Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
File: tY6n73bYACz8pmxSD3ybYIo5XZU.mft (raw, json)
Hash identifier: hddW29c8ICLtcmKhZR1J8LYn1K4r2IegAXpo76coRAg=
Subject key identifier: B4:37:24:FE:9A:0A:79:B0:78:5C:E1:C1:B0:5F:93:70:E8:D2:A5:EF
Authority key identifier: B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95
Certificate issuer: /CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95
Certificate serial: 019A503DF6C157797C35A836A0ECE7673387
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
Manifest number: 069E
Signing time: Tue 04 Nov 2025 19:00:29 +0000
Manifest this update: Tue 04 Nov 2025 19:00:29 +0000
Manifest next update: Wed 05 Nov 2025 19:00:29 +0000
Files and hashes: 1: tY6n73bYACz8pmxSD3ybYIo5XZU.crl (hash: alp1WQwNNMDcCGUxxAUOYvGsIMWLBQuhEEwkJRGd5c8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3d:f6:c1:57:79:7c:35:a8:36:a0:ec:e7:67:33:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95
Validity
Not Before: Nov 4 19:00:29 2025 GMT
Not After : Nov 5 19:00:29 2025 GMT
Subject: CN=b43724fe9a0a79b0785ce1c1b05f9370e8d2a5ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6a:15:90:35:e7:11:ec:bb:3e:de:2c:e9:4e:
b0:0d:a3:9c:9e:fc:f8:7c:33:67:91:00:d4:bd:98:
ed:01:4b:9b:2f:64:aa:fc:bc:3d:9b:0c:b3:63:d8:
86:84:b7:e2:3e:19:25:ef:89:4f:0d:1f:89:c9:8b:
64:a3:66:b8:c1:a7:2f:ed:94:4d:ae:fd:6d:1d:5d:
6a:90:95:90:5a:e1:70:79:a0:1e:0d:a1:de:dd:d6:
2d:7a:0a:07:18:07:bb:b6:4b:e9:8a:2d:28:c1:09:
05:c8:db:49:be:50:a0:8b:01:51:c9:28:2d:5d:63:
64:2a:33:48:8b:aa:7a:3e:1d:82:4e:1c:74:72:4d:
7a:86:30:81:58:8c:0b:dc:da:c5:82:31:a0:9b:3a:
0d:a6:47:8a:c4:42:d4:34:2d:6e:72:bb:76:9a:0b:
32:49:cc:53:43:fe:20:b7:0f:14:e4:3b:46:ec:89:
aa:cb:50:d2:aa:d6:01:f7:c5:55:6e:35:ff:5f:d8:
6b:c9:35:fc:de:15:24:4a:51:8c:b6:87:15:28:33:
f5:35:37:30:13:33:8f:ad:9d:4b:5b:5b:32:e9:f3:
e4:49:ec:a7:15:02:b3:4b:dd:6d:92:50:a5:6c:f8:
2b:e6:dd:99:da:06:39:e2:4c:8f:c5:2c:e3:ef:5e:
21:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:37:24:FE:9A:0A:79:B0:78:5C:E1:C1:B0:5F:93:70:E8:D2:A5:EF
X509v3 Authority Key Identifier:
keyid:B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:de:d5:1d:4d:cb:a3:0f:e4:c1:48:02:15:b6:b7:d6:0f:ae:
4a:7e:25:cd:5a:69:78:f8:c3:f7:cc:7d:0b:0f:37:59:2d:b0:
a2:8a:19:9c:1d:5d:16:c6:37:8a:e5:0f:1a:d6:31:e4:d8:1d:
48:de:c6:10:97:44:f3:6c:b5:32:7c:10:bb:a0:92:6d:19:af:
bf:c7:85:11:77:39:c9:51:b5:bf:9e:0f:ec:5b:ba:a2:4d:40:
bc:43:fa:c5:10:20:aa:3b:96:3c:68:7e:48:6b:54:71:57:e3:
c3:53:9c:8b:32:df:41:b7:fd:c3:f7:5a:e3:2d:af:00:69:d5:
f2:a0:dc:fa:eb:01:35:a8:75:60:8c:f2:40:23:5b:ee:1a:b4:
b4:9f:b0:17:a8:34:41:de:7b:b7:32:05:0f:cb:72:17:37:9b:
4f:02:eb:4e:13:02:5e:b3:07:ba:7c:7d:62:33:b1:68:09:35:
97:56:f7:7a:b0:bd:01:58:0c:90:df:4c:04:d0:d0:dc:0c:0f:
6c:c6:b3:ee:d5:be:71:67:00:fb:c9:89:ce:88:77:09:7a:84:
d3:28:fb:1f:f5:11:83:6d:61:fc:72:68:75:fe:10:bf:8a:01:
3d:ff:96:09:8e:11:76:a7:e7:07:e9:20:8d:5d:92:1b:bf:b5:
6e:4c:48:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:45:19 2025 by rpki-client