C0
Signing time: Tue 09 Sep 2025 04:00:27 +0000
Manifest this update: Tue 09 Sep 2025 04:00:27 +0000
Manifest next update: Wed 10 Sep 2025 04:00:27 +0000
Files and hashes: 1: O4ZnlVhhx3zd5V2McWkK5lXbTfU.roa (hash: 1/S6pfTZfcr0nY65o+eT5Gg2Gukw2uRx/s1OdeKWKmE=)
2: T1Cg3MccQpI-QHARvSEq-lxi5Z0.crl (hash: aA0afKgJLLtvWUDQNWlz5uYuxTCix2X0KrXDtSLxedU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
rsync://rpki.ripe.net/repository/DEFAULT/T1Cg3MccQpI-QHARvSEq-lxi5Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 04:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2c:a1:d8:02:9e:6b:44:1e:ff:b3:d8:15:d2:1a:6c:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f50a0dcc71c42923e407011bd212afa5c62e59d
Validity
Not Before: Sep 9 04:00:27 2025 GMT
Not After : Sep 10 04:00:27 2025 GMT
Subject: CN=8e855bb1d2cda76dae37f4597de5b6fb505e26f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1a:5a:00:2f:98:6c:91:50:b0:cc:e1:5b:66:
d3:ca:2d:13:7d:3b:bc:aa:fa:9b:5c:c8:ab:1c:cf:
67:35:bf:6b:7e:48:41:5f:ec:d7:3c:be:4c:85:c4:
9f:00:fb:20:20:82:04:9a:9c:56:65:9e:ed:5c:9a:
23:ca:7e:8c:eb:06:27:f7:fa:20:a4:45:e8:83:6f:
8c:2b:65:60:5a:26:cf:23:5d:89:e8:56:df:56:42:
d3:20:aa:d0:18:73:da:2a:4f:65:e8:29:cc:c4:ea:
74:f0:cd:9a:b9:39:08:6f:82:3a:70:1c:eb:2a:1c:
68:6d:7d:0e:d4:34:fb:1a:fd:3c:40:e3:5e:e3:0f:
b8:9a:cc:10:05:f0:46:e5:ea:3a:48:c7:4c:31:86:
30:dc:01:2c:92:63:22:d6:f2:57:7e:4a:21:5e:2a:
b4:23:77:5e:72:71:36:82:20:32:8b:96:30:7d:0e:
73:43:73:f5:a0:6a:a9:dd:da:87:c4:74:57:71:62:
90:75:c5:ca:e5:0b:2e:5b:64:f9:29:2e:67:d9:4d:
68:8d:66:45:04:46:a9:32:d7:95:1f:ef:0d:96:11:
1b:e7:c8:7b:54:d0:67:50:94:b6:f5:7e:2c:be:6c:
46:16:01:02:cd:43:27:03:cb:6c:3c:43:61:36:09:
e5:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:85:5B:B1:D2:CD:A7:6D:AE:37:F4:59:7D:E5:B6:FB:50:5E:26:F3
X509v3 Authority Key Identifier:
keyid:4F:50:A0:DC:C7:1C:42:92:3E:40:70:11:BD:21:2A:FA:5C:62:E5:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T1Cg3MccQpI-QHARvSEq-lxi5Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:de:b3:7a:40:3f:73:a5:fd:c9:c7:d0:f7:79:c6:c0:7d:69:
b1:68:a0:6f:b9:28:05:3e:7a:6b:4d:c7:45:4d:2b:7e:48:cd:
b9:a4:93:7e:7a:3b:d4:79:35:e0:b4:61:55:d0:ed:67:ef:20:
98:a7:9c:51:f3:5a:1c:9c:f2:d6:3f:5c:ef:21:cb:0c:bf:5e:
ca:2f:01:12:b3:ea:20:38:dc:90:2d:f8:5f:c7:45:50:61:55:
2d:15:0a:66:f4:dc:00:a1:89:88:0f:ce:19:28:94:80:ea:d5:
78:b4:50:83:59:83:85:97:cf:4d:1b:dc:66:c3:28:30:d9:c9:
49:57:f1:a5:df:24:85:fc:70:15:b6:c2:78:74:ad:1f:62:ab:
8a:8f:47:5c:62:00:49:5c:79:7d:90:0b:71:4c:b3:4d:03:45:
ea:27:bf:b4:72:28:c0:9c:8d:4e:6a:bf:f0:8a:c2:89:c6:9a:
88:0a:75:13:7b:c4:f9:65:7f:9d:a4:08:26:86:b0:a2:7b:b7:
f6:87:da:15:94:62:c9:cc:5a:98:08:d0:36:7d:82:d7:3d:c1:
c7:bd:e2:2e:16:0e:d7:21:d3:fe:fe:1c:f0:34:94:b1:41:f4:
e8:28:e4:1a:77:07:1e:16:53:f1:42:c6:e1:1f:6c:b8:0a:68:
48:22:02:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 09:48:01 2025 by rpki-client