Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft
File: tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft (raw, json)
Hash identifier: YVFAYlaeSG3fBQfUAoXA4PAT3FFZnprRPyjOEXNfUbI=
Subject key identifier: B3:D0:41:05:F7:6A:81:65:40:7C:70:00:B6:F8:32:F9:83:BA:5F:40
Authority key identifier: B5:94:EB:B6:74:8F:DC:12:12:7C:3F:92:7E:7F:B9:B1:AF:89:26:2C
Certificate issuer: /CN=b594ebb6748fdc12127c3f927e7fb9b1af89262c
Certificate serial: 01988EEC391802A37D4C4972039B8C9516A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZTrtnSP3BISfD-Sfn-5sa-JJiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft
Manifest number: 1622
Signing time: Sat 09 Aug 2025 13:01:42 +0000
Manifest this update: Sat 09 Aug 2025 13:01:42 +0000
Manifest next update: Sun 10 Aug 2025 13:01:42 +0000
Files and hashes: 1: tZTrtnSP3BISfD-Sfn-5sa-JJiw.crl (hash: NR2ILsBnkDOuQXRJtlrNahHphkYP/0xRQEM6n0eNxio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tZTrtnSP3BISfD-Sfn-5sa-JJiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 13:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:ec:39:18:02:a3:7d:4c:49:72:03:9b:8c:95:16:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b594ebb6748fdc12127c3f927e7fb9b1af89262c
Validity
Not Before: Aug 9 13:01:42 2025 GMT
Not After : Aug 10 13:01:42 2025 GMT
Subject: CN=b3d04105f76a8165407c7000b6f832f983ba5f40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d7:1d:f0:9b:de:ae:cb:b6:02:1b:24:c0:2b:
65:5c:28:ad:db:c9:40:4e:0e:f7:3f:92:7f:1c:21:
c7:25:14:cb:a4:dc:2a:4f:9e:16:f3:01:8e:be:8f:
fb:8d:bc:2b:ee:89:46:7b:1d:c7:bc:ad:43:b3:5d:
85:4c:8c:91:ca:c4:68:3f:fd:a6:10:85:22:96:2a:
a1:c0:7f:ac:59:97:5d:00:8e:c4:bc:6c:37:c8:80:
04:89:50:5c:51:e1:23:a3:16:98:eb:a5:88:c8:59:
c5:43:ad:73:04:b5:88:81:53:6b:1f:70:1a:b9:d2:
f1:a2:35:3a:71:20:aa:e2:b4:3c:2f:9f:57:71:8b:
96:d0:54:3e:0b:46:2f:5d:a3:2d:1c:31:c9:94:e3:
f2:94:37:e3:30:79:b0:e5:b7:1b:df:ac:9f:74:ee:
b9:81:42:fc:1c:f9:2f:1a:0c:d1:50:3b:c2:5d:a0:
4a:2c:7a:45:41:cf:d3:6e:d5:ba:57:0e:72:6e:c8:
66:dc:4d:8a:cb:2e:36:4e:c4:77:8d:39:45:74:6d:
88:14:14:59:24:c0:00:64:cb:9b:47:e7:a2:bd:0e:
4f:7b:e9:32:18:58:5c:a2:4a:a4:72:cc:9b:12:c5:
38:15:df:0c:fb:81:d7:74:4b:ba:ec:a4:c3:a4:a8:
cf:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:D0:41:05:F7:6A:81:65:40:7C:70:00:B6:F8:32:F9:83:BA:5F:40
X509v3 Authority Key Identifier:
keyid:B5:94:EB:B6:74:8F:DC:12:12:7C:3F:92:7E:7F:B9:B1:AF:89:26:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZTrtnSP3BISfD-Sfn-5sa-JJiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:37:c3:76:92:fc:8a:1b:b4:bd:31:91:c5:3e:1a:8e:76:21:
b7:72:1a:20:c7:24:a1:47:f9:34:f8:f5:91:a8:e9:0b:13:c7:
99:c7:4d:1b:3f:a0:76:ff:e3:8b:24:38:9b:ae:ad:35:4f:df:
16:09:70:59:a8:2e:81:d1:c0:98:c9:35:2d:27:39:6c:36:18:
52:c6:94:18:84:c9:50:f0:ba:1f:89:99:f8:24:23:83:4c:8f:
2d:8e:8c:f6:bf:b1:39:b8:77:58:44:3b:1d:95:e4:cc:ce:2f:
a8:3e:c8:d2:cc:ad:08:d2:56:bd:83:21:28:90:47:4e:bf:aa:
30:59:59:8c:18:10:b7:9b:66:51:ac:2d:a6:ef:ae:cd:e8:45:
2e:10:f0:12:25:6c:02:c6:d5:73:e2:09:f4:52:5e:47:d5:05:
85:41:a9:76:6c:cc:ae:48:46:70:66:93:02:ed:ef:20:a8:73:
84:6a:39:a5:4c:c5:9e:e5:0d:3f:d8:b2:8a:7e:8e:c2:37:b0:
5b:20:85:35:68:b6:68:4a:2a:63:00:6b:27:eb:a8:e3:5f:d5:
5f:7c:17:51:16:33:64:ff:63:6d:58:10:45:6c:f3:3b:fd:77:
7c:47:8c:10:e1:9b:26:47:55:0b:76:4b:a4:84:55:c9:6c:d3:
a2:4c:65:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 22:42:00 2025 by rpki-client