Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
File: tE-FORdNAL-ov95JBD9IXDpYdSU.mft (raw, json)
Hash identifier: V/S7dzJQ6Be3T1TvzyHoVnnepPXaugB9Y84L8Lm5aBI=
Subject key identifier: 66:67:F9:B9:88:35:D0:2B:E5:09:42:CD:9D:E5:A6:7A:57:4E:1A:7C
Authority key identifier: B4:4F:85:39:17:4D:00:BF:A8:BF:DE:49:04:3F:48:5C:3A:58:75:25
Certificate issuer: /CN=b44f8539174d00bfa8bfde49043f485c3a587525
Certificate serial: 0199239EB3CD9BC7E26D3B090236FC0CC825
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 10:00:26 +0000
Manifest this update: Sun 07 Sep 2025 10:00:26 +0000
Manifest next update: Mon 08 Sep 2025 10:00:26 +0000
Files and hashes: 1: tE-FORdNAL-ov95JBD9IXDpYdSU.crl (hash: sjLtVCZoW+ldjPNBjIA2tuJqTWoNZOQdCIpIuUJqQAY=)
2: xUV-1OBQ9tZ_Xv0-wwfyT7s6w0s.roa (hash: kyqwYkE6bzY0EYwjT0bnHVarYHy1IZctjgwIpdkE7zI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9e:b3:cd:9b:c7:e2:6d:3b:09:02:36:fc:0c:c8:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b44f8539174d00bfa8bfde49043f485c3a587525
Validity
Not Before: Sep 7 10:00:26 2025 GMT
Not After : Sep 8 10:00:26 2025 GMT
Subject: CN=6667f9b98835d02be50942cd9de5a67a574e1a7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:87:5e:eb:97:9a:53:55:74:30:49:c4:50:5c:
56:06:57:ac:d1:19:4c:29:c5:f2:f3:98:aa:c9:91:
1a:ac:d6:09:88:63:07:b7:36:bc:78:11:5c:b6:05:
20:85:9f:05:ef:97:74:94:35:e4:e6:14:62:eb:94:
c3:c1:76:2c:5d:f2:dd:1e:08:a0:01:18:7a:de:f5:
ee:76:fa:21:57:1d:39:28:22:d3:0b:9f:56:99:4a:
02:19:11:35:4a:10:76:2a:71:2a:38:13:95:db:ad:
40:52:9e:21:a4:34:d5:d1:aa:3b:05:3a:67:dc:3c:
ee:64:10:10:f6:a6:01:15:2d:2e:0e:5d:55:d8:04:
1d:d0:22:11:bb:f2:37:75:2b:c7:e2:5b:a7:f8:5c:
b0:d2:c9:f2:c8:b0:4e:c0:91:94:36:5c:dd:96:82:
0c:7a:8f:06:d7:76:15:ad:9b:19:eb:86:c5:f5:87:
7d:7f:68:6d:12:80:41:f7:a3:08:48:d1:07:ae:0d:
a9:e2:a0:17:78:69:47:8b:02:b9:ff:97:dc:a0:01:
a7:1f:42:c9:ea:01:b9:b9:d2:42:f6:d2:c5:ba:65:
23:c1:d3:7e:2a:0d:72:24:47:d4:7b:3d:35:5f:f9:
b5:90:bb:ba:72:05:46:66:51:b6:9a:98:06:05:22:
11:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:67:F9:B9:88:35:D0:2B:E5:09:42:CD:9D:E5:A6:7A:57:4E:1A:7C
X509v3 Authority Key Identifier:
keyid:B4:4F:85:39:17:4D:00:BF:A8:BF:DE:49:04:3F:48:5C:3A:58:75:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:20:41:5d:d8:af:28:ea:76:3b:41:a1:81:a9:f7:48:9d:5f:
e4:62:e5:d1:53:b4:06:35:ed:35:6e:55:a8:d3:5f:9f:25:cb:
f4:d1:a1:a4:1b:8a:b8:dd:9e:84:5e:53:2c:e3:a1:06:4d:20:
33:95:ce:4d:8b:38:63:df:b0:93:08:52:72:e5:7c:03:42:fe:
ec:12:a6:60:c5:2e:2a:dc:11:a2:e6:6c:da:09:fd:16:9f:35:
53:15:20:61:ba:07:ec:30:2c:4e:2c:57:ac:74:9f:57:c5:5a:
59:cd:8c:d7:27:69:54:f8:97:bc:53:bd:c8:13:58:87:e7:d5:
0b:aa:c8:b4:26:98:c1:5e:4b:15:ff:d4:e1:ec:bb:1d:bb:73:
20:c4:ae:24:6d:02:d2:77:d3:0d:5c:4a:0c:4d:14:43:3f:4d:
38:7e:10:2d:73:67:23:87:30:a3:b0:42:66:5b:4a:fe:69:16:
77:68:5d:3e:b9:10:82:78:b3:19:a5:bb:9c:ec:ca:d0:2c:24:
28:89:36:7a:37:e1:ed:10:59:94:5e:cd:0c:a5:9c:08:e6:9c:
34:3c:1a:2a:85:1c:d4:b5:c4:76:e6:72:74:94:5c:9c:2a:4a:
94:a4:df:5a:09:ca:9d:e4:07:20:6e:1c:87:55:e6:50:cb:4f:
d4:57:e9:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:24:17 2025 by rpki-client