Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft
File: TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft (raw, json)
Hash identifier: F2JcD95CBMaY+ZxuWLu9bEiM+CfU2RzvPsjzTQKwh/g=
Subject key identifier: D5:97:2D:E6:05:40:7E:5D:11:9F:A8:D3:5B:9C:0A:87:32:C4:A3:82
Authority key identifier: 4C:00:06:E0:58:96:F6:FF:B3:01:61:E7:C8:DD:A2:F9:AD:05:B5:61
Certificate issuer: /CN=4c0006e05896f6ffb30161e7c8dda2f9ad05b561
Certificate serial: 0198D6CD9A758924D079685EF20634F1463F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TAAG4FiW9v-zAWHnyN2i-a0FtWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft
Manifest number: 15A7
Signing time: Sat 23 Aug 2025 12:00:55 +0000
Manifest this update: Sat 23 Aug 2025 12:00:55 +0000
Manifest next update: Sun 24 Aug 2025 12:00:55 +0000
Files and hashes: 1: TAAG4FiW9v-zAWHnyN2i-a0FtWE.crl (hash: 2MVGoC6whHB0FyjvkHc34vEoW735WuxAjk8dTcSW1ws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TAAG4FiW9v-zAWHnyN2i-a0FtWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:9a:75:89:24:d0:79:68:5e:f2:06:34:f1:46:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c0006e05896f6ffb30161e7c8dda2f9ad05b561
Validity
Not Before: Aug 23 12:00:55 2025 GMT
Not After : Aug 24 12:00:55 2025 GMT
Subject: CN=d5972de605407e5d119fa8d35b9c0a8732c4a382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fe:62:71:5d:ff:cb:5d:12:d8:bf:fc:f4:0c:
f2:e2:46:3d:dc:28:50:83:ac:6e:f6:61:32:19:68:
f9:7c:5c:e1:c7:e3:54:ef:b1:91:04:84:87:eb:94:
75:f3:ac:d9:57:e3:e3:8b:a3:3e:d3:c4:16:c9:5d:
79:ea:16:3b:a0:dc:ee:6d:e7:44:06:f6:1e:03:e5:
3a:e4:95:74:81:9e:6e:c4:d3:ce:77:43:93:4d:f2:
77:35:d7:bf:bd:81:10:23:53:1a:30:3b:c8:c9:94:
8d:e4:70:55:65:42:82:1c:2d:0b:38:16:77:24:68:
c4:ab:55:7c:4b:4e:c0:a0:4e:fb:fb:61:73:fa:7d:
8a:4f:c7:20:2b:f2:af:12:66:3e:ea:40:1c:e6:03:
71:58:33:7d:fe:f9:da:12:d3:be:ed:10:7f:13:6d:
db:94:e7:2c:e2:3f:88:40:0c:ac:42:e8:cd:d0:b1:
a1:2c:e9:b2:9a:a1:8b:d4:fa:84:11:ac:a8:30:d4:
c0:b6:f4:62:6a:16:34:dd:14:16:a4:ff:52:63:01:
5a:d3:62:06:b7:2d:b4:68:63:22:85:56:8b:43:fa:
31:57:f4:01:ec:69:cb:5d:4f:ce:09:6e:c9:16:97:
37:af:16:15:bd:fa:e9:98:6c:f2:6f:86:30:e5:fe:
80:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:97:2D:E6:05:40:7E:5D:11:9F:A8:D3:5B:9C:0A:87:32:C4:A3:82
X509v3 Authority Key Identifier:
keyid:4C:00:06:E0:58:96:F6:FF:B3:01:61:E7:C8:DD:A2:F9:AD:05:B5:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TAAG4FiW9v-zAWHnyN2i-a0FtWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:ec:b5:1a:5b:db:f2:28:fe:e0:ce:bd:ed:6d:40:12:7d:12:
ed:06:dd:86:df:ff:8c:da:42:58:44:3d:44:bd:b8:8a:11:1b:
55:cc:20:a8:fe:6b:15:b7:af:30:40:9b:6c:5c:e2:04:c1:0d:
90:6b:64:ef:ff:a1:e0:6a:0a:3c:0c:25:56:3c:fa:2c:4f:71:
f5:50:06:78:46:ab:e6:37:79:4f:c7:ac:60:6c:a2:02:fa:76:
7f:b6:fd:27:92:45:07:1c:5a:a5:1a:32:bb:79:9a:5c:7d:6e:
01:ab:2c:80:3b:3d:03:a0:03:d2:59:0a:ae:11:ef:91:53:f1:
48:9f:a0:ca:01:e8:5d:08:2d:52:52:30:9d:87:5d:78:a5:5f:
50:8e:69:20:29:cb:70:13:92:51:95:4d:fe:e4:69:9d:05:57:
8c:b5:74:5c:2d:cf:5f:49:06:e0:49:b2:10:dd:96:e6:ae:ab:
23:f1:dc:45:83:77:d7:26:b8:6a:29:45:6b:56:15:28:b9:61:
80:33:e6:35:f7:0d:c1:e0:e8:df:ed:20:d0:b1:e4:56:53:c3:
95:5e:63:f5:aa:79:b5:16:d0:37:41:fa:44:aa:68:64:57:27:
82:db:11:f1:69:74:c4:0c:d8:23:9d:28:74:fe:e0:47:ca:65:
38:0d:28:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:05:08 2025 by rpki-client