Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
File: tY6n73bYACz8pmxSD3ybYIo5XZU.mft (raw, json)
Hash identifier: bzuGOsOeplG2XUBvR0xT5PtERY8Ci2CSHJE17zjxdxY=
Subject key identifier: F5:CA:29:83:A8:19:34:DF:8D:64:ED:DA:D0:D8:91:CB:C8:BF:0B:6D
Authority key identifier: B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95
Certificate issuer: /CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95
Certificate serial: 0198D5BC2E0FF0BB0DF46210FD8B6AEC1014
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
Manifest number: 05DA
Signing time: Sat 23 Aug 2025 07:02:16 +0000
Manifest this update: Sat 23 Aug 2025 07:02:16 +0000
Manifest next update: Sun 24 Aug 2025 07:02:16 +0000
Files and hashes: 1: tY6n73bYACz8pmxSD3ybYIo5XZU.crl (hash: syA5hy0vceahrau9xd2mQvLI2ck2nlzB8x4H05Osfiw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:2e:0f:f0:bb:0d:f4:62:10:fd:8b:6a:ec:10:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95
Validity
Not Before: Aug 23 07:02:16 2025 GMT
Not After : Aug 24 07:02:16 2025 GMT
Subject: CN=f5ca2983a81934df8d64eddad0d891cbc8bf0b6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1c:d6:d7:69:8c:38:49:4c:56:c2:e3:0f:95:
38:ed:c5:62:d5:63:bf:53:06:83:3f:96:23:83:52:
05:a0:3b:a9:43:79:ac:0b:89:de:9e:9b:02:56:32:
34:59:1b:c3:b4:93:e4:2d:3d:3c:65:90:54:41:0c:
f1:4d:ea:6b:ec:e6:71:59:e5:55:1f:b2:49:0c:62:
07:44:76:bd:da:a9:db:09:26:ec:27:c3:97:ee:51:
2c:f2:bf:74:06:eb:00:24:ef:31:3b:d4:1e:c0:d8:
88:95:b1:b8:e0:76:4d:58:2d:86:93:a7:e8:e2:07:
7c:1b:2b:d0:e2:a9:75:70:85:76:22:ca:d2:7b:18:
66:79:4d:86:c8:29:05:ce:9a:f9:1f:5d:76:66:52:
92:ba:b0:3a:4f:33:9e:c2:13:96:75:f8:f9:d9:68:
09:49:2f:17:0c:b0:bd:4f:4a:17:62:ca:3d:42:69:
7f:80:33:8a:3e:3a:fd:8f:0b:1b:5e:af:f8:e7:20:
7a:fb:6a:28:1a:01:fc:b2:b0:79:c7:d4:68:5c:74:
be:65:46:05:a8:91:38:09:b9:af:35:dd:34:c9:de:
b3:00:07:5d:ad:52:0b:37:8f:fe:30:40:9f:e2:61:
c7:a1:33:5b:ce:50:a4:26:3f:80:2d:aa:ee:0b:f4:
71:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:CA:29:83:A8:19:34:DF:8D:64:ED:DA:D0:D8:91:CB:C8:BF:0B:6D
X509v3 Authority Key Identifier:
keyid:B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:33:3f:23:b9:b6:98:09:af:c0:29:9c:02:af:dd:4e:85:fb:
35:96:e9:6d:d4:0e:f1:8a:4f:37:2e:95:ac:89:8b:c0:03:6f:
0f:d7:29:7c:3f:63:19:91:1d:b9:d8:52:5f:97:97:92:83:03:
36:4f:e2:12:dd:14:9e:21:4d:b9:37:86:d4:b9:5d:f7:10:0b:
64:5e:81:6a:28:a0:f0:fa:8d:41:fb:58:02:21:c6:ba:55:1b:
a4:96:4a:7c:2e:80:1a:1e:fe:23:6f:48:6e:43:fa:71:8b:82:
3b:dc:ae:2b:2b:64:b4:85:3c:c0:43:15:76:71:1b:12:eb:47:
2a:cd:e9:8a:cb:cb:81:e6:33:8f:70:71:b3:bf:8a:5d:66:71:
69:83:f5:52:3e:5c:d2:8c:7b:0e:c4:c6:c4:3d:7c:83:ad:40:
f2:d1:11:c1:0d:9d:c3:54:da:15:f5:7f:98:f5:e4:8e:6b:7b:
cc:8d:9a:31:fa:63:e0:35:a7:57:78:5e:2c:78:c2:61:3b:d1:
8d:f7:2d:f4:20:9f:ca:66:59:26:af:c1:6e:a8:9a:fe:f6:05:
d3:08:61:7c:7a:a0:a9:04:d9:09:86:87:d0:18:9a:83:2c:75:
19:a3:78:2e:f6:77:3d:00:11:de:d8:93:ff:0d:b5:5d:5f:f5:
30:ec:fb:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:48:31 2025 by rpki-client