Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/f541d1-5cf9-4481-8a07-3a5b3696817d/1/TYEGKSpQrK_qaBfLoczmd6J34OE.mft
File: TYEGKSpQrK_qaBfLoczmd6J34OE.mft (raw, json)
Hash identifier: JbASbWhB6YlFX2mSeqzdRt2S2qvzgUHc70K8e2FgRIc=
Subject key identifier: 24:84:D8:0E:C4:B4:3D:83:15:25:E2:C2:BE:61:9E:EF:B1:EC:10:50
Authority key identifier: 4D:81:06:29:2A:50:AC:AF:EA:68:17:CB:A1:CC:E6:77:A2:77:E0:E1
Certificate issuer: /CN=4d8106292a50acafea6817cba1cce677a277e0e1
Certificate serial: 019922C380B684C155783D3BD9F2AAE7A9C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TYEGKSpQrK_qaBfLoczmd6J34OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/f541d1-5cf9-4481-8a07-3a5b3696817d/1/TYEGKSpQrK_qaBfLoczmd6J34OE.mft
Manifest number: 04E5
Signing time: Sun 07 Sep 2025 06:01:01 +0000
Manifest this update: Sun 07 Sep 2025 06:01:01 +0000
Manifest next update: Mon 08 Sep 2025 06:01:01 +0000
Files and hashes: 1: TYEGKSpQrK_qaBfLoczmd6J34OE.crl (hash: GLn9dICuOiFyQKAuWtps5xMW7S0ZtoUxM3lGZ/UBf7g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/f541d1-5cf9-4481-8a07-3a5b3696817d/1/TYEGKSpQrK_qaBfLoczmd6J34OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/f541d1-5cf9-4481-8a07-3a5b3696817d/1/TYEGKSpQrK_qaBfLoczmd6J34OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TYEGKSpQrK_qaBfLoczmd6J34OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 06:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:80:b6:84:c1:55:78:3d:3b:d9:f2:aa:e7:a9:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d8106292a50acafea6817cba1cce677a277e0e1
Validity
Not Before: Sep 7 06:01:01 2025 GMT
Not After : Sep 8 06:01:01 2025 GMT
Subject: CN=2484d80ec4b43d831525e2c2be619eefb1ec1050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:33:9f:56:53:7f:51:3f:fa:2b:32:6f:41:2f:
74:44:4f:90:89:72:20:63:41:f2:a4:ce:64:01:b0:
3b:43:21:d0:2c:cb:e8:ac:88:98:f9:4c:78:99:fe:
e3:bd:e7:b9:fc:2f:15:17:8d:2c:9e:4f:77:3c:0f:
ac:83:a2:48:b9:5f:6c:73:dc:a3:70:0c:4b:ef:ec:
79:e0:6d:87:11:d2:f5:dc:d9:47:8e:30:d7:12:6f:
50:b7:6c:d0:73:e9:e9:68:f4:43:30:11:05:44:8b:
c6:73:47:d6:66:9e:4e:09:63:54:04:30:d2:59:98:
02:07:39:c2:0a:61:31:5b:61:5a:ea:0e:27:d1:11:
5b:ef:c3:d1:32:13:5b:df:a4:3e:54:5c:95:67:e1:
88:e1:59:05:b2:92:04:00:63:2f:13:8f:40:76:90:
af:cd:8a:5e:08:86:dc:03:b2:f8:91:7e:a3:6a:01:
cb:c3:4e:3c:c2:8c:f6:c5:8b:54:bf:4a:f7:9f:bf:
7f:96:a3:fa:5b:1c:e9:74:3f:60:e2:c0:76:10:26:
cf:ad:2b:67:39:ee:2f:a3:86:11:04:72:ca:aa:1d:
9e:33:f9:0d:83:1b:db:29:bc:b7:da:e9:6c:5f:54:
91:a3:3a:e9:9c:b5:9f:70:ee:de:78:3c:7a:c3:32:
73:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:84:D8:0E:C4:B4:3D:83:15:25:E2:C2:BE:61:9E:EF:B1:EC:10:50
X509v3 Authority Key Identifier:
keyid:4D:81:06:29:2A:50:AC:AF:EA:68:17:CB:A1:CC:E6:77:A2:77:E0:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TYEGKSpQrK_qaBfLoczmd6J34OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f541d1-5cf9-4481-8a07-3a5b3696817d/1/TYEGKSpQrK_qaBfLoczmd6J34OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f541d1-5cf9-4481-8a07-3a5b3696817d/1/TYEGKSpQrK_qaBfLoczmd6J34OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:b5:56:15:b6:bb:b5:35:a8:df:e3:74:e3:54:2a:d3:9c:4f:
93:aa:74:42:a1:77:46:ae:07:1f:c7:c0:eb:26:42:31:b2:bd:
d3:0f:1b:ea:56:53:6d:cd:ca:09:af:c1:64:60:f9:f1:7c:d7:
69:c9:00:ce:2d:e8:e4:7d:16:bb:4a:8e:f9:6c:37:57:84:02:
4b:d4:f4:cb:e5:3c:e4:59:cd:6f:5e:66:0b:bc:29:0a:30:ab:
37:bd:88:c6:f4:47:7a:22:72:73:ac:f5:14:ed:75:c8:2b:9f:
6e:13:5b:c4:ec:40:a2:08:e3:f9:6e:1c:16:9a:6f:48:01:92:
9d:9b:f9:bd:53:25:79:c1:8d:5f:90:05:a4:36:de:7a:a6:24:
53:85:f9:7d:ec:ec:74:fd:40:1c:5b:94:e7:2f:f1:09:07:a7:
7c:3b:f6:ce:fb:00:c6:df:c5:cc:22:0f:93:3a:e3:00:89:04:
86:ba:b2:22:7e:3e:b4:df:bf:11:95:0f:01:68:56:9b:98:fb:
be:1f:13:70:08:0d:05:0c:e5:92:b9:3a:0a:55:cc:13:cb:89:
14:b6:20:96:3b:69:ec:45:78:9f:29:5b:9a:e0:9b:c6:a2:64:
5d:54:44:ac:34:18:1f:2e:36:d8:2f:09:ac:38:62:ab:2f:b5:
76:67:28:0b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiw4C2hMFVeD072fKq56nCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkODEwNjI5MmE1MGFjYWZlYTY4MTdjYmExY2NlNjc3YTI3
N2UwZTEwHhcNMjUwOTA3MDYwMTAxWhcNMjUwOTA4MDYwMTAxWjAzMTEwLwYDVQQD
EygyNDg0ZDgwZWM0YjQzZDgzMTUyNWUyYzJiZTYxOWVlZmIxZWMxMDUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuzOfVlN/UT/6KzJvQS90RE+QiXIg
Y0HypM5kAbA7QyHQLMvorIiY+Ux4mf7jvee5/C8VF40snk93PA+sg6JIuV9sc9yj
cAxL7+x54G2HEdL13NlHjjDXEm9Qt2zQc+npaPRDMBEFRIvGc0fWZp5OCWNUBDDS
WZgCBznCCmExW2Fa6g4n0RFb78PRMhNb36Q+VFyVZ+GI4VkFspIEAGMvE49AdpCv
zYpeCIbcA7L4kX6jagHLw048woz2xYtUv0r3n79/lqP6WxzpdD9g4sB2ECbPrStn
Oe4vo4YRBHLKqh2eM/kNgxvbKby32ulsX1SRozrpnLWfcO7eeDx6wzJzbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCSE2A7EtD2DFSXiwr5hnu+x7BBQMB8GA1UdIwQY
MBaAFE2BBikqUKyv6mgXy6HM5neid+DhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFlFR0tTcFFyS19xYUJmTG9jem1kNkozNE9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9mNTQxZDEtNWNmOS00NDgxLThhMDct
M2E1YjM2OTY4MTdkLzEvVFlFR0tTcFFyS19xYUJmTG9jem1kNkozNE9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy9mNTQxZDEtNWNmOS00NDgxLThhMDctM2E1YjM2OTY4MTdk
LzEvVFlFR0tTcFFyS19xYUJmTG9jem1kNkozNE9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKLVWFba7
tTWo3+N041Qq05xPk6p0QqF3Rq4HH8fA6yZCMbK90w8b6lZTbc3KCa/BZGD58XzX
ackAzi3o5H0Wu0qO+Ww3V4QCS9T0y+U85FnNb15mC7wpCjCrN72IxvRHeiJyc6z1
FO11yCufbhNbxOxAogjj+W4cFppvSAGSnZv5vVMlecGNX5AFpDbeeqYkU4X5fezs
dP1AHFuU5y/xCQenfDv2zvsAxt/FzCIPkzrjAIkEhrqyIn4+tN+/EZUPAWhWm5j7
vh8TcAgNBQzlkrk6ClXME8uJFLYgljtp7EV4nylbmuCbxqJkXVRErDQYHy422C8J
rDhiqy+1dmcoCw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 14:41:39 2025 by rpki-client