Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
File: TvMzZvDPXk-oBO730eKSlO6lFIw.mft (raw, json)
Hash identifier: yl5AmQdsZY7763uqbpOfBhsuknrna2gMH4pG3S5KWf8=
Subject key identifier: 48:90:DC:66:A0:94:97:C4:69:E1:C6:C6:9F:20:C6:B4:B2:A3:81:4F
Authority key identifier: 4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
Certificate issuer: /CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Certificate serial: 019A7149ED2515922BFEC9C21B5F174CCFED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
Manifest number: 03B8
Signing time: Tue 11 Nov 2025 05:01:01 +0000
Manifest this update: Tue 11 Nov 2025 05:01:01 +0000
Manifest next update: Wed 12 Nov 2025 05:01:01 +0000
Files and hashes: 1: TvMzZvDPXk-oBO730eKSlO6lFIw.crl (hash: oriJ7F0hWsBFSHmcNoPK2YFKR8eVKsnxi2yZ5E0gUnY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:ed:25:15:92:2b:fe:c9:c2:1b:5f:17:4c:cf:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Validity
Not Before: Nov 11 05:01:01 2025 GMT
Not After : Nov 12 05:01:01 2025 GMT
Subject: CN=4890dc66a09497c469e1c6c69f20c6b4b2a3814f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c9:99:04:09:be:50:e6:03:2c:fc:16:70:3b:
fd:5e:07:45:a7:38:39:4f:f6:4c:07:c6:ce:b7:2c:
05:32:d9:cd:ae:39:da:77:da:f8:73:cd:af:ed:2f:
c2:c6:2b:d5:02:b3:e5:4a:68:b3:4f:eb:8a:7a:6a:
24:bb:ec:21:a1:64:73:ad:f2:8d:4f:06:e5:01:a2:
62:3b:4e:17:d9:bf:0d:5b:34:dd:3f:e2:4b:1c:75:
bf:3f:c0:63:b1:76:33:50:38:a1:82:82:4d:56:39:
6a:25:73:10:48:0f:2d:c3:13:6e:07:52:7c:a2:63:
2b:c5:5d:1c:04:fc:14:93:a1:72:3c:2f:3a:fe:57:
27:99:ad:43:38:1e:35:aa:87:76:93:e0:55:75:0b:
ea:50:ff:a0:20:b3:81:b0:a7:1d:b0:14:75:22:2c:
65:82:fa:b8:54:67:33:e0:c0:8b:a5:88:e5:d1:96:
32:56:4a:5c:4d:52:89:48:f8:e0:f9:d9:01:14:1d:
67:00:f5:34:05:66:63:a9:33:a6:f6:55:ae:13:ff:
a0:40:88:e4:98:4f:7c:5b:e3:4a:6d:56:b8:e5:43:
ce:0e:a8:c3:4f:94:7f:75:f4:d0:0a:9b:8b:90:24:
98:77:fe:0a:9c:79:c0:81:ba:06:5a:30:d8:f1:55:
c2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:90:DC:66:A0:94:97:C4:69:E1:C6:C6:9F:20:C6:B4:B2:A3:81:4F
X509v3 Authority Key Identifier:
keyid:4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:ff:b1:a9:55:e9:2d:36:01:56:ac:d6:07:86:01:21:da:24:
52:d0:bc:f2:be:3a:c5:da:02:ac:e4:0f:51:16:6c:56:b9:1c:
f4:3c:dd:c6:af:7e:37:32:23:de:d7:48:b0:34:ce:55:d5:de:
00:26:b4:b3:b4:b9:a4:45:fe:c2:4e:9b:7e:61:3d:49:e5:01:
ef:32:e4:65:01:a3:ca:95:11:80:b2:38:c5:d6:12:c5:b9:e2:
5f:62:4f:85:50:f6:ba:f2:99:fa:91:f0:d4:c7:a5:2e:5d:5c:
c6:5a:53:de:96:df:c6:2d:98:99:87:82:b6:15:e8:52:1f:ef:
be:16:e6:b4:aa:20:db:7a:0a:5c:8a:0c:8f:0a:b6:b2:4e:07:
ae:38:6d:39:87:8f:f2:29:54:f4:fe:d6:de:0f:bc:5e:d7:d6:
c8:15:2e:8c:83:89:c4:15:e9:c1:48:8d:72:6d:d6:13:24:13:
a7:7d:d7:d8:c0:82:35:6b:e2:69:65:d3:e1:9c:79:2a:df:40:
1f:ee:c2:78:33:af:31:b0:2a:7c:7d:ef:cd:85:1f:d6:f1:e4:
1e:c2:ec:9b:f0:4a:e0:14:38:ab:f0:83:4e:bc:a0:ac:79:9b:
7d:07:d7:c5:12:4e:d5:7b:95:09:38:0a:ba:d9:82:2d:74:1f:
8f:f2:01:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:39:07 2025 by rpki-client