Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft
File: tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft (raw, json)
Hash identifier: aiRs4TLjZBsMnd2l6QEibn8ABKrWKwBkfF67RS1DfsE=
Subject key identifier: 2B:C7:37:BD:A7:C2:F2:14:B1:75:D1:09:45:9F:BD:6B:20:67:C0:38
Authority key identifier: B5:7C:8A:C0:55:C5:74:D8:CF:13:52:2B:96:4B:92:31:4D:21:1E:AE
Certificate issuer: /CN=b57c8ac055c574d8cf13522b964b92314d211eae
Certificate serial: 0199228C3F7A274E8D2384DC897B5856883E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tXyKwFXFdNjPE1IrlkuSMU0hHq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft
Manifest number: 13BE
Signing time: Sun 07 Sep 2025 05:00:40 +0000
Manifest this update: Sun 07 Sep 2025 05:00:40 +0000
Manifest next update: Mon 08 Sep 2025 05:00:40 +0000
Files and hashes: 1: tXyKwFXFdNjPE1IrlkuSMU0hHq4.crl (hash: esM1hwKgtrZp9YjQ2r4kMZMA5uineKS1dRT/ZTjipxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tXyKwFXFdNjPE1IrlkuSMU0hHq4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:3f:7a:27:4e:8d:23:84:dc:89:7b:58:56:88:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b57c8ac055c574d8cf13522b964b92314d211eae
Validity
Not Before: Sep 7 05:00:40 2025 GMT
Not After : Sep 8 05:00:40 2025 GMT
Subject: CN=2bc737bda7c2f214b175d109459fbd6b2067c038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:07:d6:c8:69:a9:0d:c1:35:ff:b9:25:e1:1f:
c8:e1:af:3c:f3:09:f0:35:e2:1b:ed:70:6d:4f:78:
9d:cb:e6:0c:73:cf:50:96:92:18:9f:28:ae:12:d4:
62:9c:8c:59:80:31:f8:4f:3c:ca:4e:7a:7f:cf:31:
fb:1b:ba:6f:60:fd:13:29:c9:4a:21:ef:4b:d2:8e:
38:6d:46:0e:4e:7d:14:2a:e7:d2:b9:0d:ad:d1:11:
ca:33:a1:d6:d5:96:a5:5a:a4:eb:34:1e:10:98:cb:
02:3a:79:d4:79:c4:c0:97:2f:83:61:c5:bf:c0:62:
3a:17:aa:89:55:e8:c6:ea:1c:08:4f:78:96:67:fa:
e8:ee:73:ed:a6:0a:b3:c5:00:59:07:c5:0e:26:81:
e8:c0:ef:a6:3c:53:d7:b8:57:fd:05:9e:06:58:6b:
3c:e8:e5:79:e3:f2:af:d4:a6:04:af:04:b4:a1:f0:
ac:17:83:b2:3e:a7:d8:24:97:6a:c5:21:92:71:4f:
05:2b:f5:da:e9:6a:fe:62:15:d0:86:1d:69:c3:0d:
2a:2b:ae:7e:d8:16:97:6a:f7:2a:34:75:f2:b0:7b:
9c:62:57:87:01:0a:8b:1c:70:f9:51:9a:fd:cc:4d:
e4:56:c6:ef:02:7c:a5:fa:4f:b8:f1:16:21:17:b6:
bd:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C7:37:BD:A7:C2:F2:14:B1:75:D1:09:45:9F:BD:6B:20:67:C0:38
X509v3 Authority Key Identifier:
keyid:B5:7C:8A:C0:55:C5:74:D8:CF:13:52:2B:96:4B:92:31:4D:21:1E:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tXyKwFXFdNjPE1IrlkuSMU0hHq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:b7:bf:33:16:63:9f:23:a7:b9:ed:e6:33:13:82:48:cf:a6:
31:a0:6e:28:9f:4c:f7:c3:31:77:29:08:cb:00:d8:0e:b4:8a:
1c:b6:3f:11:4d:bb:38:40:a7:e9:05:58:58:a9:62:b3:1e:3b:
66:7d:74:3c:93:1d:f0:9b:3f:5f:24:d5:01:b9:78:6d:da:b4:
36:45:11:77:f1:f3:b8:96:9e:da:cb:75:cd:97:8c:a9:e6:cb:
da:a6:af:4e:ce:b2:b8:24:29:32:44:32:02:da:12:1e:67:4e:
2c:21:74:8d:0e:e7:7a:a1:c1:f5:4c:1f:df:c2:f8:98:47:b3:
1d:78:9b:a1:76:d3:86:72:67:ba:4e:55:94:0b:c8:e4:72:ca:
ae:1c:6f:50:e3:0b:f4:3e:a2:5c:27:2e:07:17:03:fc:06:e1:
f1:5c:df:cc:d6:11:7a:95:36:0b:01:f1:ad:5b:2e:32:20:71:
9f:79:34:27:52:e6:5a:72:9d:25:64:ce:b8:10:3f:14:81:ba:
09:db:d8:8f:51:f4:1f:98:6f:01:8b:f9:30:5f:17:25:a6:eb:
e8:7c:74:cd:3d:b9:88:a6:a0:31:3c:ac:67:48:ab:6a:b3:21:
07:99:6a:f7:55:6b:0e:04:15:ab:51:0b:af:01:2a:87:7f:b0:
3b:ac:34:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:33:10 2025 by rpki-client