Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/fb93ea-6163-47ec-8bdc-63d90e664822/1/T_TbtnXuCOi72XQHoafv2RkZ5zg.mft
File: T_TbtnXuCOi72XQHoafv2RkZ5zg.mft (raw, json)
Hash identifier: 4bH9U/IJVtmufjFzEnFdK+U8nBYOVv5xQfQY1DjYhMI=
Subject key identifier: 46:FA:65:4E:C5:1F:A3:58:A1:80:D2:43:88:8C:B6:F1:47:DC:38:3B
Authority key identifier: 4F:F4:DB:B6:75:EE:08:E8:BB:D9:74:07:A1:A7:EF:D9:19:19:E7:38
Certificate issuer: /CN=4ff4dbb675ee08e8bbd97407a1a7efd91919e738
Certificate serial: 019A71B863CF56D7A4F0B724638B32CF1D13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T_TbtnXuCOi72XQHoafv2RkZ5zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/fb93ea-6163-47ec-8bdc-63d90e664822/1/T_TbtnXuCOi72XQHoafv2RkZ5zg.mft
Manifest number: 1035
Signing time: Tue 11 Nov 2025 07:01:40 +0000
Manifest this update: Tue 11 Nov 2025 07:01:40 +0000
Manifest next update: Wed 12 Nov 2025 07:01:40 +0000
Files and hashes: 1: T_TbtnXuCOi72XQHoafv2RkZ5zg.crl (hash: b3BoMZVJxnVNqOq/22qwBfHpAnxmq3o6d34yZiquQPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/fb93ea-6163-47ec-8bdc-63d90e664822/1/T_TbtnXuCOi72XQHoafv2RkZ5zg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/fb93ea-6163-47ec-8bdc-63d90e664822/1/T_TbtnXuCOi72XQHoafv2RkZ5zg.mft
rsync://rpki.ripe.net/repository/DEFAULT/T_TbtnXuCOi72XQHoafv2RkZ5zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:63:cf:56:d7:a4:f0:b7:24:63:8b:32:cf:1d:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ff4dbb675ee08e8bbd97407a1a7efd91919e738
Validity
Not Before: Nov 11 07:01:40 2025 GMT
Not After : Nov 12 07:01:40 2025 GMT
Subject: CN=46fa654ec51fa358a180d243888cb6f147dc383b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:35:02:2d:76:11:45:d3:6c:fa:17:08:4b:14:
d0:b4:d3:52:f4:49:d9:c9:18:7e:25:a7:df:b6:61:
42:21:5d:c6:bf:ff:f6:bd:29:4e:8a:2b:01:37:07:
65:4e:16:96:ef:22:e5:bd:6c:95:0a:4f:d9:d7:78:
15:c1:10:ff:7c:b5:58:6b:29:2e:c5:84:15:1d:ae:
77:44:14:40:7b:87:71:dd:93:f8:5b:d0:a1:1b:df:
70:73:76:5f:c3:13:50:a8:74:2a:79:9d:76:e9:b7:
b2:f2:86:38:cb:f7:c9:54:f9:af:83:0f:94:df:de:
52:e6:a8:4b:f9:ac:29:4c:7d:3b:6c:ba:4d:c4:42:
6e:66:72:7c:49:3c:4a:6c:08:c3:8a:e2:8f:6a:9a:
6e:eb:01:c8:9f:8e:7f:ca:40:eb:95:a5:77:45:4d:
0d:ca:1f:1c:65:be:5a:f3:78:7d:9d:ef:1e:42:6c:
89:d9:33:18:45:f1:e9:1c:7a:13:88:fd:0f:01:56:
3a:56:2a:0a:a8:40:82:f7:8e:7f:75:8f:75:98:ed:
53:30:b8:f4:b7:42:c5:86:03:e8:c3:c4:68:7f:36:
dc:a0:d7:97:3c:7f:9b:df:6d:4a:82:15:4b:be:17:
e1:4c:dd:8c:a5:f5:9f:56:de:35:36:29:a6:ab:d6:
b7:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:FA:65:4E:C5:1F:A3:58:A1:80:D2:43:88:8C:B6:F1:47:DC:38:3B
X509v3 Authority Key Identifier:
keyid:4F:F4:DB:B6:75:EE:08:E8:BB:D9:74:07:A1:A7:EF:D9:19:19:E7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T_TbtnXuCOi72XQHoafv2RkZ5zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fb93ea-6163-47ec-8bdc-63d90e664822/1/T_TbtnXuCOi72XQHoafv2RkZ5zg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fb93ea-6163-47ec-8bdc-63d90e664822/1/T_TbtnXuCOi72XQHoafv2RkZ5zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:0a:38:e1:1f:e5:ac:45:33:95:49:68:80:ef:b4:3e:29:d1:
66:5e:42:f8:fa:36:ff:d9:5f:9d:40:47:76:a8:0c:2b:3a:99:
f5:81:84:78:0c:74:0e:5b:8f:55:72:64:52:f4:57:3e:9e:ac:
4c:72:a6:a5:8c:32:0f:5f:0e:a8:0b:1a:55:e5:e9:ad:87:af:
f1:4c:be:bb:7e:68:b8:09:4b:fe:e4:e7:98:63:75:76:45:76:
37:4d:b1:31:dd:81:97:74:ca:ea:cf:54:41:3c:09:a4:18:d1:
63:15:2f:2f:7f:fb:e7:eb:bb:f9:b4:88:12:69:8c:b6:5e:84:
0c:72:40:b4:4d:fd:88:3e:cd:fc:0d:38:df:da:84:a9:b4:3c:
ae:36:28:3d:23:81:b7:ff:ea:f5:f5:64:5b:ec:15:d7:e5:85:
cc:7d:55:e0:ed:55:1a:1b:96:65:f9:c7:26:47:e4:97:09:99:
70:76:8a:f6:17:97:15:ca:5f:4d:5b:2a:70:d5:b8:0d:ab:6e:
ba:a5:0b:5c:92:21:de:ee:30:4d:03:19:cb:fc:5e:40:e5:7f:
f7:34:3f:30:2e:7a:ef:4f:cb:20:6e:7a:9f:7a:da:77:e3:70:
4a:c7:d8:a3:be:eb:22:74:81:32:04:1f:77:02:02:d3:a5:ea:
fb:24:bc:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuGPPVtek8LckY4syzx0TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmZjRkYmI2NzVlZTA4ZThiYmQ5NzQwN2ExYTdlZmQ5MTkx
OWU3MzgwHhcNMjUxMTExMDcwMTQwWhcNMjUxMTEyMDcwMTQwWjAzMTEwLwYDVQQD
Eyg0NmZhNjU0ZWM1MWZhMzU4YTE4MGQyNDM4ODhjYjZmMTQ3ZGMzODNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojUCLXYRRdNs+hcISxTQtNNS9EnZ
yRh+JafftmFCIV3Gv//2vSlOiisBNwdlThaW7yLlvWyVCk/Z13gVwRD/fLVYayku
xYQVHa53RBRAe4dx3ZP4W9ChG99wc3ZfwxNQqHQqeZ126bey8oY4y/fJVPmvgw+U
395S5qhL+awpTH07bLpNxEJuZnJ8STxKbAjDiuKPappu6wHIn45/ykDrlaV3RU0N
yh8cZb5a83h9ne8eQmyJ2TMYRfHpHHoTiP0PAVY6VioKqECC945/dY91mO1TMLj0
t0LFhgPow8RofzbcoNeXPH+b321KghVLvhfhTN2MpfWfVt41Nimmq9a3GQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEb6ZU7FH6NYoYDSQ4iMtvFH3Dg7MB8GA1UdIwQY
MBaAFE/027Z17gjou9l0B6Gn79kZGec4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVF9UYnRuWHVDT2k3MlhRSG9hZnYyUmtaNXpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9mYjkzZWEtNjE2My00N2VjLThiZGMt
NjNkOTBlNjY0ODIyLzEvVF9UYnRuWHVDT2k3MlhRSG9hZnYyUmtaNXpnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC9mYjkzZWEtNjE2My00N2VjLThiZGMtNjNkOTBlNjY0ODIy
LzEvVF9UYnRuWHVDT2k3MlhRSG9hZnYyUmtaNXpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASgo44R/l
rEUzlUlogO+0PinRZl5C+Po2/9lfnUBHdqgMKzqZ9YGEeAx0DluPVXJkUvRXPp6s
THKmpYwyD18OqAsaVeXprYev8Uy+u35ouAlL/uTnmGN1dkV2N02xMd2Bl3TK6s9U
QTwJpBjRYxUvL3/75+u7+bSIEmmMtl6EDHJAtE39iD7N/A0439qEqbQ8rjYoPSOB
t//q9fVkW+wV1+WFzH1V4O1VGhuWZfnHJkfklwmZcHaK9heXFcpfTVsqcNW4Datu
uqULXJIh3u4wTQMZy/xeQOV/9zQ/MC5670/LIG56n3rad+NwSsfYo77rInSBMgQf
dwIC06Xq+yS8Xg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:35:03 2025 by rpki-client