Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/847c9d-201c-477a-ba96-328f66996ec1/1/TShV3jcUZy5-qwceFh0RoDDT048.mft
File: TShV3jcUZy5-qwceFh0RoDDT048.mft (raw, json)
Hash identifier: MAa+6ZDpgEbf/9uX13MjAKVjNMeOnCRI6vUIjO05jiY=
Subject key identifier: 2F:7C:69:E7:44:2F:87:D5:9A:00:5C:95:4C:A5:3D:86:00:53:3B:0A
Authority key identifier: 4D:28:55:DE:37:14:67:2E:7E:AB:07:1E:16:1D:11:A0:30:D3:D3:8F
Certificate issuer: /CN=4d2855de3714672e7eab071e161d11a030d3d38f
Certificate serial: 019A00DA1B024415BB40250E106B7ED3350A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TShV3jcUZy5-qwceFh0RoDDT048.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/847c9d-201c-477a-ba96-328f66996ec1/1/TShV3jcUZy5-qwceFh0RoDDT048.mft
Manifest number: 039E
Signing time: Mon 20 Oct 2025 09:01:25 +0000
Manifest this update: Mon 20 Oct 2025 09:01:25 +0000
Manifest next update: Tue 21 Oct 2025 09:01:25 +0000
Files and hashes: 1: TShV3jcUZy5-qwceFh0RoDDT048.crl (hash: 1heIcmAPdpl09RSuI/lfSNxOStaVf5ksC3lGhlnb6vA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/847c9d-201c-477a-ba96-328f66996ec1/1/TShV3jcUZy5-qwceFh0RoDDT048.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/847c9d-201c-477a-ba96-328f66996ec1/1/TShV3jcUZy5-qwceFh0RoDDT048.mft
rsync://rpki.ripe.net/repository/DEFAULT/TShV3jcUZy5-qwceFh0RoDDT048.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:da:1b:02:44:15:bb:40:25:0e:10:6b:7e:d3:35:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d2855de3714672e7eab071e161d11a030d3d38f
Validity
Not Before: Oct 20 09:01:25 2025 GMT
Not After : Oct 21 09:01:25 2025 GMT
Subject: CN=2f7c69e7442f87d59a005c954ca53d8600533b0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:45:67:dc:76:67:ac:c2:0b:54:04:da:44:5b:
19:ac:73:29:d3:14:e3:4b:a4:6b:c1:32:58:64:e4:
c7:6a:d1:78:c3:fa:e2:32:f4:1e:37:8e:34:1d:9b:
d0:53:3a:18:00:1c:8b:35:b2:87:48:25:63:22:06:
bb:f2:19:1c:2e:4b:96:6a:6e:58:c8:e2:00:59:fe:
fb:56:9e:c2:2e:60:54:f6:0d:9e:d7:12:ac:d3:a3:
80:a7:d7:34:54:62:2f:c5:07:58:c1:65:d1:68:95:
c0:bb:25:c3:fe:34:08:69:73:98:ef:9b:1b:c9:ed:
f1:f8:bf:89:31:85:10:24:84:22:eb:85:37:df:c2:
81:93:93:f8:68:4b:02:91:5f:31:d0:e1:ea:60:14:
b2:0c:0a:a4:11:f8:9b:75:f8:5b:37:56:d1:55:34:
e1:50:36:9d:b2:9d:c3:76:14:81:b1:85:3c:df:48:
26:b9:ff:dd:4f:af:24:7a:2b:f7:f0:7a:d7:f5:b1:
ac:fd:af:8f:3e:eb:5f:8c:46:f4:cd:05:ea:da:5a:
5e:8b:34:f7:92:02:bd:ea:02:55:57:f8:ff:a3:d2:
79:61:14:16:fd:1a:96:16:39:59:f4:6e:51:0c:d2:
40:88:6f:45:56:92:22:5f:2c:3f:e7:e2:5b:db:35:
7d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:7C:69:E7:44:2F:87:D5:9A:00:5C:95:4C:A5:3D:86:00:53:3B:0A
X509v3 Authority Key Identifier:
keyid:4D:28:55:DE:37:14:67:2E:7E:AB:07:1E:16:1D:11:A0:30:D3:D3:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TShV3jcUZy5-qwceFh0RoDDT048.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/847c9d-201c-477a-ba96-328f66996ec1/1/TShV3jcUZy5-qwceFh0RoDDT048.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/847c9d-201c-477a-ba96-328f66996ec1/1/TShV3jcUZy5-qwceFh0RoDDT048.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:41:0c:c1:8a:0d:77:54:38:2c:a6:c2:3c:3a:ec:e3:27:e1:
62:96:a9:4d:3a:60:ad:ab:a5:c7:15:1c:df:11:9e:b8:11:a5:
18:6f:b8:06:a4:35:44:9a:23:2b:6c:53:6e:63:d2:59:ff:2b:
6f:a0:7a:49:b1:a2:e0:2e:07:02:d1:db:78:3f:ae:e3:38:74:
09:40:db:32:47:d4:1b:19:40:85:1d:62:26:dc:04:95:c2:51:
7f:b1:a5:53:a7:5e:bd:16:73:ce:21:b6:a9:20:d3:ea:93:48:
8c:7a:57:d6:e8:88:c4:06:33:25:6d:b7:53:7d:c6:38:73:58:
e7:0d:5e:6b:0a:fb:f1:4a:69:9a:2e:91:fc:e9:1b:f9:28:40:
20:e6:b4:ed:a8:4e:9a:1d:4a:ce:c7:2c:21:85:55:f1:e5:b5:
12:74:37:53:ec:31:60:e5:5b:d4:b3:f6:bb:67:0b:b9:8b:89:
32:b4:6c:3f:42:a1:90:a0:8b:61:6c:11:a1:dd:02:dd:a1:3e:
75:c1:9c:8b:5c:9a:0b:ff:50:cb:be:65:1b:cd:93:fc:02:e0:
89:2e:8f:50:ca:45:86:29:fb:58:9a:2a:d4:e7:e3:38:93:e5:
aa:fb:0b:a5:56:07:cc:9f:dc:7c:66:0a:17:96:2e:48:79:9d:
f9:ea:2b:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:32:43 2025 by rpki-client