Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
File: rwlQP8rAF2lRWhny3CZX2S_TUN8.mft (raw, json)
Hash identifier: 9a+w3fXplm2OeW9qe0ss8coNB85neE9YXRapLxDdArI=
Subject key identifier: CB:FB:45:08:7B:31:51:23:CF:12:0C:5A:AA:0A:19:5E:1C:C6:D7:C2
Authority key identifier: AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
Certificate issuer: /CN=af09503fcac01769515a19f2dc2657d92fd350df
Certificate serial: 01987A5256B153AFE086A2CBF0FDC911ABD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
Manifest number: 15AD
Signing time: Tue 05 Aug 2025 13:01:13 +0000
Manifest this update: Tue 05 Aug 2025 13:01:13 +0000
Manifest next update: Wed 06 Aug 2025 13:01:13 +0000
Files and hashes: 1: bI5hqVT8m0qS2JmySaAVyieiKDc.roa (hash: Ur47592mLsTtDVQWZDc8e3eMtHnqyDHoxs3kpjL/ez4=)
2: rwlQP8rAF2lRWhny3CZX2S_TUN8.crl (hash: lRu/23KaOuXsrGG6v7idHtp+AFlkIv1TXfpJ3+OODgE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 13:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:52:56:b1:53:af:e0:86:a2:cb:f0:fd:c9:11:ab:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af09503fcac01769515a19f2dc2657d92fd350df
Validity
Not Before: Aug 5 13:01:13 2025 GMT
Not After : Aug 6 13:01:13 2025 GMT
Subject: CN=cbfb45087b315123cf120c5aaa0a195e1cc6d7c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bd:45:7e:87:87:38:0d:49:a7:60:57:9f:78:
41:4c:c0:ea:cc:2b:b9:92:88:12:5d:c7:7e:30:77:
57:53:b0:98:c6:fb:4a:df:11:78:3c:79:c0:b1:3e:
a4:a2:a6:65:cd:a6:84:da:ae:46:bf:cd:77:b2:48:
29:58:5c:d6:d5:b2:e0:2b:7f:17:5c:8a:f1:fd:23:
3b:86:76:c8:b5:b9:dd:42:9e:a4:f3:11:d1:b0:95:
9c:0b:38:c0:8a:fc:1e:48:c8:cb:ca:ae:53:70:31:
4f:93:eb:fc:b0:08:7d:7c:1b:91:bb:e6:2d:10:67:
3a:c9:53:42:44:b4:2f:2c:2c:93:b8:03:a2:8d:9d:
19:04:18:e6:f6:da:1b:96:05:99:2c:df:63:1b:20:
86:9d:32:e5:0d:d5:02:f7:04:c0:43:71:c8:af:48:
8e:83:9a:6c:79:08:e4:85:22:7b:3d:0b:3e:c4:c9:
d1:69:4f:ba:2c:72:cb:03:fe:7e:09:3b:a5:da:30:
fe:f8:82:71:4d:ab:39:a1:3f:2b:e7:03:77:ae:53:
e8:74:e2:62:98:f7:d8:a3:ce:0a:82:c1:e0:18:c8:
fd:be:66:dd:fb:0a:26:1f:cb:ea:ae:7f:de:c2:fe:
81:8a:9e:92:45:2c:98:f6:4f:40:99:ed:c0:e4:12:
c3:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:FB:45:08:7B:31:51:23:CF:12:0C:5A:AA:0A:19:5E:1C:C6:D7:C2
X509v3 Authority Key Identifier:
keyid:AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:24:25:8a:40:56:33:c7:1a:8c:41:d9:15:b3:bc:69:3d:74:
89:7e:5f:86:4c:8d:35:6d:f4:0d:95:11:9f:a4:b5:82:cf:77:
42:9c:1f:43:b6:ed:cc:22:a3:65:98:2e:80:a6:fb:00:f6:d4:
a1:da:14:35:ec:10:20:8d:f3:1c:d7:b1:5a:f9:3c:18:fa:19:
2c:0d:34:a9:d0:2b:45:08:2a:14:64:0e:e5:5f:9f:a5:20:0d:
20:5e:3e:53:2a:24:f2:ae:0d:c8:e3:4e:76:67:06:3c:1d:24:
74:e9:5c:6e:4e:1d:bb:fd:d1:e8:5b:27:a1:70:b5:4e:ea:54:
39:73:e5:0f:62:35:25:3f:76:07:2e:c8:d6:84:ae:57:ea:be:
6d:f7:33:18:ce:78:50:07:d7:0f:da:38:41:93:a5:62:39:6e:
04:83:af:aa:ce:e0:b6:30:0b:b5:a9:29:53:5a:f8:fd:72:de:
a8:f9:de:21:e2:17:13:b6:88:4c:2a:d9:43:18:49:0a:d5:f3:
9e:11:c8:67:fd:c3:f8:6d:f7:22:20:3e:d1:b8:02:c0:de:f8:
41:76:ea:9c:d0:56:d0:f1:ba:0e:a1:44:e4:11:3c:8f:e3:96:
88:3d:fd:dd:49:d6:15:44:1d:f7:cb:9f:a7:72:0f:40:23:66:
f2:30:a2:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 20:15:33 2025 by rpki-client