Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
File: sTI2xNBokx4LRMmLKQqPqlVKA7k.mft (raw, json)
Hash identifier: oZVAY/vhquC08piXr+ELrbxkhadV94t7T1rRgbKOB5g=
Subject key identifier: D3:55:51:4C:9A:5A:14:65:14:C8:C7:26:D8:54:B0:55:B5:59:DC:6A
Authority key identifier: B1:32:36:C4:D0:68:93:1E:0B:44:C9:8B:29:0A:8F:AA:55:4A:03:B9
Certificate issuer: /CN=b13236c4d068931e0b44c98b290a8faa554a03b9
Certificate serial: 0199221F02CF0C3D03659A9904DC045B04E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
Manifest number: 0438
Signing time: Sun 07 Sep 2025 03:01:21 +0000
Manifest this update: Sun 07 Sep 2025 03:01:21 +0000
Manifest next update: Mon 08 Sep 2025 03:01:21 +0000
Files and hashes: 1: sTI2xNBokx4LRMmLKQqPqlVKA7k.crl (hash: hoB+1w/DpJTinA+pQzb21oh50865a5MMGZ3x+y3c5L4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:02:cf:0c:3d:03:65:9a:99:04:dc:04:5b:04:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b13236c4d068931e0b44c98b290a8faa554a03b9
Validity
Not Before: Sep 7 03:01:21 2025 GMT
Not After : Sep 8 03:01:21 2025 GMT
Subject: CN=d355514c9a5a146514c8c726d854b055b559dc6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:8e:a9:ed:ae:43:f1:98:de:35:9b:e0:e3:97:
a1:ee:b6:18:b7:47:90:fd:69:22:5b:9b:fd:2e:2c:
de:05:36:50:6b:42:7a:96:18:14:be:4e:ca:09:c7:
4e:5f:0b:a4:52:2b:ce:79:25:36:12:dc:93:5c:65:
8e:97:bd:eb:b2:f8:e1:f7:a5:b2:7e:1c:26:30:98:
b0:2f:1c:b6:6e:23:47:1b:e6:40:db:18:01:23:80:
7a:c7:8b:e3:0d:a5:f9:be:f5:e3:ae:17:52:a0:ce:
fc:cf:44:2b:81:16:28:ad:23:fa:d3:d2:db:47:72:
ed:56:70:41:ea:8b:16:db:20:fa:4c:b0:f3:78:5e:
86:6b:e9:9d:3b:dd:96:bf:ab:e6:e4:de:ec:11:50:
80:46:15:8d:03:a6:aa:10:ee:41:9e:59:62:c0:07:
a3:12:94:e8:ae:55:9c:54:a6:d0:65:63:a8:f0:25:
2b:27:de:d5:2f:5c:fb:ff:aa:5c:c8:67:3c:9e:92:
31:a9:f3:a6:18:5e:aa:17:fe:dc:a9:1b:40:c9:24:
c6:bb:de:1e:23:0d:9c:b5:ec:fc:36:6d:64:17:da:
66:24:e3:38:59:78:7c:21:cc:8a:ef:18:7f:c6:b0:
c5:46:93:6c:7f:f0:12:7c:12:91:de:2c:62:1f:e0:
be:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:55:51:4C:9A:5A:14:65:14:C8:C7:26:D8:54:B0:55:B5:59:DC:6A
X509v3 Authority Key Identifier:
keyid:B1:32:36:C4:D0:68:93:1E:0B:44:C9:8B:29:0A:8F:AA:55:4A:03:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:67:74:8c:29:c0:e2:fd:63:a2:c1:a1:aa:8f:c3:c9:0b:6e:
0b:17:c7:89:fa:21:0d:e2:cc:c2:2c:f7:e9:3f:35:5e:58:c3:
6e:b0:34:e3:42:1d:75:c8:ba:0d:1b:6a:e8:27:b9:d8:3f:7e:
c1:cd:29:9f:51:aa:97:31:84:b4:c0:22:66:0f:f9:5d:87:d6:
ef:f8:59:63:e9:35:3d:fb:11:9c:61:e8:9c:5b:95:bd:75:b1:
48:68:89:d2:52:08:08:81:9a:62:d8:47:a7:1a:02:9b:f7:a7:
e5:2c:79:8a:35:ff:4c:8d:f5:5c:0a:c2:68:a5:df:9a:ca:de:
73:a6:46:eb:9b:70:b3:d0:c1:76:2f:a5:d7:9b:69:39:0c:53:
db:95:d1:c7:da:b7:c7:4f:4b:87:a6:9d:97:4e:c3:0f:47:28:
9e:a3:37:d6:61:1d:f2:a0:e3:26:cf:89:f4:d2:02:c0:f0:63:
f0:3e:fa:61:a5:48:96:8f:93:92:fb:a8:a3:6c:49:05:22:e0:
c9:d6:16:fc:4a:3f:e6:ec:1e:c1:31:7b:5e:75:e2:b0:fc:22:
7b:43:bc:6f:17:d7:5f:e8:fa:c5:5d:10:d9:d2:4a:86:21:fe:
86:13:e1:17:3d:0a:e1:e7:e3:4b:87:96:f6:0d:8c:3b:fe:76:
6d:1a:85:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:24:13 2025 by rpki-client