Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
File: sTI2xNBokx4LRMmLKQqPqlVKA7k.mft (raw, json)
Hash identifier: cBXFVdQgQh3upywI+Iljdl+LniAK9RBc6YlC4cV7L9o=
Subject key identifier: F0:D6:2C:9D:F6:43:3D:0F:55:22:59:98:EC:71:DB:1A:BB:F7:7F:ED
Authority key identifier: B1:32:36:C4:D0:68:93:1E:0B:44:C9:8B:29:0A:8F:AA:55:4A:03:B9
Certificate issuer: /CN=b13236c4d068931e0b44c98b290a8faa554a03b9
Certificate serial: 0199FA6A8119B95B986451A84BF85A965430
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
Manifest number: 04A8
Signing time: Sun 19 Oct 2025 03:01:47 +0000
Manifest this update: Sun 19 Oct 2025 03:01:47 +0000
Manifest next update: Mon 20 Oct 2025 03:01:47 +0000
Files and hashes: 1: sTI2xNBokx4LRMmLKQqPqlVKA7k.crl (hash: h0PP/xt8YD6i+dV2/pCNi/PPVgd6IazDt6pKlzMOPlo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 03:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:6a:81:19:b9:5b:98:64:51:a8:4b:f8:5a:96:54:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b13236c4d068931e0b44c98b290a8faa554a03b9
Validity
Not Before: Oct 19 03:01:47 2025 GMT
Not After : Oct 20 03:01:47 2025 GMT
Subject: CN=f0d62c9df6433d0f55225998ec71db1abbf77fed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:ea:2e:8f:15:66:8f:d6:2e:cc:4a:1c:45:d6:
99:3a:ca:86:b2:b7:1e:2b:bc:70:69:e1:05:fd:0b:
b8:87:db:4b:8f:a1:b9:84:3a:07:f5:68:0b:66:bb:
d3:04:82:7e:8a:7d:34:81:09:64:69:d3:36:c8:22:
54:5c:14:3b:ba:4f:a9:ab:6a:cb:ac:27:aa:63:23:
48:6c:50:4c:65:1c:f0:5f:d1:fd:82:25:f7:6d:31:
c6:d0:60:e8:7b:5f:02:91:b6:ff:99:36:dd:74:35:
69:aa:81:68:b3:a4:60:d1:fd:a9:4c:2c:18:25:4e:
d6:21:bc:36:fc:57:28:1f:d9:0b:d7:59:a2:04:97:
1e:40:53:9c:77:2a:ed:06:85:cf:ec:d3:18:8e:26:
3e:a7:26:9e:28:30:85:38:5f:31:04:41:82:99:5a:
86:12:29:5f:70:b7:f4:f4:87:e4:79:dc:a3:c2:7a:
b4:54:47:80:a1:86:df:63:94:66:0a:82:2e:84:d5:
e7:0f:b2:bc:0c:73:0d:a1:27:71:58:1a:1c:ac:2e:
57:5d:16:a7:2d:f3:68:c6:78:f3:12:66:c2:03:3a:
52:e9:14:5b:38:8c:ea:49:57:ea:4b:af:21:fa:0f:
e4:24:28:b9:99:53:4d:fa:4d:92:37:e2:1b:c2:5c:
c7:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:D6:2C:9D:F6:43:3D:0F:55:22:59:98:EC:71:DB:1A:BB:F7:7F:ED
X509v3 Authority Key Identifier:
keyid:B1:32:36:C4:D0:68:93:1E:0B:44:C9:8B:29:0A:8F:AA:55:4A:03:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:e7:ff:25:22:d1:ec:19:c0:d6:5b:13:95:7a:54:15:44:88:
0b:7d:36:67:a9:dd:8a:dc:53:72:9b:0f:cc:a1:26:89:73:df:
96:d4:91:fe:2d:24:46:49:14:4e:06:da:ae:db:b0:34:13:5b:
95:62:a9:76:53:f8:18:02:9f:83:fe:1b:9d:36:7a:e9:78:bc:
d0:c4:75:0a:10:06:09:62:cf:3b:5b:18:f7:d6:2d:81:81:49:
73:7b:a6:e1:5d:98:a9:4c:ff:41:d7:5f:f9:f5:61:54:61:8d:
e7:78:6b:75:b1:20:25:50:cb:e6:1a:be:10:ee:33:af:59:9d:
fe:7d:ee:03:97:91:c8:15:5a:69:59:1e:9b:19:ea:ec:68:f8:
e1:5f:e2:65:cc:c7:b1:38:e3:7a:01:fc:e3:4d:fe:16:a5:a2:
50:b3:49:f5:71:e1:81:cd:45:e3:bf:92:53:0d:e8:fe:6a:cb:
0a:b9:e0:84:b9:fd:bc:f9:1f:49:f5:bb:8f:36:7f:49:8a:8b:
37:bb:7e:56:05:26:d3:f6:41:71:c4:e0:c9:3e:85:12:77:8a:
50:31:ba:aa:a5:8f:8b:24:65:11:92:b0:d9:00:7f:ed:46:3d:
68:bd:cd:4c:78:b9:1d:c8:7f:01:fd:73:04:1e:c0:0e:c5:da:
d3:83:05:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:09:58 2025 by rpki-client