Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
File: T5mJlOtWGejymrO956sq0U6r_P0.mft (raw, json)
Hash identifier: tPcHyPZkfKFxgtyerzApFrAjCHUBkIfgoGg7LMLqeiE=
Subject key identifier: 8C:4A:25:8F:D5:68:A6:08:EE:E3:5A:03:F1:6D:2A:C7:A1:B1:E8:44
Authority key identifier: 4F:99:89:94:EB:56:19:E8:F2:9A:B3:BD:E7:AB:2A:D1:4E:AB:FC:FD
Certificate issuer: /CN=4f998994eb5619e8f29ab3bde7ab2ad14eabfcfd
Certificate serial: 019A730164B5F515E7624BF7C3F57C04B48F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
Manifest number: 171B
Signing time: Tue 11 Nov 2025 13:01:02 +0000
Manifest this update: Tue 11 Nov 2025 13:01:02 +0000
Manifest next update: Wed 12 Nov 2025 13:01:02 +0000
Files and hashes: 1: T5mJlOtWGejymrO956sq0U6r_P0.crl (hash: jFHiEFZ9sQzi2VPTocjldWTva+6yevP9QDXAd32toag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:64:b5:f5:15:e7:62:4b:f7:c3:f5:7c:04:b4:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f998994eb5619e8f29ab3bde7ab2ad14eabfcfd
Validity
Not Before: Nov 11 13:01:02 2025 GMT
Not After : Nov 12 13:01:02 2025 GMT
Subject: CN=8c4a258fd568a608eee35a03f16d2ac7a1b1e844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d6:7e:59:af:90:87:f3:fb:6e:86:47:d6:56:
1f:4e:6d:d0:eb:b2:bf:a3:b7:13:4c:6d:f7:8e:9c:
98:1a:b8:ed:e3:5c:79:44:f8:9d:5c:3e:ff:c8:d3:
f1:c8:70:b0:d7:56:43:27:21:01:a8:9e:b5:7b:37:
27:0b:2b:39:72:c7:6d:f3:c6:17:cb:1f:9f:83:a2:
e0:6d:0f:94:6f:8f:52:1e:28:01:40:cd:c9:a9:9e:
ff:01:dc:94:75:f2:04:58:5e:d1:1a:48:39:b7:26:
4d:46:19:81:5d:27:fa:d4:07:5a:0d:87:0f:c4:b7:
64:3b:c6:9d:3b:dc:ba:8a:06:63:56:89:f8:e2:08:
6b:ae:c4:13:f2:c0:fe:cc:23:73:c7:b5:d4:5c:2e:
fe:1b:2c:d2:ab:ab:80:d1:ed:89:e1:70:c0:26:52:
1c:e1:00:48:16:d2:2a:a2:21:e3:42:78:da:67:92:
e9:06:f8:a3:62:ab:9f:aa:dc:e1:5a:57:5b:62:52:
71:07:11:cd:95:d5:9c:23:03:77:27:91:43:01:a5:
98:2a:f6:b2:43:26:11:c1:7c:28:f8:1f:5b:6c:dc:
d7:f2:dc:ec:3c:10:33:96:b0:2b:e5:17:9e:7a:ef:
99:2a:41:5e:10:77:0e:2f:94:10:0e:7c:b6:b5:aa:
ee:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:4A:25:8F:D5:68:A6:08:EE:E3:5A:03:F1:6D:2A:C7:A1:B1:E8:44
X509v3 Authority Key Identifier:
keyid:4F:99:89:94:EB:56:19:E8:F2:9A:B3:BD:E7:AB:2A:D1:4E:AB:FC:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:3b:40:87:39:36:ac:fe:d4:e0:29:42:35:b1:c0:70:1d:76:
36:22:7b:3b:32:d6:40:53:20:0a:3c:91:55:1b:94:b8:a5:7f:
be:91:d6:1d:2e:26:14:1a:a4:4e:4a:29:17:7c:51:65:ff:7e:
eb:94:fe:47:ee:7e:14:2f:16:8a:23:c1:8a:4b:3b:28:a9:74:
8d:ca:d6:0c:12:6f:b8:ff:43:8f:fe:5e:63:cb:61:a6:23:8d:
8b:21:39:b3:3a:0a:74:c3:f8:4e:99:2f:bb:47:1e:3f:0d:7e:
e9:d4:35:a0:71:20:e1:8f:61:8c:e8:e6:44:0b:1a:a2:ed:5e:
e9:a3:2d:f9:ec:a3:88:34:f6:cb:07:36:13:1c:f1:4b:0a:f4:
ae:30:14:70:c7:8a:d3:7b:c6:c0:c4:55:61:4d:e0:c0:e3:8f:
09:c9:57:86:d9:1b:a4:f2:49:08:2e:45:08:29:9c:40:1d:63:
e8:ae:23:20:85:d5:a5:aa:ba:be:73:35:fd:da:81:2e:57:6a:
8e:2e:e2:93:dc:fa:94:7e:bd:81:3a:2d:f2:e8:f6:94:11:a1:
4b:03:99:73:c5:e6:74:70:9f:63:17:e5:63:79:6f:ad:77:76:
7a:12:67:d4:23:93:49:35:01:37:c5:0b:38:1e:3c:49:57:85:
aa:23:d6:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 18:36:41 2025 by rpki-client