Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
File: tF5iJw0g-UZ6avx4lj28-4D79So.mft (raw, json)
Hash identifier: FaffCuX5cUDL7dodIPOALSlWdTT1LEqJBgYu+xrvVOI=
Subject key identifier: 0A:BD:5B:33:7F:FA:67:F8:94:D8:9A:BB:2D:27:C9:1B:3F:01:18:7F
Authority key identifier: B4:5E:62:27:0D:20:F9:46:7A:6A:FC:78:96:3D:BC:FB:80:FB:F5:2A
Certificate issuer: /CN=b45e62270d20f9467a6afc78963dbcfb80fbf52a
Certificate serial: 0198D660F395B5B8B1C2DF7287AD84C450E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tF5iJw0g-UZ6avx4lj28-4D79So.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
Manifest number: 0DC9
Signing time: Sat 23 Aug 2025 10:02:14 +0000
Manifest this update: Sat 23 Aug 2025 10:02:14 +0000
Manifest next update: Sun 24 Aug 2025 10:02:14 +0000
Files and hashes: 1: tF5iJw0g-UZ6avx4lj28-4D79So.crl (hash: HKuNDg+Zedwq0oJIu5TPVaBqxxUKevu9TqD1viMDmF4=)
2: uvCFX9itk7RPxPZl6lvvghFjg1E.roa (hash: P3N8o135VPbcqFaS3kCnXkMSVi3GCBY96T9QuQyMyig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
rsync://rpki.ripe.net/repository/DEFAULT/tF5iJw0g-UZ6avx4lj28-4D79So.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:f3:95:b5:b8:b1:c2:df:72:87:ad:84:c4:50:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45e62270d20f9467a6afc78963dbcfb80fbf52a
Validity
Not Before: Aug 23 10:02:14 2025 GMT
Not After : Aug 24 10:02:14 2025 GMT
Subject: CN=0abd5b337ffa67f894d89abb2d27c91b3f01187f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6e:52:f6:55:b6:2a:0a:bc:03:15:75:b7:1a:
11:6e:b4:d4:d0:fc:f9:ae:dc:0a:80:bc:fa:61:e5:
b0:75:8c:0b:de:42:3e:33:68:27:25:48:9f:98:db:
09:05:ed:a6:fa:9c:55:73:62:ea:50:c4:a2:92:5b:
ca:41:31:7a:33:30:37:f3:ef:12:62:35:32:69:8c:
d8:e7:46:46:c4:b9:f0:ef:fe:39:c9:8e:21:b8:62:
87:27:f1:25:bb:0e:c8:ed:d8:6b:c0:7c:0a:0b:92:
ab:02:fc:32:e9:f2:db:97:ad:9f:4b:62:90:e5:da:
41:62:d9:e0:5e:be:72:b3:5b:e7:57:00:77:9b:73:
55:bb:a0:f5:b1:2e:03:24:eb:7c:0b:bb:2a:b3:3c:
36:6c:19:6e:71:fe:d8:b0:4f:4a:95:df:50:4f:8f:
16:57:74:4c:cc:00:b7:e2:25:45:1e:8f:90:87:0f:
61:ee:cd:51:5d:7f:3a:df:2b:2a:aa:d7:df:3d:ec:
ab:4c:a9:54:c8:19:13:7e:8f:16:cc:6f:82:3a:fc:
0e:cd:52:f4:cb:f0:85:ee:bf:53:15:64:72:00:ba:
da:50:2e:38:70:4d:80:f7:ed:41:a2:c3:ba:85:bc:
f0:9b:1a:ad:18:72:36:86:66:76:34:2c:d6:7a:54:
78:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:BD:5B:33:7F:FA:67:F8:94:D8:9A:BB:2D:27:C9:1B:3F:01:18:7F
X509v3 Authority Key Identifier:
keyid:B4:5E:62:27:0D:20:F9:46:7A:6A:FC:78:96:3D:BC:FB:80:FB:F5:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tF5iJw0g-UZ6avx4lj28-4D79So.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:7d:a8:ab:17:fd:9a:42:9a:d8:9b:d0:51:3d:3a:ba:b2:ad:
a2:cf:69:34:3c:7e:ef:6b:1b:5c:c4:56:2b:f4:f3:30:07:2c:
39:18:be:ce:9c:2d:50:63:e4:92:b3:57:3a:57:ed:23:f1:17:
0b:dc:01:c9:ea:96:18:76:ee:23:e8:0a:7f:09:eb:d7:06:26:
ed:1a:27:a0:b1:27:81:31:f0:e9:69:96:1f:50:c0:95:a4:32:
0e:86:c0:8d:e9:96:3d:a3:19:af:83:46:95:94:7c:36:38:27:
d4:8f:fc:2d:bd:70:80:39:d8:5b:a9:ac:f5:8f:4c:4d:02:51:
4b:f7:8d:c5:6e:0c:1d:59:fd:2b:cc:4c:9e:70:19:18:39:53:
ec:f5:51:4c:a5:40:61:cc:28:d3:f7:b5:78:f9:e7:d3:57:5c:
8a:3e:6d:52:91:b2:28:e8:49:e4:df:93:d1:6f:49:e1:10:0a:
15:7b:e5:55:9c:46:53:9d:9a:ed:79:f3:72:b7:5e:9c:25:93:
a6:cb:f5:9f:41:2d:98:92:18:76:c6:61:72:46:38:61:84:21:
13:75:e5:42:71:9f:99:2b:0f:45:cb:8f:db:a8:22:04:e7:b1:
0b:4e:82:74:f0:63:82:a2:80:25:2f:25:49:2b:d5:ef:f4:03:
01:aa:06:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:13:13 2025 by rpki-client