Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
File: Tom7FOgJr_PsljCL2a6GUafndio.mft (raw, json)
Hash identifier: S0og6ExPyot93IyAyaECeSp5ZtcpVFSCqj7VuNn5TI0=
Subject key identifier: 06:07:75:1F:E5:10:F5:3A:BB:22:AA:07:30:AF:24:CF:61:64:79:1B
Authority key identifier: 4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A
Certificate issuer: /CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a
Certificate serial: 0199221F0DA4343DC04836DE1C34C1340E3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 03:01:24 +0000
Manifest this update: Sun 07 Sep 2025 03:01:24 +0000
Manifest next update: Mon 08 Sep 2025 03:01:24 +0000
Files and hashes: 1: Tom7FOgJr_PsljCL2a6GUafndio.crl (hash: d+7y1DsmKxAup4KQtMFYBst3G91uKTQk+aC0OxR1RKc=)
2: fxuqWXx_O_zewgAff6HXjyvgKp0.roa (hash: cm4JBhg0Zq8hHGX0z/7BWc/vnIZVK86NCDFtwq+RrhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:0d:a4:34:3d:c0:48:36:de:1c:34:c1:34:0e:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a
Validity
Not Before: Sep 7 03:01:24 2025 GMT
Not After : Sep 8 03:01:24 2025 GMT
Subject: CN=0607751fe510f53abb22aa0730af24cf6164791b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ae:0b:74:99:52:f8:93:74:64:34:96:bd:ad:
1a:cd:70:f9:f0:1e:cf:71:d4:a4:67:11:05:69:4f:
0b:79:d5:c3:3c:b0:9a:ce:45:ce:cf:e6:98:ca:42:
2d:55:9f:ae:4a:fa:29:8f:86:ad:8b:3e:6d:74:0a:
42:3e:75:3a:b9:61:58:22:31:86:b2:c3:6a:b9:e5:
ca:4f:f0:c0:dc:da:be:c6:a3:2a:b3:c5:8d:a7:9b:
95:48:a4:8a:c4:38:64:6d:59:83:5f:92:c7:e8:8a:
21:b6:63:82:0e:9c:54:56:00:3b:b4:08:cc:c2:55:
64:3c:6d:74:34:7b:3a:5c:7d:4c:55:bf:e8:9c:d8:
d9:f0:cf:f2:0b:70:34:65:e0:1b:9e:1e:93:2a:82:
a8:2f:be:ba:50:a3:d7:16:c8:25:eb:fd:1d:b0:6c:
40:c7:56:58:b9:6d:d9:47:a1:36:ad:22:a8:ee:49:
f0:00:80:52:d4:b8:b7:e3:3d:78:9e:0f:1d:50:76:
33:93:58:c0:12:50:0c:87:e9:9b:38:85:fe:55:a0:
f1:59:04:81:9d:dc:d5:0c:57:78:c0:ac:52:f9:9f:
90:15:a4:8c:75:5d:eb:f6:92:9a:e5:0c:60:83:d4:
bb:de:d3:7c:27:42:b9:d1:0a:4d:9a:89:2e:db:fc:
d1:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:07:75:1F:E5:10:F5:3A:BB:22:AA:07:30:AF:24:CF:61:64:79:1B
X509v3 Authority Key Identifier:
keyid:4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:33:bd:9c:af:21:10:e6:c0:7c:4c:cd:9f:32:b8:6f:d9:83:
f1:ac:0f:98:77:ee:14:fa:fc:c9:54:16:fe:1b:70:09:64:aa:
de:a2:b2:18:93:10:7d:2e:0a:d5:8a:b5:54:13:3e:23:a8:c4:
b5:33:3d:a1:39:c6:d4:5d:48:2d:7b:92:e3:7b:f1:f0:e5:e4:
ef:4e:3a:39:69:48:79:26:2b:72:35:66:f6:d9:f8:9f:49:e2:
03:5a:5f:08:93:d3:51:8b:38:b8:fc:47:e5:34:3a:be:df:39:
a8:df:8b:d1:b3:df:93:28:0d:15:2e:62:1a:dc:8d:42:b4:68:
af:06:2a:62:de:3e:03:d2:1f:9d:cd:5a:9d:79:51:bc:2e:ab:
e3:58:8a:d1:69:b2:57:29:79:3b:3f:fc:4f:19:eb:65:c6:4e:
47:53:ed:71:55:fe:ff:91:59:a9:f6:ce:f4:38:77:2b:06:78:
7b:94:44:42:6a:c7:66:cf:cf:4e:b4:30:31:91:fd:85:fc:30:
b5:63:a1:0d:7c:e9:a5:da:66:1a:c2:53:e3:5d:78:92:17:4c:
c8:24:84:42:85:3e:32:5f:ec:2d:b8:bb:e9:dd:50:ee:5d:6f:
3b:f5:18:f3:1d:23:6b:09:b5:d2:27:92:6b:e4:4d:12:d8:f6:
35:4e:81:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:52:24 2025 by rpki-client