Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
File: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft (raw, json)
Hash identifier: EU73VYTvIcjHqk39EiqNE9qh48DyX0dvkxa7p5OBIAc=
Subject key identifier: FE:38:B9:75:10:CE:C8:AA:F2:04:E3:41:C9:4B:26:D1:65:C2:41:6E
Authority key identifier: B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
Certificate issuer: /CN=b56daa6f850414a13f650df094506628a46dc12f
Certificate serial: 0198D5BB8A27F3C4724A5B84C788FA4EAFA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
Manifest number: 1145
Signing time: Sat 23 Aug 2025 07:01:34 +0000
Manifest this update: Sat 23 Aug 2025 07:01:34 +0000
Manifest next update: Sun 24 Aug 2025 07:01:34 +0000
Files and hashes: 1: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl (hash: +EsCsapHfICeJXHHIU9NliQ2U2KKr4Ke1BbnC/PBzEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:8a:27:f3:c4:72:4a:5b:84:c7:88:fa:4e:af:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b56daa6f850414a13f650df094506628a46dc12f
Validity
Not Before: Aug 23 07:01:34 2025 GMT
Not After : Aug 24 07:01:34 2025 GMT
Subject: CN=fe38b97510cec8aaf204e341c94b26d165c2416e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c7:95:d2:c8:d7:9f:f4:4e:7b:9d:0c:f4:10:
48:ed:6e:39:d2:37:b2:3f:3d:bf:27:9e:49:6e:33:
b1:f1:5f:db:06:4b:e0:b7:99:19:98:f6:d1:16:31:
fa:6e:82:1b:ca:93:4d:24:ef:fc:78:4f:67:fa:c7:
72:e5:aa:82:b8:73:6d:9d:cc:4c:da:71:b7:fa:2a:
5e:7d:41:18:ea:43:a0:06:20:2a:5c:8a:50:3c:5c:
e6:22:68:fd:49:9a:b1:22:d2:de:5c:ae:5c:cd:7e:
4d:18:b0:a8:26:d4:9a:83:7e:cf:82:8d:40:32:a5:
44:00:8b:c8:14:d1:7c:e7:4e:75:da:fd:8f:72:03:
0d:1a:06:0a:c4:67:73:6c:7a:80:71:7d:b2:bf:e1:
45:4d:87:c2:df:24:3d:f7:9e:95:6b:4c:ae:51:7c:
c1:ff:7b:5b:66:26:98:56:97:5e:5e:a7:5b:23:5b:
85:b0:5e:2d:31:57:92:e6:0c:3d:5a:1a:cb:26:3b:
a8:d4:74:48:72:5f:7e:e5:b1:13:ca:31:b7:be:80:
19:d1:95:6a:7c:bc:09:1e:43:54:90:ea:1d:c8:ed:
e2:8c:8d:d4:2a:e6:fa:12:32:bf:d2:bc:76:7c:ba:
58:4c:d3:15:7f:b2:c7:6b:2f:a2:0d:9d:c6:cc:10:
23:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:38:B9:75:10:CE:C8:AA:F2:04:E3:41:C9:4B:26:D1:65:C2:41:6E
X509v3 Authority Key Identifier:
keyid:B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:ac:39:91:71:fa:8a:79:55:68:01:c8:c1:ab:c0:48:8b:28:
50:c9:e6:a9:17:59:42:ec:cd:06:0a:76:d8:40:4d:b2:f1:e3:
86:8f:e7:9f:56:e3:41:2f:b8:7e:89:bc:e1:b0:2b:01:5c:40:
e4:4c:2d:b4:b6:43:40:45:7e:b2:6d:45:a8:7d:c8:1b:a9:a6:
79:f7:d0:fa:f5:71:87:b2:43:50:a0:a1:b4:b4:e0:d4:e2:a8:
84:4f:11:55:2d:35:ae:72:39:b0:86:11:91:bb:0d:32:96:9e:
e8:32:f5:79:8e:8c:d1:12:b8:2e:f2:a4:2d:3f:d7:f0:0b:69:
07:8e:9e:e9:eb:e4:71:80:52:91:56:f3:18:14:02:45:b6:12:
b3:dc:32:d0:24:f4:3d:e6:84:2d:de:13:af:db:2b:d5:78:d4:
8d:02:81:c6:13:22:f7:d3:64:65:1b:54:90:a9:65:f8:57:14:
ea:5d:13:75:d2:87:27:80:93:9c:0b:24:11:3a:e8:ce:08:f9:
bd:84:e4:d4:23:e9:0c:c8:41:08:cb:f9:08:a6:94:85:49:c2:
13:e7:3b:d5:75:c8:f4:2c:9d:32:d9:0c:2b:c5:bd:70:6f:4f:
2e:0a:e7:14:26:64:b4:29:96:89:bb:91:14:52:bb:87:12:ca:
89:77:ed:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:25:53 2025 by rpki-client