
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft
File: TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft (raw, json)
Hash identifier: 9B0C2CUmMrQE4AUs4fR/rPlrGOaG7dXtaT/BJgejc50=
Subject key identifier: 17:2E:AB:1A:D5:F4:1C:06:03:C3:39:2A:7B:DA:FD:98:BF:62:A4:BC
Authority key identifier: 4C:00:06:E0:58:96:F6:FF:B3:01:61:E7:C8:DD:A2:F9:AD:05:B5:61
Certificate issuer: /CN=4c0006e05896f6ffb30161e7c8dda2f9ad05b561
Certificate serial: 0199FC58B1EC8124D347F586687C8E638908
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TAAG4FiW9v-zAWHnyN2i-a0FtWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft
Manifest number: 163F
Signing time: Sun 19 Oct 2025 12:01:35 +0000
Manifest this update: Sun 19 Oct 2025 12:01:35 +0000
Manifest next update: Mon 20 Oct 2025 12:01:35 +0000
Files and hashes: 1: TAAG4FiW9v-zAWHnyN2i-a0FtWE.crl (hash: iiPP05B+EB1gdZ4d+8U9kKyuo/EmzHWC9uIsdm1dzQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TAAG4FiW9v-zAWHnyN2i-a0FtWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:b1:ec:81:24:d3:47:f5:86:68:7c:8e:63:89:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c0006e05896f6ffb30161e7c8dda2f9ad05b561
Validity
Not Before: Oct 19 12:01:35 2025 GMT
Not After : Oct 20 12:01:35 2025 GMT
Subject: CN=172eab1ad5f41c0603c3392a7bdafd98bf62a4bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d7:98:f9:6a:02:3c:db:35:ba:f1:03:3f:cc:
fc:d1:44:49:6a:d8:5d:41:0b:3c:9e:6e:e4:87:c4:
40:df:52:e5:4f:9d:cf:3b:a1:13:6b:9c:e6:99:5e:
c1:13:e6:82:1e:bf:87:29:e7:0e:08:c4:36:b9:bb:
e4:1f:32:7c:30:90:85:ed:79:d4:e4:1a:0a:20:02:
7b:e8:71:58:9c:80:3e:51:fc:ef:a7:f2:e9:24:11:
3c:a0:96:f3:4b:75:4c:65:21:e5:9f:b2:a3:e7:ef:
8a:10:4e:90:65:10:5e:95:2c:cb:6a:d9:79:4f:66:
a2:89:49:34:d7:db:93:05:50:da:5f:05:71:16:e7:
6a:42:62:ef:8b:1c:75:98:00:3c:45:d7:18:9b:d7:
4b:b1:9b:74:79:f0:8d:e3:f9:80:57:96:b6:c7:a4:
9b:e0:92:0a:5b:24:46:f8:ba:4e:3b:7d:3a:f2:5a:
73:15:1c:da:76:f4:1c:60:3d:39:e2:1a:c4:4a:d0:
cc:ad:ac:e1:b3:58:1b:da:e1:a1:db:aa:10:0d:9d:
7b:e4:a9:32:c9:94:18:dd:44:93:35:22:58:02:be:
18:5c:51:75:63:c9:5a:78:c8:2a:16:12:d1:27:96:
0d:ed:e7:b1:98:fb:37:31:c8:59:4c:0a:03:5c:07:
80:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:2E:AB:1A:D5:F4:1C:06:03:C3:39:2A:7B:DA:FD:98:BF:62:A4:BC
X509v3 Authority Key Identifier:
keyid:4C:00:06:E0:58:96:F6:FF:B3:01:61:E7:C8:DD:A2:F9:AD:05:B5:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TAAG4FiW9v-zAWHnyN2i-a0FtWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:c1:54:30:3e:2e:62:00:44:d7:22:30:8c:3d:32:c9:03:fe:
d9:9d:f6:b0:21:53:87:07:32:88:e2:47:67:c4:47:a8:c2:f2:
2a:55:d2:c0:09:b8:18:1e:88:a4:8f:69:11:6e:17:b3:ad:b7:
c4:7d:cb:15:3a:1c:73:d1:c5:25:4c:cb:f7:08:e4:87:a2:99:
ab:b5:db:e3:e2:96:0a:50:29:f0:26:2a:ae:bb:3e:62:59:5d:
b6:01:82:5d:b5:fd:d6:5f:e5:33:0e:4b:7e:2e:5d:0d:11:f0:
4d:86:c1:0f:3e:a5:85:46:86:be:73:fe:ef:f5:36:04:ab:75:
f1:3d:b2:04:20:b6:f9:de:31:7e:27:bf:23:89:0f:8f:5b:0b:
70:3d:b1:7d:85:95:5b:0b:0a:b1:61:c4:c6:99:10:e7:34:4b:
73:b8:2c:86:9f:6c:d9:fa:15:50:c0:5e:5e:ef:b7:c9:05:0a:
20:2b:7a:2c:9a:32:e0:20:13:e3:6e:26:c7:d2:c3:83:bb:89:
72:e4:ba:e0:f2:bf:5e:90:69:71:55:d0:69:d7:a4:0a:77:f8:
42:24:96:62:87:7e:46:69:94:b9:d6:bc:ad:b7:c7:35:7e:f2:
db:1f:eb:00:77:f0:45:40:4b:de:b4:9f:7d:f0:82:c9:57:c5:
70:17:6d:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:14:47 2025 by rpki-client