Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/e71c9c-f589-476c-b080-c01db9d53479/1/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.mft
File: TJ2SOjtDQWlZV2vLQAQWylz2Bg0.mft (raw, json)
Hash identifier: S/lVgYxSWLEKpms6L93evdARwX7QO3MclnZHIIAm9+k=
Subject key identifier: 37:C7:07:48:3D:EF:58:86:69:EE:4C:C7:36:84:59:52:19:8E:7D:00
Authority key identifier: 4C:9D:92:3A:3B:43:41:69:59:57:6B:CB:40:04:16:CA:5C:F6:06:0D
Certificate issuer: /CN=4c9d923a3b43416959576bcb400416ca5cf6060d
Certificate serial: 0199FBEB4B160721B133042AAD1C597229F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/e71c9c-f589-476c-b080-c01db9d53479/1/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.mft
Manifest number: 0852
Signing time: Sun 19 Oct 2025 10:02:05 +0000
Manifest this update: Sun 19 Oct 2025 10:02:05 +0000
Manifest next update: Mon 20 Oct 2025 10:02:05 +0000
Files and hashes: 1: TJ2SOjtDQWlZV2vLQAQWylz2Bg0.crl (hash: 4U3vXWmVePj3/I5yGAP2670GZ5wO8QRL87JIpkYBcoc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/e71c9c-f589-476c-b080-c01db9d53479/1/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/e71c9c-f589-476c-b080-c01db9d53479/1/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:4b:16:07:21:b1:33:04:2a:ad:1c:59:72:29:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c9d923a3b43416959576bcb400416ca5cf6060d
Validity
Not Before: Oct 19 10:02:05 2025 GMT
Not After : Oct 20 10:02:05 2025 GMT
Subject: CN=37c707483def588669ee4cc736845952198e7d00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e1:3f:f1:fc:76:c5:b9:a9:99:f2:fc:80:21:
ee:91:fd:1c:81:f7:6f:af:ba:c3:11:9a:11:b5:7f:
f5:52:55:79:b4:fe:ab:8c:da:a0:fb:12:6f:84:46:
3d:a3:fc:13:5e:02:51:3e:30:cf:b5:a1:7a:f1:86:
c4:6d:94:e9:03:91:30:26:d8:e9:0b:b9:3e:13:67:
2a:a9:81:c1:6a:11:fa:a1:02:6c:18:35:66:c2:2b:
c5:e1:b2:2a:8d:c7:84:cd:03:eb:1d:98:29:e9:c4:
fb:e8:5a:81:ec:e0:70:74:a9:00:fb:6b:b8:90:f8:
a7:9c:91:a0:ce:40:50:a6:97:aa:53:c8:65:d5:e1:
d3:69:a4:04:c1:89:29:ce:8f:17:70:36:55:b3:24:
f8:5f:c4:91:74:75:78:f8:02:17:7c:42:de:07:02:
c9:30:2a:50:d7:68:3c:a4:b4:e9:25:15:94:94:95:
a1:ed:12:17:41:46:ec:d3:5a:1a:49:c1:46:14:15:
3f:20:e3:7e:f8:ab:78:25:87:90:16:49:9d:f6:dc:
2c:87:12:b4:e0:3c:71:59:52:da:6f:5b:b2:10:e8:
b8:01:7f:0d:4c:cf:b8:6c:ef:ae:5f:7f:cc:f7:d9:
88:d9:5c:c9:0b:b9:d2:aa:de:84:9f:81:02:05:72:
3c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:C7:07:48:3D:EF:58:86:69:EE:4C:C7:36:84:59:52:19:8E:7D:00
X509v3 Authority Key Identifier:
keyid:4C:9D:92:3A:3B:43:41:69:59:57:6B:CB:40:04:16:CA:5C:F6:06:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e71c9c-f589-476c-b080-c01db9d53479/1/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e71c9c-f589-476c-b080-c01db9d53479/1/TJ2SOjtDQWlZV2vLQAQWylz2Bg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:fc:9a:5f:0b:dc:d5:42:2d:b8:c2:6f:e0:55:c3:9d:3e:f9:
7d:bb:f1:26:53:75:53:3c:a5:b7:e3:c7:b3:5d:9b:b7:06:ed:
bd:6b:1d:a1:8c:12:c2:02:ba:c2:4e:9e:d1:a6:a9:76:c9:57:
88:ca:97:a6:f6:ea:5c:23:f0:41:87:b5:07:d8:b3:a0:c9:93:
30:45:96:51:69:bd:72:e6:cd:b0:c2:f6:f6:2d:d2:5c:bb:2f:
ab:9a:a6:16:93:3d:70:6d:d0:8e:ef:3e:30:45:f5:f8:fb:38:
1a:8c:d7:03:51:71:60:78:10:6d:86:1a:bb:d4:cf:28:cd:fc:
ee:d0:15:5b:c6:bf:1a:26:61:d7:5b:65:b8:f4:82:78:f5:82:
51:8f:c2:5a:a7:f8:0e:2f:e0:a0:8f:ad:2a:67:c9:f1:0f:1c:
6a:2d:45:c0:cc:a3:cc:6d:4e:4b:3b:1c:da:4d:f4:f6:f3:21:
04:8d:85:29:4f:c2:5c:ec:3c:1b:4e:c8:55:b2:85:59:fc:65:
d6:93:b2:59:4a:ac:f8:73:c4:a3:bd:78:b7:26:31:c3:aa:4d:
8e:22:c4:e0:6c:c7:f1:87:47:9c:87:40:1e:eb:f3:fe:0b:88:
99:41:47:9b:2a:f1:ae:eb:54:32:35:0a:11:ed:f1:03:2c:36:
f0:00:2d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:08:24 2025 by rpki-client