Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json)
Hash identifier: Jq8pscIh7SJ270dwiEiUSjB1xhL4qF0n1h5n6TZ7uNg=
Subject key identifier: F0:32:29:B5:54:9B:A5:12:CD:00:3D:E6:07:9E:CB:91:1F:28:A7:B5
Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Certificate serial: 0199FCC68DBA8F49659F48D4619FEA47060D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
Manifest number: 0BB3
Signing time: Sun 19 Oct 2025 14:01:34 +0000
Manifest this update: Sun 19 Oct 2025 14:01:34 +0000
Manifest next update: Mon 20 Oct 2025 14:01:34 +0000
Files and hashes: 1: WJX8pUUgztAx5ziEUO7pdOPaYpY.roa (hash: Zv2hcAwndmbcI8AgNFSDMAAPE42QlNQ0rd+YTdhMpog=)
2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: +Wsw9YaAWQhh1cV4hkWxrBuqt8souQ87MpHE2VJa6CA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:8d:ba:8f:49:65:9f:48:d4:61:9f:ea:47:06:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Validity
Not Before: Oct 19 14:01:34 2025 GMT
Not After : Oct 20 14:01:34 2025 GMT
Subject: CN=f03229b5549ba512cd003de6079ecb911f28a7b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7f:b9:05:c0:f1:35:4c:df:8e:7d:09:45:32:
92:54:32:60:39:38:c8:4d:98:70:b3:b9:a6:51:75:
dd:d9:76:c9:38:91:b2:bc:7c:5a:cd:c6:45:f5:5d:
db:70:9c:06:01:25:ff:7f:b2:40:eb:3c:a6:1d:3c:
b6:0d:9a:60:4d:46:d1:db:31:6e:ae:10:3a:79:f4:
e4:b5:ed:de:6e:3f:3e:5a:a8:96:18:78:85:1e:ef:
a4:b3:57:1c:a3:16:49:67:c9:85:aa:5f:6f:b4:87:
44:dd:1e:e1:d1:7c:43:6d:f9:fb:cf:c7:61:22:6f:
96:bf:45:dd:3e:70:81:16:41:72:49:17:5d:09:89:
09:4e:d3:ed:31:bf:f5:6a:45:93:17:8f:c8:74:92:
d1:c3:a5:97:d4:cc:9e:30:9a:62:3f:87:99:e1:ef:
de:4d:14:bb:18:81:60:b2:d7:f5:2f:0e:cc:40:33:
55:fa:22:3d:a1:4d:2b:5b:87:26:30:5f:05:29:cc:
c9:dd:8c:5a:41:5b:c0:a5:cb:78:f4:93:a1:30:79:
2c:98:08:97:32:0e:27:d2:17:09:25:a8:56:70:fa:
91:8b:d9:61:aa:fd:d5:31:32:3f:79:e4:05:87:31:
f6:94:b5:73:34:ac:82:5b:6a:39:41:b5:36:b9:db:
0f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:32:29:B5:54:9B:A5:12:CD:00:3D:E6:07:9E:CB:91:1F:28:A7:B5
X509v3 Authority Key Identifier:
keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:90:f1:86:65:62:6b:78:04:5d:c3:96:f5:2d:56:49:21:75:
83:59:87:66:1a:b5:55:0d:a8:5e:e5:95:f5:a7:fe:fe:9c:0c:
36:7a:e3:54:12:ee:f4:d3:ba:74:d0:61:dd:08:fb:39:cf:9b:
26:77:d4:4e:74:6f:db:a5:05:35:c8:1d:82:b5:1e:af:85:79:
ba:78:5c:8f:0d:49:fb:ae:1b:b4:bd:f4:10:ef:a6:44:eb:0f:
06:d3:b6:3e:0f:fd:7b:41:f8:12:22:04:ec:59:54:50:74:4a:
90:81:4c:a6:77:8e:fa:5f:3c:b7:0a:73:91:f5:e5:bc:93:d9:
cd:5a:c4:a5:60:85:af:8f:c5:1c:63:17:4e:2f:c3:9b:30:01:
ed:90:53:6f:d9:7e:4f:d2:6f:62:c1:4c:03:5d:33:b7:8b:b6:
41:a9:bf:a5:d0:ba:95:26:6e:46:18:dd:65:95:22:e4:3f:2d:
94:7d:14:77:c6:e5:0f:d6:d0:82:4d:f1:02:ef:a8:0f:fc:f4:
b8:c3:ce:31:ee:09:88:5a:66:67:70:3a:57:17:ff:2f:5b:b6:
84:37:fc:70:dc:dd:27:3b:e4:e1:77:10:ed:98:f2:b2:48:ab:
e0:c9:b9:b6:e1:8e:71:ab:c1:d9:dc:5e:79:ef:eb:d2:19:47:
5f:38:99:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:58:35 2025 by rpki-client