Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft
File: tFmZiZ920uLkzN_IF_mHnPrAa74.mft (raw, json)
Hash identifier: UU9vGx9N4IafZTh/AzzTGldvSf1vGGmsNTEArGCDofg=
Subject key identifier: 88:00:55:29:DD:C8:43:42:DF:7F:1F:C4:EA:23:56:A2:C5:12:AF:0C
Authority key identifier: B4:59:99:89:9F:76:D2:E2:E4:CC:DF:C8:17:F9:87:9C:FA:C0:6B:BE
Certificate issuer: /CN=b45999899f76d2e2e4ccdfc817f9879cfac06bbe
Certificate serial: 0199239F24F32E23CC597B9E71456723F34A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft
Manifest number: 0F2D
Signing time: Sun 07 Sep 2025 10:00:56 +0000
Manifest this update: Sun 07 Sep 2025 10:00:56 +0000
Manifest next update: Mon 08 Sep 2025 10:00:56 +0000
Files and hashes: 1: tFmZiZ920uLkzN_IF_mHnPrAa74.crl (hash: gznjkPddTR6/iA1gaxdW3Lxzev56WjR8c8s/DKGN9oE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft
rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:24:f3:2e:23:cc:59:7b:9e:71:45:67:23:f3:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45999899f76d2e2e4ccdfc817f9879cfac06bbe
Validity
Not Before: Sep 7 10:00:56 2025 GMT
Not After : Sep 8 10:00:56 2025 GMT
Subject: CN=88005529ddc84342df7f1fc4ea2356a2c512af0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:3f:2a:be:fa:2a:f0:d7:5a:d4:76:6d:0a:a3:
68:c6:0c:6a:4c:77:9f:55:54:fc:6d:45:c1:a5:ca:
e1:3d:9f:fc:0f:85:7a:f6:5f:5c:bf:29:a4:e7:26:
c6:55:97:79:e0:77:45:d2:a1:68:29:af:ca:03:6f:
08:81:ca:da:5f:97:ae:04:8b:ad:d0:f6:6c:c7:38:
de:e8:22:e8:5e:5f:cc:a7:fd:71:1a:eb:11:ac:ea:
bc:0e:d1:fc:13:29:7f:6e:4d:b6:a3:3f:7c:0a:5e:
f2:76:e7:c4:7d:b0:a0:68:63:d0:7d:57:fa:f0:4c:
75:da:d7:ec:b2:37:bb:32:03:97:fc:35:e5:b7:1c:
30:36:76:8f:32:73:a9:8f:aa:5e:89:3c:eb:70:bb:
01:eb:c7:fd:91:9c:6d:01:86:3b:38:ae:63:2e:77:
8b:86:fc:e3:8e:42:79:7b:c9:7d:8d:eb:42:f1:6f:
15:87:26:3a:5e:62:ae:d1:0d:be:8d:cd:70:52:29:
bd:7c:25:59:89:68:b1:37:5c:f1:d9:c2:ff:95:5e:
90:36:ae:5e:6d:50:78:30:b7:52:96:2e:0b:a3:6b:
95:e0:1d:dd:c0:e1:21:f3:2d:ca:21:1f:7e:f0:eb:
df:4a:9c:dc:c2:0b:60:88:fe:ea:28:e5:9c:51:1f:
32:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:00:55:29:DD:C8:43:42:DF:7F:1F:C4:EA:23:56:A2:C5:12:AF:0C
X509v3 Authority Key Identifier:
keyid:B4:59:99:89:9F:76:D2:E2:E4:CC:DF:C8:17:F9:87:9C:FA:C0:6B:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:f9:d1:61:e2:ad:c3:1d:9f:31:81:55:e4:3b:5e:ba:9d:b3:
3c:76:e1:a2:b0:1c:f7:3e:ab:00:42:6c:17:50:ff:28:12:a2:
44:f2:0f:fb:20:e7:bd:45:7a:a5:d2:f5:de:74:de:4c:98:89:
66:1c:e3:d6:9b:ca:5b:d5:04:0a:b0:3c:72:49:96:5f:5d:3a:
4d:08:91:b4:57:bd:f5:fc:65:3d:03:57:38:02:26:9a:48:43:
79:24:7f:b6:30:65:a4:65:76:fd:54:0b:cd:74:af:1a:23:ca:
12:55:73:56:44:7c:78:60:e3:b0:2e:99:35:aa:3f:26:b2:57:
73:0d:64:e5:48:c1:74:3d:32:eb:39:3d:21:08:1e:32:f9:62:
38:66:8b:f9:bd:e0:71:c4:7b:1f:48:d2:df:c8:21:62:64:ae:
a7:ab:68:39:57:fb:5a:a7:7c:2a:93:3a:46:75:ea:76:11:a8:
78:b8:6d:5e:c6:1e:be:98:e0:16:56:f2:a2:ef:84:0e:96:d2:
a3:4d:23:e5:ee:3e:18:42:b4:f0:c9:9e:f2:2f:34:85:8d:34:
28:b0:90:31:05:b0:f9:89:9e:4f:d0:9a:62:2a:b4:17:27:6d:
d0:d8:c0:45:f6:98:7d:d9:46:c1:00:b5:44:f1:08:45:9e:14:
19:fa:19:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:32:53 2025 by rpki-client