Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
File: tu2bXLS2SGbDg97kV2v_P_h1JC0.mft (raw, json)
Hash identifier: jxDXYLAAKrwTDQTZyGBTnItOUL7xuNAOTtcrBV+v4J0=
Subject key identifier: 5D:09:FD:E3:99:1C:F8:2A:0E:A8:45:B0:4B:37:DA:A2:DE:7A:45:95
Authority key identifier: B6:ED:9B:5C:B4:B6:48:66:C3:83:DE:E4:57:6B:FF:3F:F8:75:24:2D
Certificate issuer: /CN=b6ed9b5cb4b64866c383dee4576bff3ff875242d
Certificate serial: 0198D54E9288D1704D094F1B69598FF4853C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
Manifest number: 0DC1
Signing time: Sat 23 Aug 2025 05:02:33 +0000
Manifest this update: Sat 23 Aug 2025 05:02:33 +0000
Manifest next update: Sun 24 Aug 2025 05:02:33 +0000
Files and hashes: 1: Cr7WIZXJqqSxx1MgWk3fJvY56gA.roa (hash: W0p2Ng/L4A+CUhGlPSgje47dkJ8+aMEjdUAnh4zo9Rc=)
2: tu2bXLS2SGbDg97kV2v_P_h1JC0.crl (hash: cIUS3/moSo6VABVMABTqZ9Vm5paqzWvIpqERhOKWyvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:92:88:d1:70:4d:09:4f:1b:69:59:8f:f4:85:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ed9b5cb4b64866c383dee4576bff3ff875242d
Validity
Not Before: Aug 23 05:02:33 2025 GMT
Not After : Aug 24 05:02:33 2025 GMT
Subject: CN=5d09fde3991cf82a0ea845b04b37daa2de7a4595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:77:f2:75:65:fa:54:39:20:32:0b:77:d1:bc:
1a:4c:8c:94:dd:bb:88:50:62:d1:b0:d4:d1:0f:89:
e6:0b:d5:3e:04:7a:c8:03:80:8f:cc:26:de:87:1b:
24:e3:04:84:ba:22:b6:47:91:9e:4d:1a:96:01:43:
71:a7:f1:e4:f7:c1:6d:61:57:37:77:68:c8:60:e0:
8d:f3:e1:7f:18:91:b3:17:b0:59:e0:be:7e:85:bf:
10:a3:35:01:7a:c4:03:71:7e:61:2c:4b:35:1a:3f:
86:d2:f4:9d:a5:22:ce:3f:e9:4c:21:46:15:a9:f9:
df:8a:d5:d6:ef:d2:19:98:71:d1:fe:8d:ce:ad:db:
5a:74:11:79:e4:06:e0:5b:de:ff:68:f2:b3:c0:f1:
27:e9:e9:e4:34:b1:ed:fd:cb:31:ef:26:b8:71:9c:
ec:0e:18:c7:c3:ba:e6:76:bb:40:2f:59:aa:03:d8:
f8:22:fa:e0:7b:ca:4e:0a:3c:d2:b9:95:c9:37:e7:
2a:c6:85:da:3a:85:78:8d:3d:3a:fe:39:b1:c6:2d:
b6:f8:30:3f:a0:0a:70:e1:e6:d9:3c:61:71:d4:96:
57:e1:6c:a7:70:d3:09:f5:0e:3f:ea:4f:8e:83:cd:
8e:df:39:d0:b3:19:cb:c5:ec:41:4d:0d:25:bb:f1:
04:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:09:FD:E3:99:1C:F8:2A:0E:A8:45:B0:4B:37:DA:A2:DE:7A:45:95
X509v3 Authority Key Identifier:
keyid:B6:ED:9B:5C:B4:B6:48:66:C3:83:DE:E4:57:6B:FF:3F:F8:75:24:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:c4:2b:bd:91:aa:1a:d7:f6:ff:90:be:d1:c8:45:e5:fa:0b:
90:43:a3:37:29:8b:9f:4d:b0:03:5c:0c:2d:5c:5f:72:a5:3e:
89:9f:15:da:17:59:94:0c:cd:55:84:1d:90:63:75:3a:40:ca:
25:9d:b7:a8:78:56:13:ef:28:4d:8c:75:4f:79:d3:fb:2b:c3:
f6:7d:1f:04:1c:00:2e:86:b7:2f:91:f3:d8:55:6b:99:f0:cf:
71:9b:1f:2a:3d:de:1e:e1:5f:9d:a8:3d:de:98:84:4c:d5:88:
a3:60:29:2f:a4:7a:41:b7:d8:03:55:57:d0:7c:54:11:1c:bd:
26:e4:7d:9f:ea:85:c6:2f:cd:08:94:d1:fd:41:4f:4e:96:a9:
56:74:a7:de:2d:38:c6:bc:64:0c:d0:39:3d:4f:fb:a3:96:2b:
77:d2:2b:6f:7c:3b:b4:5f:d2:68:52:25:8d:e5:da:c8:6b:8b:
c7:3c:07:12:11:f1:35:f2:ad:18:57:2b:4b:ef:25:72:46:58:
f7:a0:af:44:2b:b6:60:d3:e5:3d:f9:11:6c:be:2b:e7:74:e7:
7f:1d:db:d1:72:fe:10:12:93:33:9c:ff:71:69:3a:eb:86:0e:
cc:15:51:f9:62:c4:f8:5a:e8:f1:c7:14:a2:84:ba:96:6e:91:
a9:cf:f0:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:23 2025 by rpki-client