Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
File: tpQiR24a5eoNWOT4_fkfBfEC_vs.mft (raw, json)
Hash identifier: idaFzeyA5lUjg+v6eiqj/ufC45rwVmx0KywmTyAE6nE=
Subject key identifier: 21:62:45:98:4E:6D:7C:0E:D1:45:5D:A7:6C:46:12:BC:DC:E3:93:23
Authority key identifier: B6:94:22:47:6E:1A:E5:EA:0D:58:E4:F8:FD:F9:1F:05:F1:02:FE:FB
Certificate issuer: /CN=b69422476e1ae5ea0d58e4f8fdf91f05f102fefb
Certificate serial: 019A7293663BC741BE7ACE9E4D9817C992B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpQiR24a5eoNWOT4_fkfBfEC_vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
Manifest number: 171C
Signing time: Tue 11 Nov 2025 11:00:53 +0000
Manifest this update: Tue 11 Nov 2025 11:00:53 +0000
Manifest next update: Wed 12 Nov 2025 11:00:53 +0000
Files and hashes: 1: tpQiR24a5eoNWOT4_fkfBfEC_vs.crl (hash: 0kT5JPFTgLBw2viihjbI7p5eCPTrzyzcpZ0/42ddKK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpQiR24a5eoNWOT4_fkfBfEC_vs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:66:3b:c7:41:be:7a:ce:9e:4d:98:17:c9:92:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b69422476e1ae5ea0d58e4f8fdf91f05f102fefb
Validity
Not Before: Nov 11 11:00:53 2025 GMT
Not After : Nov 12 11:00:53 2025 GMT
Subject: CN=216245984e6d7c0ed1455da76c4612bcdce39323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3e:da:9d:a8:9e:76:2d:3a:cd:18:55:e6:d4:
ca:23:3d:1c:2a:fe:95:e7:ae:79:17:85:03:1b:c0:
c3:fb:68:78:78:93:72:c4:13:ea:bb:28:13:9a:0a:
d3:3e:73:d4:9b:b0:e2:ea:a3:6a:f4:e7:0e:e7:9d:
ca:72:4a:c3:8d:75:b6:2f:d4:51:00:1f:9a:6f:83:
1d:ed:90:13:76:06:34:72:a9:93:d3:2b:1e:98:ee:
1d:ad:88:fd:3c:18:cd:48:02:dd:6c:b5:36:f4:38:
fc:c4:ca:de:f4:8d:c1:08:4b:97:8c:99:02:4b:b2:
8d:2e:ba:0f:45:86:51:32:6f:bd:10:24:f5:03:da:
2a:45:6d:15:60:0b:1a:32:ab:18:a1:c9:da:1c:16:
40:7f:dc:3f:ce:6b:6d:59:01:d2:05:45:e2:7f:26:
96:83:f7:7a:00:c6:e6:7a:ee:12:ce:a7:df:5c:41:
68:50:bf:c1:79:d2:a3:c5:72:bc:f9:51:72:0f:c8:
eb:7a:3c:72:de:9a:5d:f2:43:9b:9d:e3:34:f3:fb:
1c:b1:d4:96:b6:1f:24:87:fe:04:85:1e:8e:44:c3:
72:5b:69:8d:2b:02:87:b0:5e:d6:cd:80:74:a8:3e:
c3:20:b3:26:1b:47:78:9c:11:95:74:cc:cc:93:6f:
4e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:62:45:98:4E:6D:7C:0E:D1:45:5D:A7:6C:46:12:BC:DC:E3:93:23
X509v3 Authority Key Identifier:
keyid:B6:94:22:47:6E:1A:E5:EA:0D:58:E4:F8:FD:F9:1F:05:F1:02:FE:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpQiR24a5eoNWOT4_fkfBfEC_vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:f4:54:4a:47:e0:24:db:2e:3a:f4:44:a2:8a:4b:4d:fe:61:
b8:03:66:bc:f6:8c:41:2d:f6:21:6f:e5:91:8e:a3:1b:ed:d0:
22:2b:f3:ee:0f:05:2d:31:31:89:4a:c8:0d:86:ef:7c:8d:f8:
3e:49:f1:08:d2:25:6f:6c:6a:9f:0f:e4:dc:8f:df:d7:5d:58:
93:e5:a4:96:c3:e5:3d:1d:2c:26:67:b6:00:6a:e6:ac:16:39:
ad:31:26:69:fc:e2:26:38:ea:da:b9:83:69:24:83:6c:32:24:
63:36:23:17:08:23:69:18:dd:38:37:85:5e:8f:94:0f:e0:fe:
03:60:64:50:c9:ad:ee:88:ad:8f:a9:c7:6e:5b:d8:ec:c2:60:
b8:ff:bc:1f:8f:b0:24:83:63:29:63:f4:5f:69:8a:53:ef:99:
f0:5a:cf:63:7f:85:0e:2d:fe:39:d3:01:3a:15:e3:ca:1c:71:
38:be:a0:5f:29:18:34:7a:cb:7f:19:ef:6f:57:18:52:56:68:
5b:ba:5e:73:6a:07:81:c8:17:cc:32:45:d5:5f:3c:db:7f:68:
6f:76:44:f9:8c:c0:85:35:b4:3e:b2:03:d6:af:3c:1d:6f:41:
4b:88:fb:bb:42:d8:62:a1:e3:be:75:c3:a3:90:4e:15:16:b3:
62:0a:da:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:07:03 2025 by rpki-client