Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
File: Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft (raw, json)
Hash identifier: R8neDEBVwTADCE5Atn6cOWpofnp8+CPxD084rMIeBME=
Subject key identifier: 50:43:D7:84:E6:55:E8:36:9D:80:22:B1:C7:6E:BF:7B:82:E8:0F:50
Authority key identifier: 4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
Certificate issuer: /CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Certificate serial: 0198D7731C64027D22B75CC3375CB70873AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
Manifest number: 0235
Signing time: Sat 23 Aug 2025 15:01:41 +0000
Manifest this update: Sat 23 Aug 2025 15:01:41 +0000
Manifest next update: Sun 24 Aug 2025 15:01:41 +0000
Files and hashes: 1: 2YHBxyZ_z4Fcrt68TQqMf0wkwmM.roa (hash: KMD/ALL2N2LqU8y7+1f9YpFqy5OsmhRXi+hfcZ2aIxY=)
2: Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl (hash: NpmMz9WNGbdrnbKslYS8vhSfEtxiYHmC5xNr6hlIkVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:1c:64:02:7d:22:b7:5c:c3:37:5c:b7:08:73:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Validity
Not Before: Aug 23 15:01:41 2025 GMT
Not After : Aug 24 15:01:41 2025 GMT
Subject: CN=5043d784e655e8369d8022b1c76ebf7b82e80f50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:69:d0:fc:33:38:db:87:35:29:f2:9b:7a:4e:
2f:c3:d8:e3:27:fa:69:e9:1a:c5:69:02:38:b5:48:
47:4a:55:7b:78:ff:72:6f:61:87:d3:0f:7a:e1:34:
b2:db:89:c7:36:f0:a5:69:92:42:7b:2d:04:9f:de:
4e:b3:7b:54:fe:81:46:72:bf:90:11:52:10:1d:95:
e5:e9:89:61:94:25:22:86:35:fd:5f:93:8f:70:b7:
99:f5:e0:00:e8:e7:d0:ea:e9:96:4f:89:33:f0:50:
b9:7f:a3:c9:31:af:47:d4:19:49:fe:2d:38:d1:27:
09:dd:a3:4e:25:3b:3d:37:40:b0:59:6d:50:2d:e0:
f0:ca:f1:81:42:3c:50:00:96:3a:4e:75:f5:ca:47:
71:26:e1:60:05:3c:ca:7c:ae:0c:c1:32:cb:0a:20:
95:4e:9f:b2:1b:32:50:75:99:96:a6:ce:ab:d6:96:
88:f0:9a:3e:fa:22:fa:b7:1f:6b:78:8a:b5:30:1e:
ff:40:af:32:51:28:49:bd:5e:83:9c:bc:2d:e7:7d:
83:b5:86:e5:9b:ab:69:54:a8:26:de:8a:9c:ac:71:
b3:4e:60:d4:7a:93:93:23:d1:62:1b:fb:84:48:bd:
86:7b:47:0d:2b:00:a9:0b:bd:44:29:5a:91:64:d2:
ff:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:43:D7:84:E6:55:E8:36:9D:80:22:B1:C7:6E:BF:7B:82:E8:0F:50
X509v3 Authority Key Identifier:
keyid:4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:90:66:d9:b0:18:34:3b:1e:70:76:ee:5f:93:b6:2a:9b:b4:
c7:c8:a2:3b:8c:91:5e:31:3f:89:cd:41:c2:aa:76:f7:91:9c:
81:a9:12:d4:f7:59:9b:53:cb:b6:9f:4f:1f:e2:e7:cd:dc:31:
d7:3b:4b:ae:2a:8c:48:ff:e1:fa:f0:10:ae:43:9a:38:f1:67:
84:6b:65:18:8d:05:cf:23:e7:53:c9:6b:52:49:3f:c6:8e:1d:
cf:a2:7c:1f:88:c3:73:0c:9e:e6:89:c3:7b:d8:8d:7b:8b:fe:
01:80:51:fe:b6:fb:99:13:46:81:ad:51:ee:4e:b0:6b:4c:d9:
fc:d6:99:29:4e:e1:aa:a4:58:56:74:a5:2f:b1:d8:62:5e:83:
fa:e4:d0:70:77:84:fb:69:8a:47:0b:30:b3:a9:d7:7c:a4:0f:
d4:0a:93:54:0e:76:f2:ed:06:8f:56:cd:70:52:d9:f3:03:5a:
4a:03:01:22:6e:3a:c4:0d:5f:59:b8:4b:df:2c:87:2b:b6:25:
51:fa:60:cd:6b:7a:c5:61:56:0d:b7:bf:21:c9:b9:32:c7:ec:
66:ee:c1:d1:c5:93:ad:c0:27:46:bb:bd:16:47:79:7d:88:62:
70:01:fa:04:ba:15:79:51:90:2a:74:32:56:00:7d:49:27:d6:
00:93:84:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:54:35 2025 by rpki-client