Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
File: Tom7FOgJr_PsljCL2a6GUafndio.mft (raw, json)
Hash identifier: qmAGC8pf1VCXnsBcjd85Kh0oXQC0hvTKDlII2kos9hE=
Subject key identifier: BD:52:F6:2D:12:11:B9:97:5E:D5:36:99:7B:80:90:86:4C:9C:75:50
Authority key identifier: 4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A
Certificate issuer: /CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a
Certificate serial: 0198D4DFE19D71AAD08AC83C92FB68860E6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 03:01:38 +0000
Manifest this update: Sat 23 Aug 2025 03:01:38 +0000
Manifest next update: Sun 24 Aug 2025 03:01:38 +0000
Files and hashes: 1: Tom7FOgJr_PsljCL2a6GUafndio.crl (hash: Nil0B+0umiuRoI5O61XM+sybvWNvIpgckJ6+yqZK2Gw=)
2: fxuqWXx_O_zewgAff6HXjyvgKp0.roa (hash: cm4JBhg0Zq8hHGX0z/7BWc/vnIZVK86NCDFtwq+RrhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:e1:9d:71:aa:d0:8a:c8:3c:92:fb:68:86:0e:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a
Validity
Not Before: Aug 23 03:01:38 2025 GMT
Not After : Aug 24 03:01:38 2025 GMT
Subject: CN=bd52f62d1211b9975ed536997b8090864c9c7550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:54:b6:a1:23:db:4e:10:c4:ee:74:df:35:e2:
7e:fa:2a:a9:19:49:aa:4a:a0:b7:0d:fc:04:92:7c:
39:2d:75:2a:5b:12:0e:d5:ea:b6:48:a7:05:c8:f1:
9a:43:3d:d2:9c:85:ca:bd:1c:0d:9c:d4:c3:92:6b:
ce:61:a3:e5:40:e3:11:c1:2f:8e:73:1f:24:6a:44:
c4:22:7f:69:19:a3:ed:ee:8a:5c:e3:80:9e:de:8b:
01:98:85:5c:0d:6c:e9:f1:6b:2e:bf:7d:15:dc:df:
c4:db:95:3c:cc:4b:7d:d0:76:c6:5f:93:f5:ea:14:
f9:d9:9d:56:8b:f4:58:7c:c2:55:bd:fe:fd:d9:92:
12:99:c2:77:d4:c5:ad:49:0e:f6:e9:5e:28:9f:7d:
4d:1b:a3:f6:75:85:c8:17:03:86:1a:95:b2:20:86:
e6:74:e7:44:72:a5:0f:54:10:f7:14:47:a2:35:30:
ba:ce:23:5d:de:ec:45:98:3c:6b:0e:2a:f5:c9:13:
fe:a0:72:8b:c1:98:28:af:72:a1:ee:e7:74:f1:c5:
7e:35:1c:45:4d:09:2a:2b:07:12:44:97:0d:47:85:
b4:50:89:7d:9a:4f:c1:d6:f2:fd:96:7d:d1:48:38:
f1:54:03:f8:53:7a:25:b8:5f:a4:5e:5d:a5:07:45:
b6:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:52:F6:2D:12:11:B9:97:5E:D5:36:99:7B:80:90:86:4C:9C:75:50
X509v3 Authority Key Identifier:
keyid:4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:ac:ae:c5:e3:24:6b:30:21:e1:64:47:62:73:3f:7a:6f:f2:
fa:cb:f6:e9:47:9e:c8:58:11:00:58:93:9d:16:a7:5f:53:b5:
3f:bb:33:b3:88:3b:44:dd:4f:79:e1:d7:ad:39:86:7e:02:65:
d2:b8:45:c8:99:89:2b:bf:15:aa:ae:ea:28:1a:71:f6:0a:7b:
6e:4f:a6:90:c7:db:24:9c:76:ae:c9:5d:d3:7e:17:d9:c8:23:
16:ad:c3:7f:55:be:8d:33:b5:c4:0d:7a:47:8c:06:dd:8c:31:
0c:c4:cf:0f:c3:e5:00:30:ac:ef:bc:9c:15:46:7c:2e:79:db:
42:d0:6f:c1:e2:1f:e4:94:74:2b:7b:a7:44:f9:38:50:d0:b3:
88:7c:9d:07:62:79:e8:e5:2f:e3:46:e1:15:d1:8c:68:a5:17:
f9:21:e2:c7:17:dc:ff:4e:bd:7a:d9:f1:a2:d6:f4:9f:e2:5f:
13:b1:b4:fc:67:06:c3:9f:a5:c1:40:70:08:4a:c0:e7:88:50:
8a:10:b5:a3:fa:0f:fc:a6:77:a4:70:8f:4d:f3:b5:23:79:c6:
15:09:e0:5e:33:03:bc:e1:9a:c5:b0:8d:81:ee:36:85:e5:06:
32:2c:ee:4e:b5:65:a0:55:f1:ad:e3:de:59:79:1d:93:27:f7:
46:aa:78:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:15 2025 by rpki-client