Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
File: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft (raw, json)
Hash identifier: mU68HqHZm92bQkdX//gY0be8kzuGoNKMR1nMwZ5Ewn8=
Subject key identifier: 7A:E5:E5:A9:12:BA:9B:BB:98:85:C6:59:DA:96:38:2F:43:B9:3D:9F
Authority key identifier: B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
Certificate issuer: /CN=b56daa6f850414a13f650df094506628a46dc12f
Certificate serial: 019A0110D10F35D3597C3A707C7D3048D714
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
Manifest number: 11E0
Signing time: Mon 20 Oct 2025 10:01:10 +0000
Manifest this update: Mon 20 Oct 2025 10:01:10 +0000
Manifest next update: Tue 21 Oct 2025 10:01:10 +0000
Files and hashes: 1: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl (hash: S+ZB11xEPoj4488zoNgaBOHyxtIEMNCL5FQ9gdqAVVQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:10:d1:0f:35:d3:59:7c:3a:70:7c:7d:30:48:d7:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b56daa6f850414a13f650df094506628a46dc12f
Validity
Not Before: Oct 20 10:01:10 2025 GMT
Not After : Oct 21 10:01:10 2025 GMT
Subject: CN=7ae5e5a912ba9bbb9885c659da96382f43b93d9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:df:1b:1c:46:3b:a2:44:a2:7f:a3:4e:dd:0d:
5f:df:b7:12:55:b0:72:c8:60:f5:f6:c8:96:f2:00:
96:f1:1d:19:93:21:83:09:9c:7e:92:0c:c2:4e:13:
c9:90:af:1b:fe:78:59:89:7b:f8:af:d7:e0:23:d1:
da:ec:e1:50:79:d8:81:b5:51:e2:f2:44:e7:b7:a7:
46:cd:8a:14:9d:f9:6d:9e:8f:4f:28:6b:64:ba:9c:
a1:5c:ee:1e:f7:d8:5b:fd:73:93:e7:16:24:98:af:
94:2d:ec:82:c8:13:e0:86:b3:e5:cc:f6:0c:bf:5b:
1d:28:4d:1a:a5:a1:9b:83:64:c1:fd:c6:92:f3:87:
44:d1:e8:cf:f6:c3:2a:01:9a:ac:a6:91:b1:a3:a3:
c4:70:85:01:e8:3c:79:70:22:79:ed:70:d7:7d:22:
14:02:d0:f7:1a:b8:66:a4:97:62:68:ea:2b:91:c5:
ad:cd:53:2a:bd:79:45:22:b8:9a:2d:4b:4e:e6:b7:
7a:0e:e4:a9:f5:c1:e8:a1:af:86:e8:4b:f4:6d:f7:
8a:7e:ee:f6:ae:70:05:f0:09:f2:24:80:98:85:2a:
c6:8a:e2:90:11:06:d1:3d:51:aa:9c:87:dc:5e:b0:
73:8f:95:80:fe:22:77:a1:49:43:a9:21:ca:95:3a:
88:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:E5:E5:A9:12:BA:9B:BB:98:85:C6:59:DA:96:38:2F:43:B9:3D:9F
X509v3 Authority Key Identifier:
keyid:B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:a2:d1:6c:72:96:1f:11:0f:84:dc:2d:2c:50:7f:c4:bb:7d:
9b:69:38:aa:aa:2a:a2:ba:ec:15:4f:11:52:51:fe:b5:42:81:
09:79:31:67:9c:0a:bc:fa:9e:e6:25:09:1a:cf:84:26:04:10:
42:be:f8:c6:0b:f0:6e:d1:99:f5:bb:1e:43:a0:17:11:f6:ea:
e6:2f:4d:02:bb:00:66:5c:4a:96:39:08:75:ef:92:67:ac:00:
e3:ce:01:c7:86:59:f1:07:b0:10:ee:34:ff:c2:df:2f:d8:a3:
48:6e:41:08:31:60:a4:ab:62:54:42:c4:71:57:e2:dd:d5:b7:
41:01:00:71:4a:38:59:5d:57:92:0b:69:28:29:7d:90:38:99:
54:71:4c:49:2a:d0:4d:eb:41:ab:9e:d0:88:61:e9:61:f2:91:
77:15:1d:b7:a2:42:cc:37:2a:a1:96:c2:a2:1f:3e:57:98:ff:
f1:2e:0f:51:c2:bd:91:c5:f4:01:dd:5e:15:3f:83:3b:9d:31:
aa:c0:fe:6c:e2:22:d5:09:c1:e5:01:e3:ae:ff:24:b9:b6:b8:
45:bd:64:db:67:ed:55:36:e5:fd:52:08:1b:fa:4b:7e:c3:1c:
6a:c4:5f:f9:f9:e4:97:ea:bf:ed:00:ab:b2:7d:80:43:8d:c7:
cd:f5:8b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:33:38 2025 by rpki-client