Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/e71c9c-f589-476c-b080-c01db9d53479/1/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.mft
File: TJ2SOjtDQWlZV2vLQAQWylz2Bg0.mft (raw, json)
Hash identifier: mZmMQim4kNMZ+z/sVjnE6zgOUTMxaNw+lT6Do1NxyI4=
Subject key identifier: 51:BA:C0:29:A5:48:05:D5:8C:F2:23:33:17:F1:10:76:52:1C:09:44
Authority key identifier: 4C:9D:92:3A:3B:43:41:69:59:57:6B:CB:40:04:16:CA:5C:F6:06:0D
Certificate issuer: /CN=4c9d923a3b43416959576bcb400416ca5cf6060d
Certificate serial: 0198D65FC767207D9CD224AF9E7F63E36B01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/e71c9c-f589-476c-b080-c01db9d53479/1/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.mft
Manifest number: 07BA
Signing time: Sat 23 Aug 2025 10:00:57 +0000
Manifest this update: Sat 23 Aug 2025 10:00:57 +0000
Manifest next update: Sun 24 Aug 2025 10:00:57 +0000
Files and hashes: 1: TJ2SOjtDQWlZV2vLQAQWylz2Bg0.crl (hash: 6Nv2HNGVE56t6Gfeai81NDFhLDvLkhOf1NvlVO6pPwM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/e71c9c-f589-476c-b080-c01db9d53479/1/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/e71c9c-f589-476c-b080-c01db9d53479/1/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:c7:67:20:7d:9c:d2:24:af:9e:7f:63:e3:6b:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c9d923a3b43416959576bcb400416ca5cf6060d
Validity
Not Before: Aug 23 10:00:57 2025 GMT
Not After : Aug 24 10:00:57 2025 GMT
Subject: CN=51bac029a54805d58cf2233317f11076521c0944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d0:d3:6f:2d:da:df:29:9d:d9:92:42:75:1b:
d7:db:ca:22:2b:46:b8:91:dc:e5:4e:0d:1f:f9:9b:
79:47:55:07:7e:26:d8:ac:a2:c7:97:a1:d7:b8:7e:
95:6d:07:2d:17:a6:6a:5e:00:b6:d2:ee:e1:56:35:
98:e3:eb:95:3b:ac:ca:b8:40:50:d1:a0:c8:e2:e3:
30:00:db:21:5c:45:64:40:fa:f4:04:61:80:f9:29:
5c:ca:ba:1d:34:81:dd:42:8e:f2:97:c3:a2:8f:0b:
da:2a:f9:54:f3:3d:38:e3:ba:bf:8a:c5:ae:bf:28:
fb:0a:d0:95:61:9f:e2:95:9b:8f:13:44:b7:c8:5f:
89:ae:b7:87:d3:ff:f1:38:ef:fe:cd:09:4e:ac:42:
a9:84:09:36:0a:e2:f5:70:9e:0b:41:51:94:d3:fd:
95:8f:28:f0:39:e5:ab:cc:41:a6:07:47:7c:f6:f4:
2c:56:a1:76:d7:49:13:4d:86:63:33:35:bb:61:52:
88:02:9b:ca:16:43:9e:c1:5e:22:04:21:e3:27:e3:
47:b6:c8:cf:0a:d2:35:ee:58:4c:7c:d6:5c:13:7e:
07:bc:89:08:20:93:70:00:e2:6d:96:5b:62:a6:08:
7c:b0:67:1d:d4:f9:9a:83:65:68:2a:96:5c:38:6c:
54:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:BA:C0:29:A5:48:05:D5:8C:F2:23:33:17:F1:10:76:52:1C:09:44
X509v3 Authority Key Identifier:
keyid:4C:9D:92:3A:3B:43:41:69:59:57:6B:CB:40:04:16:CA:5C:F6:06:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e71c9c-f589-476c-b080-c01db9d53479/1/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e71c9c-f589-476c-b080-c01db9d53479/1/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:72:f0:92:79:13:02:ba:3f:00:2d:04:9d:68:85:92:55:1d:
0e:5f:13:69:76:9e:88:ca:86:1d:28:a2:8f:31:83:2d:7d:d7:
55:ee:e6:a2:ad:b6:a5:be:25:aa:98:e4:92:34:d6:67:ce:96:
76:63:56:cd:87:df:8f:10:04:e2:64:21:c9:72:3c:35:85:7f:
10:36:cf:e9:04:4d:70:d6:b0:0f:03:30:93:c4:a7:64:68:91:
67:58:e2:8f:d1:d7:69:d7:6a:c6:79:43:9f:bb:77:92:53:de:
ef:0a:09:fe:6b:58:8a:44:48:a8:a9:b0:44:50:d0:87:1c:9c:
e5:0a:98:b2:c5:b4:af:c5:99:f1:33:bf:d0:43:bc:46:2f:20:
e3:86:c8:9e:ba:d3:7c:44:86:22:a0:c2:04:76:d5:34:45:2f:
27:66:44:83:27:77:43:02:4b:96:cd:37:89:86:6c:42:72:e0:
0c:65:df:64:49:4b:e6:2f:0e:e9:19:1b:a6:5a:b9:2c:61:6b:
cb:db:0d:ac:db:e8:db:69:98:1e:74:a2:02:c7:b7:71:e4:0d:
1c:83:7b:ef:bd:98:10:4b:db:7a:7a:95:8c:af:70:16:6d:28:
36:48:ab:be:86:b6:3d:87:07:68:c7:03:a1:ee:23:05:48:78:
24:93:0d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:39:10 2025 by rpki-client