Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
File: tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft (raw, json)
Hash identifier: LgZGZqZnul+N9gTUup6US9kGczyBhoP1SQpEOH9s79o=
Subject key identifier: 64:7B:49:77:FE:11:5E:3F:79:B2:1B:F4:46:10:A9:EC:09:C2:7A:1B
Authority key identifier: B6:9A:AE:F1:CE:A1:9F:2F:92:6F:57:09:61:54:5C:FE:4E:D6:9A:F6
Certificate issuer: /CN=b69aaef1cea19f2f926f570961545cfe4ed69af6
Certificate serial: 0199239FDE14FE5164373505C40EB0CD4231
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
Manifest number: 0611
Signing time: Sun 07 Sep 2025 10:01:43 +0000
Manifest this update: Sun 07 Sep 2025 10:01:43 +0000
Manifest next update: Mon 08 Sep 2025 10:01:43 +0000
Files and hashes: 1: tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl (hash: 1as1KnuclAQ6mZOQGbuGOGJIl1D1p4fqae2IUm3IR6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:de:14:fe:51:64:37:35:05:c4:0e:b0:cd:42:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b69aaef1cea19f2f926f570961545cfe4ed69af6
Validity
Not Before: Sep 7 10:01:43 2025 GMT
Not After : Sep 8 10:01:43 2025 GMT
Subject: CN=647b4977fe115e3f79b21bf44610a9ec09c27a1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:64:c6:b0:75:26:63:47:aa:76:b2:31:c4:be:
34:9f:31:1d:25:68:86:bf:cc:c8:f3:65:62:37:e7:
c8:0d:5b:3f:59:7b:11:7d:15:87:26:14:8d:4f:4c:
d4:2d:07:47:01:e3:c3:67:32:70:7e:7d:7d:ba:a7:
44:8e:d7:87:9c:41:df:bb:0b:01:7b:cd:f5:19:57:
16:d4:06:3b:ed:62:d1:9b:8f:d7:a0:62:27:dc:dd:
31:a1:ab:de:47:d4:73:83:bf:28:5d:01:2b:6e:e9:
78:7c:c3:56:ca:00:07:4b:0f:9a:66:58:96:ca:78:
09:1c:fc:4c:ba:96:60:51:90:7d:98:13:45:9d:cf:
3e:68:86:73:fb:81:63:89:0c:95:44:02:13:75:fc:
6c:5d:7d:bc:5d:92:ac:c9:ea:a2:00:4c:b1:e4:28:
c5:1d:af:b9:6e:5f:e8:26:f2:92:33:7d:70:97:1c:
08:db:70:0e:b9:37:d7:21:47:18:ed:ba:e7:fa:e9:
3f:ac:a1:6d:c1:53:7f:d7:93:52:98:4f:fb:8c:3b:
64:5b:f8:b0:71:c0:1f:46:2b:26:8d:4f:98:08:ed:
6e:6c:4a:05:14:45:0f:d3:cf:a7:75:ca:0c:0a:4b:
90:c1:af:8f:0b:a7:37:da:fd:1d:3e:29:0a:cf:da:
5c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:7B:49:77:FE:11:5E:3F:79:B2:1B:F4:46:10:A9:EC:09:C2:7A:1B
X509v3 Authority Key Identifier:
keyid:B6:9A:AE:F1:CE:A1:9F:2F:92:6F:57:09:61:54:5C:FE:4E:D6:9A:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:e3:32:1d:ab:9c:f4:6f:53:45:70:07:9e:60:94:2c:a9:38:
ff:9a:8d:12:6b:28:0f:02:e8:32:68:4e:3c:72:35:4a:55:5e:
86:f9:6e:d4:85:03:4b:f8:b6:3e:f0:7b:31:61:23:d0:a6:f3:
3b:31:8a:2e:37:cc:24:8c:75:dd:e3:da:90:a7:98:31:20:be:
2f:5b:79:70:43:1b:d7:2f:2c:00:8e:53:d6:e2:55:62:75:1a:
12:3c:0c:4a:4b:71:42:d7:db:96:e4:a4:90:06:1e:40:67:09:
58:ea:c3:f4:63:a4:a3:f5:87:2d:20:67:06:e6:05:e4:85:05:
32:ec:cd:3d:63:d4:40:21:77:fd:2e:cc:59:0f:83:53:dd:9b:
b4:8b:22:a6:29:55:9f:93:2a:e5:b2:91:5e:91:22:9c:ea:c7:
7b:48:56:5a:36:fa:f4:1c:68:29:89:0e:86:29:4a:f4:24:27:
9f:e5:ed:b0:26:a5:2b:fb:6c:38:4f:db:7c:6e:6e:f3:5e:ca:
1c:85:b0:d5:76:54:f4:92:89:87:70:c0:69:fc:8e:5b:bf:5a:
3f:7b:be:c0:b4:db:59:33:3d:40:48:19:34:21:ce:a3:f2:06:
5b:d9:a7:e5:f9:12:80:79:88:10:43:d3:ff:53:00:db:e6:83:
c6:03:67:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:23:17 2025 by rpki-client