Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
File: tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft (raw, json)
Hash identifier: eYAdWa4nGhJAYsT0edTxPV13RHtuAZMVuxpT8aa/RR0=
Subject key identifier: 21:0D:39:0C:37:D3:FF:F3:49:A4:31:B7:94:CB:2B:BD:62:B1:08:E1
Authority key identifier: B5:3A:CA:36:84:6D:2D:30:23:64:8E:AC:58:1C:7D:9B:63:17:EE:DC
Certificate issuer: /CN=b53aca36846d2d3023648eac581c7d9b6317eedc
Certificate serial: 0198D54DE5EA31A644FA94841EC127617A0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTrKNoRtLTAjZI6sWBx9m2MX7tw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
Manifest number: 0248
Signing time: Sat 23 Aug 2025 05:01:48 +0000
Manifest this update: Sat 23 Aug 2025 05:01:48 +0000
Manifest next update: Sun 24 Aug 2025 05:01:48 +0000
Files and hashes: 1: tTrKNoRtLTAjZI6sWBx9m2MX7tw.crl (hash: WN9g3cS6y8udIUCQp6L/hChWkQu/WS4nQPv7i9wYPt4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tTrKNoRtLTAjZI6sWBx9m2MX7tw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:e5:ea:31:a6:44:fa:94:84:1e:c1:27:61:7a:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b53aca36846d2d3023648eac581c7d9b6317eedc
Validity
Not Before: Aug 23 05:01:48 2025 GMT
Not After : Aug 24 05:01:48 2025 GMT
Subject: CN=210d390c37d3fff349a431b794cb2bbd62b108e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:55:2e:d0:b3:5d:ed:1f:b9:aa:fc:68:8e:73:
32:21:1f:64:53:5e:b7:4e:01:93:d6:43:42:a7:c8:
92:8e:f5:ab:b6:05:48:85:ac:85:4d:e3:9c:57:c5:
8d:fc:ac:ba:36:81:e4:40:80:fd:85:14:04:1d:a6:
25:60:09:71:14:8a:50:29:7d:b2:ca:ef:45:3d:bc:
d0:55:9b:51:b6:c2:91:36:fc:fe:5a:4b:c9:c8:e1:
12:60:12:c8:df:5e:e3:7b:ba:85:5b:4f:34:75:23:
02:77:43:09:fd:0b:1c:29:dd:bc:48:7c:14:32:8f:
24:5e:af:77:79:f5:42:d9:cc:3d:b9:09:24:64:f1:
a0:f2:e2:5f:72:c1:ec:ad:e3:31:c4:4f:0a:3d:1e:
8e:aa:5f:35:dc:c2:9f:c7:21:38:40:1a:7d:25:45:
32:28:e3:4a:0b:11:66:38:83:ce:02:1a:18:b0:d1:
9f:95:88:68:6d:3d:c7:fa:31:63:a2:be:a1:90:c7:
cf:99:7b:ce:9f:43:42:2b:f0:8a:3f:d2:98:01:cb:
a0:19:49:af:48:ad:ed:00:b2:e5:1e:bd:f0:7e:cb:
80:e7:58:57:f0:59:89:c7:88:4c:79:c9:47:b4:a8:
4b:11:b1:13:7f:b0:c3:cc:6c:2a:a6:4d:59:23:db:
43:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:0D:39:0C:37:D3:FF:F3:49:A4:31:B7:94:CB:2B:BD:62:B1:08:E1
X509v3 Authority Key Identifier:
keyid:B5:3A:CA:36:84:6D:2D:30:23:64:8E:AC:58:1C:7D:9B:63:17:EE:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTrKNoRtLTAjZI6sWBx9m2MX7tw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:19:10:54:c3:32:90:66:36:6e:79:6b:83:09:78:ef:f9:4e:
76:78:16:18:17:3b:46:7c:19:03:cd:a2:97:49:8f:6d:dd:15:
95:40:c3:6f:a7:0b:ab:5c:48:92:4f:0a:cd:28:60:6c:22:6e:
63:3c:70:7e:65:db:c7:a1:af:92:5d:6d:5e:68:72:db:8d:cd:
c8:e5:9f:41:13:f9:7e:71:1c:bb:42:f1:cb:cd:69:1c:e1:73:
fa:bb:c7:7e:de:fe:b8:f1:7c:8e:99:f7:43:86:86:fa:a8:63:
8d:62:a1:74:d4:11:42:9f:17:c0:0d:26:72:fb:7b:48:ac:cd:
59:6e:93:33:95:87:91:1f:00:9c:4f:99:71:73:76:c8:9e:50:
aa:26:6b:9c:0e:1a:aa:4b:48:97:aa:a2:55:e0:5b:91:a9:3c:
9f:b1:4d:c5:6c:79:b1:1c:51:3d:71:97:82:6c:e8:4a:5b:0e:
c3:ed:74:89:ac:13:41:a8:9b:a0:13:be:0a:c4:c0:7f:3a:63:
e3:ca:b6:90:36:c8:11:33:a1:37:d5:f6:8e:e8:86:e6:a2:bb:
26:33:26:be:b8:e5:3c:b4:dc:e8:6e:b3:f0:bc:67:91:88:34:
b5:0b:db:eb:14:50:95:32:be:60:c1:de:fc:5e:31:71:5d:b5:
68:b6:28:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:07:57 2025 by rpki-client