
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
File: tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft (raw, json)
Hash identifier: g39jx/PnGsKdxP7KyzRZ9coRWzDBvt0LMY15PkwlZfM=
Subject key identifier: E0:62:B9:E9:E5:A8:3C:8D:E3:4C:D2:9D:70:8F:49:96:F5:14:90:5F
Authority key identifier: B4:A3:A9:BE:77:E2:D9:FD:E7:FF:E1:F5:16:29:F9:4E:98:EA:3C:D8
Certificate issuer: /CN=b4a3a9be77e2d9fde7ffe1f51629f94e98ea3cd8
Certificate serial: 01987450A81E5E436FE70C437DD3E8454322
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKOpvnfi2f3n_-H1Fin5TpjqPNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
Manifest number: 082C
Signing time: Mon 04 Aug 2025 09:01:39 +0000
Manifest this update: Mon 04 Aug 2025 09:01:39 +0000
Manifest next update: Tue 05 Aug 2025 09:01:39 +0000
Files and hashes: 1: tKOpvnfi2f3n_-H1Fin5TpjqPNg.crl (hash: h9ZVcS78Z7/Ju1ogOleF8P5whjlZNnIWU1nAhd0AcpM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKOpvnfi2f3n_-H1Fin5TpjqPNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:a8:1e:5e:43:6f:e7:0c:43:7d:d3:e8:45:43:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a3a9be77e2d9fde7ffe1f51629f94e98ea3cd8
Validity
Not Before: Aug 4 09:01:39 2025 GMT
Not After : Aug 5 09:01:39 2025 GMT
Subject: CN=e062b9e9e5a83c8de34cd29d708f4996f514905f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f6:4b:ab:7d:32:08:f2:81:ad:cb:5b:15:b7:
5a:d6:f3:81:fb:7b:e2:06:d6:50:85:21:f0:49:e8:
3f:ea:31:6a:8f:fd:49:3a:2a:fa:36:d4:d0:01:2b:
f7:31:80:4f:97:ae:57:65:78:09:63:a9:72:1f:22:
fa:d4:a4:15:79:a0:7f:5b:44:69:36:31:cf:df:7d:
ae:c2:0d:d7:aa:0c:d5:2f:6f:df:d7:9b:a0:54:47:
a3:e1:2c:a3:e9:01:6b:ba:61:93:ef:49:9d:e4:e0:
c1:10:fa:5b:8a:94:34:ec:d2:9f:06:f8:bb:84:8e:
aa:05:8c:9a:a1:6c:7f:09:61:c8:1f:d4:4e:47:e1:
a9:ff:1a:6a:f3:6c:a9:29:f9:76:a8:27:df:9e:ec:
7a:9f:9d:e3:c2:7e:e7:78:52:65:2a:48:5d:05:28:
ae:a3:df:93:e9:88:58:36:41:56:22:28:e2:d4:9b:
e5:4f:40:e0:d2:3f:6b:73:7d:ea:2c:f3:85:0d:28:
d1:47:f3:f1:98:d4:06:8a:30:86:33:1c:3e:53:f2:
c1:82:fe:f8:ea:aa:48:9b:67:30:d6:37:c9:06:61:
ee:2d:d8:03:65:15:a7:87:44:75:2b:8d:ee:49:af:
32:3f:83:25:7d:10:c1:62:e5:1d:92:2c:fd:a9:bb:
e8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:62:B9:E9:E5:A8:3C:8D:E3:4C:D2:9D:70:8F:49:96:F5:14:90:5F
X509v3 Authority Key Identifier:
keyid:B4:A3:A9:BE:77:E2:D9:FD:E7:FF:E1:F5:16:29:F9:4E:98:EA:3C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKOpvnfi2f3n_-H1Fin5TpjqPNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:1a:4c:8a:1d:e7:a0:53:77:55:5a:54:f6:48:9c:12:44:41:
58:e8:d5:60:91:77:75:11:b9:24:cb:ae:70:21:77:76:21:0b:
99:32:c6:74:ae:b9:57:78:25:3a:dd:6f:c8:91:b2:a5:f1:75:
11:2e:ff:b5:50:d0:27:e1:42:a8:30:7e:66:27:76:e6:d6:d5:
0a:50:95:32:ce:52:bf:7b:f5:d1:e0:09:7f:78:5b:e5:76:47:
c5:91:84:53:4c:2c:77:e1:8a:5f:fa:81:cb:80:af:43:a8:3c:
4d:b1:6c:89:92:03:37:9c:72:56:a7:fb:39:bc:37:60:47:a2:
b3:86:43:33:85:d9:c1:37:8b:14:f2:e2:dd:46:87:6e:29:ee:
13:09:83:48:8a:eb:70:0f:e8:19:b6:40:8b:61:56:44:b9:ff:
96:9b:04:bb:63:1f:a8:b4:8e:a8:e6:de:04:27:00:cd:3a:8a:
a3:68:24:85:9d:31:07:01:49:c1:63:5d:03:09:12:3a:23:a6:
e1:43:73:75:aa:a8:87:4b:7b:43:61:fc:e8:d0:9c:3e:5e:07:
72:c6:4b:30:82:77:e9:9e:60:c8:d3:79:24:eb:48:a6:2d:55:
4c:01:d2:32:65:2e:dc:12:de:fa:b8:43:6d:ac:73:ff:5b:32:
d7:06:8f:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:04:45 2025 by rpki-client