Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
File: 0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft (raw, json)
Hash identifier: aSnS64AZBwQ+YtAQnQC4oMhTLRvLYtsg+8WXnbPqWuc=
Subject key identifier: 64:CB:06:70:72:F2:0D:89:F6:BC:74:B2:93:DD:AF:AD:AA:53:C0:9B
Authority key identifier: D1:3B:BC:92:A2:FA:90:A0:A1:12:2B:83:30:34:6F:9A:61:71:D9:76
Certificate issuer: /CN=d13bbc92a2fa90a0a1122b8330346f9a6171d976
Certificate serial: 0198D4724C0E860CEAC29EB7168C1F616A34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Tu8kqL6kKChEiuDMDRvmmFx2XY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
Manifest number: 1147
Signing time: Sat 23 Aug 2025 01:01:56 +0000
Manifest this update: Sat 23 Aug 2025 01:01:56 +0000
Manifest next update: Sun 24 Aug 2025 01:01:56 +0000
Files and hashes: 1: 0Tu8kqL6kKChEiuDMDRvmmFx2XY.crl (hash: lwfZ6ot6IZrNwUAvLsk01u1FZN/ymefuD2dD6meoGdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Tu8kqL6kKChEiuDMDRvmmFx2XY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:4c:0e:86:0c:ea:c2:9e:b7:16:8c:1f:61:6a:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d13bbc92a2fa90a0a1122b8330346f9a6171d976
Validity
Not Before: Aug 23 01:01:56 2025 GMT
Not After : Aug 24 01:01:56 2025 GMT
Subject: CN=64cb067072f20d89f6bc74b293ddafadaa53c09b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:aa:a9:8b:4d:e7:35:16:75:06:73:24:ba:0e:
4f:32:d1:81:7e:9b:c0:87:2a:04:df:88:46:82:e8:
d6:fc:67:44:0b:44:40:9a:71:55:95:48:85:78:72:
d0:29:aa:d0:ff:16:48:48:fb:20:f5:02:b6:53:16:
b0:e1:ec:33:57:a8:f7:0f:27:77:a9:0f:a9:43:4f:
45:a8:e1:ed:17:f8:3b:b0:fb:9d:88:08:e3:7b:8c:
45:4a:44:d1:cc:e2:45:b1:0f:3a:7e:59:b8:ae:e0:
a3:9d:36:9e:93:b7:df:52:ed:8d:4d:a2:84:ae:c7:
eb:3c:1c:ea:8e:6f:8e:46:24:88:e8:a2:a5:eb:3f:
24:a6:67:85:52:09:f6:3e:ec:fd:28:8c:d2:a2:99:
e9:b0:15:f1:9a:13:0f:fe:0f:85:83:64:b4:4f:e9:
21:bc:d4:9d:c5:a8:c7:f1:49:2d:83:e8:a9:00:e9:
58:7c:cf:66:aa:6b:b1:30:2c:dc:87:6e:ce:dd:8b:
64:aa:4d:c9:62:10:02:89:29:d4:d3:03:56:8e:eb:
77:64:30:56:6a:67:40:45:b6:4b:6b:1a:24:f0:e3:
b9:6c:55:03:51:fc:99:44:0d:7b:9a:0c:89:f7:8a:
81:de:9c:fd:54:54:a0:bc:e8:8b:63:25:8e:31:63:
06:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:CB:06:70:72:F2:0D:89:F6:BC:74:B2:93:DD:AF:AD:AA:53:C0:9B
X509v3 Authority Key Identifier:
keyid:D1:3B:BC:92:A2:FA:90:A0:A1:12:2B:83:30:34:6F:9A:61:71:D9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Tu8kqL6kKChEiuDMDRvmmFx2XY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:4c:f3:10:52:e6:a4:6c:b9:c5:7c:bf:b1:bd:37:cf:c2:1e:
47:d8:be:d7:b7:af:76:79:cd:13:97:73:ea:23:a2:e9:51:0c:
f6:b2:94:5d:cb:92:ce:7c:39:bf:e7:a2:1a:6c:aa:c8:d1:f0:
81:eb:ad:ad:fc:4d:0c:4b:7b:46:21:2c:46:68:94:3a:a6:24:
a4:61:c9:ca:60:c1:8a:2b:a6:8f:28:96:a1:14:1c:02:b1:f2:
11:60:f1:89:1b:43:e9:ab:ff:c1:0b:25:06:b1:d8:ba:64:25:
83:f6:2d:a4:88:cd:56:9e:07:73:da:48:8d:a3:11:97:2b:d6:
13:2d:c1:be:b2:21:b6:05:58:a7:c3:af:6a:a6:af:06:08:42:
44:1e:f6:c4:42:20:d4:8c:13:3c:64:0a:06:3c:9d:ac:6b:e6:
d3:66:d0:70:62:4b:be:f3:42:d6:83:01:bf:e5:49:73:7c:3f:
96:9d:0b:92:20:ad:70:6c:4c:51:59:1b:7f:02:81:29:12:bd:
81:46:30:c3:1f:9f:a2:8f:05:92:bc:bf:31:63:d3:d9:53:ac:
aa:45:f1:2b:26:0f:f0:ba:0d:09:2d:6c:69:84:d3:82:82:10:
4a:37:fc:43:b4:6c:e0:bb:2a:06:72:ca:29:0c:f9:c8:d7:df:
0e:99:21:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:30:58 2025 by rpki-client