Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/3b222e-a4b3-4fbe-839f-363a558e19be/1/rTaQk6MtG34Ou-MkRRxY10iuzUI.mft
File: rTaQk6MtG34Ou-MkRRxY10iuzUI.mft (raw, json)
Hash identifier: QpNS04KVZf8fXJEKPaecdOJiNzbZiBvOXqO4PeuTJhk=
Subject key identifier: 02:D1:AC:F6:79:4E:EA:3C:16:48:E5:CE:BE:15:D3:19:D5:DA:4B:06
Authority key identifier: AD:36:90:93:A3:2D:1B:7E:0E:BB:E3:24:45:1C:58:D7:48:AE:CD:42
Certificate issuer: /CN=ad369093a32d1b7e0ebbe324451c58d748aecd42
Certificate serial: 019A255373799680F21C3956E78D9ED74215
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rTaQk6MtG34Ou-MkRRxY10iuzUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/3b222e-a4b3-4fbe-839f-363a558e19be/1/rTaQk6MtG34Ou-MkRRxY10iuzUI.mft
Manifest number: 060D
Signing time: Mon 27 Oct 2025 11:00:17 +0000
Manifest this update: Mon 27 Oct 2025 11:00:17 +0000
Manifest next update: Tue 28 Oct 2025 11:00:17 +0000
Files and hashes: 1: rTaQk6MtG34Ou-MkRRxY10iuzUI.crl (hash: ew7KuMehg4WKPlfLL+DuySITWw2U6f7l37a9Okq8wW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/3b222e-a4b3-4fbe-839f-363a558e19be/1/rTaQk6MtG34Ou-MkRRxY10iuzUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/3b222e-a4b3-4fbe-839f-363a558e19be/1/rTaQk6MtG34Ou-MkRRxY10iuzUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/rTaQk6MtG34Ou-MkRRxY10iuzUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 08:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:53:73:79:96:80:f2:1c:39:56:e7:8d:9e:d7:42:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad369093a32d1b7e0ebbe324451c58d748aecd42
Validity
Not Before: Oct 27 11:00:17 2025 GMT
Not After : Oct 28 11:00:17 2025 GMT
Subject: CN=02d1acf6794eea3c1648e5cebe15d319d5da4b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c7:0e:14:90:62:61:c9:97:c2:ff:fc:af:88:
d2:24:5e:ae:eb:01:4f:1b:bd:a0:9a:51:a0:03:c3:
82:e5:b5:9f:ca:50:c0:c7:b0:85:d3:ba:86:ed:62:
b9:f2:e0:48:e2:83:69:2d:7f:0c:98:cc:51:f1:71:
b5:67:06:4c:9a:ae:d6:5d:2a:8d:26:58:2b:a9:d8:
e8:30:54:4c:3f:f2:01:7a:e7:49:4d:bf:e9:77:7f:
0f:37:18:4a:3c:10:6a:9e:3b:0c:e4:cf:bb:cb:97:
89:66:6f:4c:57:36:06:0a:77:30:e2:65:4e:f8:53:
3d:2d:bd:f5:4c:53:30:65:08:96:f4:92:93:6d:a5:
03:00:31:da:4a:29:9b:fd:75:00:51:ed:cb:e6:d8:
2f:99:ff:a0:cc:c7:c0:5d:85:fe:fb:04:21:db:9c:
b8:cb:87:ce:24:d3:a1:1d:4e:4f:87:38:86:69:21:
18:80:55:91:53:20:bc:a4:05:e4:f8:c6:d8:68:ec:
ce:b0:3c:2a:07:7d:e3:1b:26:af:52:48:17:9f:9c:
bf:c2:45:3a:f3:5e:2b:c7:e7:e5:4e:cd:fc:e9:e4:
ae:a9:d1:17:af:94:e1:a1:92:a9:20:8a:df:2a:5c:
db:8a:dc:d7:44:21:c8:f2:d5:7e:aa:0a:cc:5f:e9:
b8:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:D1:AC:F6:79:4E:EA:3C:16:48:E5:CE:BE:15:D3:19:D5:DA:4B:06
X509v3 Authority Key Identifier:
keyid:AD:36:90:93:A3:2D:1B:7E:0E:BB:E3:24:45:1C:58:D7:48:AE:CD:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTaQk6MtG34Ou-MkRRxY10iuzUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3b222e-a4b3-4fbe-839f-363a558e19be/1/rTaQk6MtG34Ou-MkRRxY10iuzUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3b222e-a4b3-4fbe-839f-363a558e19be/1/rTaQk6MtG34Ou-MkRRxY10iuzUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:bd:da:10:cc:3a:76:3f:cc:11:99:2d:dc:0f:f5:46:b9:7c:
58:6e:db:eb:87:22:fb:65:d6:4a:f0:cf:f6:8f:7f:8b:18:5c:
0e:a7:aa:8b:4e:ad:25:1a:4d:b6:39:fd:07:69:5a:2b:be:96:
f5:c3:38:d3:73:69:11:08:ed:96:44:d8:05:66:00:1f:7a:d8:
e0:e6:02:dc:31:34:f3:4e:5f:b1:b1:d7:dc:a3:37:1e:c6:c7:
51:a3:c3:86:45:58:1c:a6:92:20:de:18:4e:10:f2:5e:25:59:
8c:4a:52:56:0d:9c:f0:da:ab:a6:61:7f:94:d8:23:73:5d:39:
0f:12:47:83:6a:b3:d3:f0:74:a3:1a:6f:3c:35:ad:87:fa:a5:
0b:ae:e8:e7:22:67:30:c5:63:f1:bb:aa:48:4b:f4:7a:6f:92:
e0:aa:b2:90:7d:52:df:84:18:58:60:ef:83:6e:c8:84:69:e2:
64:46:1e:6d:a4:8d:15:b5:3c:3b:47:0d:ac:f8:c1:3d:b8:20:
17:66:ac:35:14:e4:2c:cb:60:e4:44:a4:21:bf:00:ea:8f:af:
5b:e2:a6:12:95:46:ca:a7:5a:75:3e:23:6b:cd:41:8b:1f:23:
3d:91:f9:12:5e:a6:dc:f3:d6:fd:a5:6d:bc:77:7f:20:b9:f9:
c2:87:30:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:32:06 2025 by rpki-client