Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
File: rwlQP8rAF2lRWhny3CZX2S_TUN8.mft (raw, json)
Hash identifier: gexGRcsO5FK6lNMBfL4fa3SKXivtJp6REkGo1reimKs=
Subject key identifier: EE:11:56:56:AA:B0:F6:D3:9C:E7:00:4C:69:16:DA:D0:9F:A4:4C:59
Authority key identifier: AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
Certificate issuer: /CN=af09503fcac01769515a19f2dc2657d92fd350df
Certificate serial: 0198D5160CE5A43E0A9A3EDC4B34BF36275A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
Manifest number: 15DC
Signing time: Sat 23 Aug 2025 04:00:48 +0000
Manifest this update: Sat 23 Aug 2025 04:00:48 +0000
Manifest next update: Sun 24 Aug 2025 04:00:48 +0000
Files and hashes: 1: bI5hqVT8m0qS2JmySaAVyieiKDc.roa (hash: Ur47592mLsTtDVQWZDc8e3eMtHnqyDHoxs3kpjL/ez4=)
2: rwlQP8rAF2lRWhny3CZX2S_TUN8.crl (hash: anLBcig6yofPNkod/6GyYaL24WfUyet2P8q5jlN2B1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:0c:e5:a4:3e:0a:9a:3e:dc:4b:34:bf:36:27:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af09503fcac01769515a19f2dc2657d92fd350df
Validity
Not Before: Aug 23 04:00:48 2025 GMT
Not After : Aug 24 04:00:48 2025 GMT
Subject: CN=ee115656aab0f6d39ce7004c6916dad09fa44c59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:64:c7:6c:03:66:ce:b7:9c:cf:3a:3f:8b:9c:
82:8f:2d:3a:01:84:f9:c5:4c:27:4f:37:07:88:8c:
ef:e6:ce:b3:8d:e3:69:3a:b3:a0:8c:71:80:33:b6:
6c:9c:63:6a:77:42:06:36:92:6f:e5:3d:d5:ff:5b:
47:18:c0:1d:b4:14:05:10:92:c5:f0:e0:1a:3f:47:
5c:00:24:70:5e:4a:02:b0:6d:1d:49:02:1b:ac:7d:
f5:c8:6f:79:f2:b2:d7:2b:fc:30:d9:9f:a1:fc:54:
ab:64:53:af:27:f5:3d:f7:45:b8:f6:d5:ca:e9:a4:
63:7b:e7:a6:f7:51:65:2b:d4:0a:f0:18:11:d3:b2:
99:95:c7:b7:23:80:97:d9:f9:2a:cc:83:99:80:73:
32:40:4b:51:40:16:7e:d5:6f:c0:f5:a6:d6:f1:e3:
95:80:2a:fa:4e:47:87:d6:ad:8a:08:60:13:1a:98:
79:fd:94:e6:72:4c:89:a3:7f:ab:aa:bc:34:87:e6:
69:82:46:2a:64:3d:88:00:f0:cd:4c:94:aa:b1:fa:
50:a9:9b:13:a5:bb:7c:9e:cb:e8:57:d9:b2:dd:53:
4f:9c:a2:c2:08:24:59:eb:91:15:1d:32:82:67:6b:
ca:db:b0:b5:b5:fd:5a:71:1a:30:93:19:72:aa:8a:
8e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:11:56:56:AA:B0:F6:D3:9C:E7:00:4C:69:16:DA:D0:9F:A4:4C:59
X509v3 Authority Key Identifier:
keyid:AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:41:1f:8a:14:37:33:f8:8d:9b:7d:61:48:6e:7e:f5:8f:66:
de:a7:5d:a8:c3:3b:ec:88:23:c1:2f:55:c0:99:67:c9:df:e9:
9e:b2:37:28:79:57:de:15:80:21:d2:6e:d8:c9:d0:e2:8b:44:
c6:94:a4:b2:6c:8f:fc:d7:e5:71:fb:21:a5:9a:ef:48:ea:84:
fd:cb:98:df:98:f8:81:e4:93:91:b7:e0:27:66:74:95:04:4b:
6d:4c:1d:cb:67:65:a5:c0:95:e6:23:6b:44:a1:56:2f:ae:7f:
a3:09:ba:8c:7c:7b:20:3b:88:dc:2b:1d:10:5c:39:51:be:31:
10:58:bd:cb:11:50:7c:a6:3a:4f:8a:5b:d9:cd:9c:c6:ff:2f:
16:1f:20:a9:60:4f:8e:94:a0:a1:5c:53:b8:e0:5e:1e:a0:20:
5d:2f:50:66:a7:b2:9a:cb:fe:8c:a3:da:7a:0e:6b:84:ca:5a:
ee:13:1c:87:4e:08:53:80:fc:76:f2:a0:6f:76:82:81:2d:f0:
d6:1f:81:e4:41:8b:da:53:6b:3b:5e:72:f3:dd:26:b4:1e:75:
a4:f5:f7:ea:ae:ca:e5:ea:d9:34:c5:59:4a:45:c5:4e:0d:86:
0d:a0:a4:6b:4e:c4:78:9a:55:ae:9b:27:18:b4:96:d7:51:00:
c9:ee:94:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:18:17 2025 by rpki-client