Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
File: T8muTFD6CwOCrdpfPH30GPeSWGQ.mft (raw, json)
Hash identifier: Dl7IYCi3aW1iQjEGsezvwYXqRQ2vsOcDxHeHvQx5aqo=
Subject key identifier: 6D:E3:4C:3F:B9:53:34:E8:92:30:22:B1:3D:22:8A:3C:1E:0D:88:4C
Authority key identifier: 4F:C9:AE:4C:50:FA:0B:03:82:AD:DA:5F:3C:7D:F4:18:F7:92:58:64
Certificate issuer: /CN=4fc9ae4c50fa0b0382adda5f3c7df418f7925864
Certificate serial: 019A533EB5FE765C06007F7C5DB57D17EB18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8muTFD6CwOCrdpfPH30GPeSWGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
Manifest number: 9B
Signing time: Wed 05 Nov 2025 09:00:09 +0000
Manifest this update: Wed 05 Nov 2025 09:00:09 +0000
Manifest next update: Thu 06 Nov 2025 09:00:09 +0000
Files and hashes: 1: EfBLqsVRmS2V_zTPOhomf1PD6s8.roa (hash: animJghjOYq1IX/7qhA2FDGSZ8rTFFcjT97KQ/IiWvY=)
2: T8muTFD6CwOCrdpfPH30GPeSWGQ.crl (hash: VilGPcowCWAcbl6UpRqtZ5If7Xxf7rfoZqSMpBVMqxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8muTFD6CwOCrdpfPH30GPeSWGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 09:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:3e:b5:fe:76:5c:06:00:7f:7c:5d:b5:7d:17:eb:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc9ae4c50fa0b0382adda5f3c7df418f7925864
Validity
Not Before: Nov 5 09:00:09 2025 GMT
Not After : Nov 6 09:00:09 2025 GMT
Subject: CN=6de34c3fb95334e8923022b13d228a3c1e0d884c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f3:80:e9:b4:e8:9c:ce:6d:15:3f:c9:1a:3e:
bd:44:99:67:03:59:83:63:ff:17:94:8e:34:03:64:
d7:51:5d:f4:ef:56:b2:fd:4d:85:78:4d:4b:7d:70:
b4:2e:ec:c0:6b:dd:6a:96:dc:47:5c:94:78:a6:f7:
bc:c8:ea:54:92:f1:6c:8e:52:c2:14:9e:54:dc:40:
88:18:0f:58:d0:c3:db:09:7b:c4:e5:e7:05:61:34:
fe:c8:c5:1f:0f:f8:a2:1f:bd:13:12:4a:f4:28:53:
17:a5:0a:6b:0f:06:99:f1:53:36:aa:47:8e:cc:6e:
2e:57:7e:6d:bc:30:54:fb:c2:5a:37:40:e6:0a:ed:
42:84:6f:ee:58:10:d6:43:11:7a:08:31:10:87:3a:
89:1e:6f:fa:2e:5c:07:3f:ea:2a:d4:c2:11:58:a7:
16:53:93:2f:b6:35:26:6e:c1:de:b0:ee:cb:6b:47:
6f:a5:77:bd:ab:32:73:9b:17:82:d1:91:6b:50:6c:
98:31:6d:cd:3d:59:7b:69:ee:33:95:1f:2d:c8:58:
79:53:62:e6:f6:d5:fa:cc:90:6a:0a:30:ea:62:c7:
36:b1:3b:06:b3:bc:32:0c:8d:f0:12:11:03:14:47:
a0:06:d9:6c:85:5c:d2:c4:ae:7b:ed:27:da:58:4e:
a5:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:E3:4C:3F:B9:53:34:E8:92:30:22:B1:3D:22:8A:3C:1E:0D:88:4C
X509v3 Authority Key Identifier:
keyid:4F:C9:AE:4C:50:FA:0B:03:82:AD:DA:5F:3C:7D:F4:18:F7:92:58:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8muTFD6CwOCrdpfPH30GPeSWGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:8f:50:4a:db:68:c2:c1:26:39:7c:2a:74:b4:0d:80:92:2c:
4a:df:56:57:42:e9:ff:96:d4:8c:b0:15:09:b4:7b:2e:c5:3d:
4b:49:5b:e8:f7:03:6c:7f:06:59:03:ae:98:4d:a9:a8:3e:42:
15:d0:86:7f:f9:1f:2b:b4:5e:97:f3:83:ef:72:d7:39:fd:a2:
c0:8a:df:bf:9b:66:ab:bf:e7:97:4e:1c:54:28:96:ce:92:8a:
a4:f8:cd:f4:0d:70:d7:7c:5d:75:ea:42:b7:51:70:98:31:65:
f8:c1:cd:29:4e:f3:c0:48:23:0a:0c:a9:79:1c:10:0c:ee:7d:
71:fe:70:ad:77:c3:5c:66:24:f6:45:cd:d0:8c:e1:a6:ae:75:
d1:cb:7f:3c:bd:92:75:32:23:c0:10:f4:c9:68:16:a6:4c:6f:
2f:ec:3d:3c:70:ab:72:cd:5e:4f:24:43:2c:bf:17:ad:d6:ce:
aa:cb:74:5e:2f:65:eb:4d:a7:24:73:c2:88:e6:f4:ee:41:be:
4c:aa:c6:e5:c8:11:92:64:4d:7f:ca:1d:c8:cd:b4:bd:af:0e:
b0:b5:2d:d6:97:c5:17:92:c0:41:be:a8:f7:5e:c8:9f:f9:22:
3f:0c:ae:01:0a:7f:d9:ce:23:bd:57:bf:30:8c:d2:23:12:f8:
df:10:d5:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 15:19:24 2025 by rpki-client