Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
File: r4poziKkwZ8XcA9izPi7bC2vUeE.mft (raw, json)
Hash identifier: mamnKYXcfbE96BOk9khTKjXFkHlbvCiaGrq1yKBlMz0=
Subject key identifier: 9C:7C:0A:09:0B:0C:B2:71:4C:CD:7A:48:77:5C:71:A2:08:04:39:3B
Authority key identifier: AF:8A:68:CE:22:A4:C1:9F:17:70:0F:62:CC:F8:BB:6C:2D:AF:51:E1
Certificate issuer: /CN=af8a68ce22a4c19f17700f62ccf8bb6c2daf51e1
Certificate serial: 019A4DE18C936D38EE1BDAB82237FD5D51D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
Manifest number: 1088
Signing time: Tue 04 Nov 2025 08:00:18 +0000
Manifest this update: Tue 04 Nov 2025 08:00:18 +0000
Manifest next update: Wed 05 Nov 2025 08:00:18 +0000
Files and hashes: 1: r4poziKkwZ8XcA9izPi7bC2vUeE.crl (hash: zwcHWymciTJXQyhb3RYQ+O/W6xIAh1JFJEGhbo46+gc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:8c:93:6d:38:ee:1b:da:b8:22:37:fd:5d:51:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af8a68ce22a4c19f17700f62ccf8bb6c2daf51e1
Validity
Not Before: Nov 4 08:00:18 2025 GMT
Not After : Nov 5 08:00:18 2025 GMT
Subject: CN=9c7c0a090b0cb2714ccd7a48775c71a20804393b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:98:64:b3:be:1e:61:d9:66:c9:30:df:d0:2c:
69:43:cb:69:26:77:30:80:89:72:25:12:bc:af:fe:
a7:5b:04:6d:72:84:51:80:3a:53:0b:26:21:8c:ce:
97:81:49:94:b7:15:ce:99:97:35:05:00:29:ec:4a:
15:12:7d:00:9c:0b:d7:a9:74:1e:25:fb:d8:b9:cd:
91:0e:72:a0:63:7e:1f:f8:ad:a3:cf:b7:08:f5:db:
20:51:c8:d8:eb:8c:30:43:fc:68:14:e7:32:a0:02:
d8:1b:b4:29:b3:1a:74:69:82:d6:3c:02:7f:84:62:
84:a8:2c:0a:b0:89:5b:38:74:a5:0a:b1:43:ff:83:
0a:d4:39:02:1c:45:7c:db:46:e5:c6:93:79:d9:df:
c5:b3:2c:31:db:94:f7:78:b5:a0:13:3c:16:c0:8b:
11:62:76:96:c3:39:45:4f:bd:c9:e3:c8:83:2b:0f:
c5:94:47:79:8e:48:fe:f7:ba:5b:bf:13:9a:06:93:
71:08:6e:73:45:4b:73:5d:af:5b:b6:a3:7c:36:d3:
dd:27:6f:81:84:25:f3:38:76:db:8a:7b:9b:83:87:
8b:3f:73:47:b5:2b:22:c5:3e:01:34:73:26:99:18:
83:31:49:9a:6e:f4:45:a1:c8:51:7a:83:33:f5:4b:
45:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:7C:0A:09:0B:0C:B2:71:4C:CD:7A:48:77:5C:71:A2:08:04:39:3B
X509v3 Authority Key Identifier:
keyid:AF:8A:68:CE:22:A4:C1:9F:17:70:0F:62:CC:F8:BB:6C:2D:AF:51:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:4a:d1:94:4a:de:17:72:89:41:da:4a:20:d4:0a:27:8c:8b:
da:90:4b:53:dc:e2:d8:7d:ae:5d:b0:c9:cb:f2:b4:7e:5f:8f:
9e:7c:f5:28:b6:26:d0:8c:70:b7:79:6a:89:b1:5d:e4:84:81:
24:87:43:0a:25:08:53:23:36:83:27:c0:81:9f:32:e2:98:51:
48:b2:08:50:e3:15:cf:42:b6:fe:4f:38:5a:86:19:6e:7a:da:
ae:81:a8:d9:68:83:4b:b4:da:2d:b1:53:37:db:f0:26:7c:ed:
39:ac:bd:d5:43:28:ab:cc:51:00:bc:36:79:83:96:97:27:cc:
8f:99:f4:89:d3:87:ea:d0:19:42:8a:b4:ce:ce:db:70:63:f3:
34:41:94:24:60:cb:a1:c3:8a:ec:53:f7:1b:28:59:78:14:64:
60:54:a3:49:f8:ff:8b:fe:c4:ae:af:c8:41:ba:88:31:bc:53:
0e:f5:1c:9b:67:16:88:bd:18:14:6a:82:2c:8c:97:e3:11:fb:
d5:9f:a6:4b:18:98:64:9b:1e:f1:f1:9b:19:b5:6e:18:04:35:
6d:4e:2a:0b:0d:d6:3d:9a:5b:fb:0c:08:73:38:30:bf:78:e1:
a2:87:42:d6:99:22:ce:3c:0f:67:2c:29:6d:be:d1:1c:50:43:
cd:b6:68:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:44:01 2025 by rpki-client