Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
File: tu2bXLS2SGbDg97kV2v_P_h1JC0.mft (raw, json)
Hash identifier: mm9B4a+CqNdbRg5PRnfvHMPQuAtWdDPY3FBQylrKxYU=
Subject key identifier: 30:B6:66:A6:D5:91:A5:F3:CD:C9:9A:28:CE:CE:DA:90:57:89:16:DA
Authority key identifier: B6:ED:9B:5C:B4:B6:48:66:C3:83:DE:E4:57:6B:FF:3F:F8:75:24:2D
Certificate issuer: /CN=b6ed9b5cb4b64866c383dee4576bff3ff875242d
Certificate serial: 0199FAD80FAAD8EF1C4878ACAAE95E31D137
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
Manifest number: 0E59
Signing time: Sun 19 Oct 2025 05:01:27 +0000
Manifest this update: Sun 19 Oct 2025 05:01:27 +0000
Manifest next update: Mon 20 Oct 2025 05:01:27 +0000
Files and hashes: 1: Cr7WIZXJqqSxx1MgWk3fJvY56gA.roa (hash: W0p2Ng/L4A+CUhGlPSgje47dkJ8+aMEjdUAnh4zo9Rc=)
2: tu2bXLS2SGbDg97kV2v_P_h1JC0.crl (hash: 2RhMk19hGMXuodmXR0u0FsV2w8wnCFuenwLwhUex+Ws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:0f:aa:d8:ef:1c:48:78:ac:aa:e9:5e:31:d1:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ed9b5cb4b64866c383dee4576bff3ff875242d
Validity
Not Before: Oct 19 05:01:27 2025 GMT
Not After : Oct 20 05:01:27 2025 GMT
Subject: CN=30b666a6d591a5f3cdc99a28ceceda90578916da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:94:ed:31:ad:0e:93:a8:07:55:a7:ab:ec:ce:
5f:dd:1e:1e:aa:aa:11:00:49:49:8b:8c:a6:22:35:
3e:9e:56:66:89:d7:5d:43:9f:3c:4a:81:c7:8d:ba:
10:6e:59:cc:f4:15:91:e7:9f:26:6c:a5:11:0e:27:
05:4b:91:59:fd:54:34:7a:4c:df:60:dd:eb:f2:a0:
c3:37:ab:3f:c2:b3:50:5f:27:51:56:68:14:74:6a:
af:6b:da:d6:e0:cd:8f:d1:9b:a2:f0:73:3b:48:d4:
1f:1a:ff:a3:71:47:8f:4d:82:d3:a3:fa:43:c5:a5:
bd:a6:e6:cd:37:1e:58:9d:26:38:dc:a3:46:21:5a:
0a:f9:9d:85:f0:df:58:2a:42:e0:36:9d:61:af:9f:
54:4c:dd:d3:b2:54:09:66:1c:61:d5:cb:97:8f:10:
3e:71:92:d7:a5:2c:c0:98:de:ee:9d:25:b7:b0:f7:
09:01:08:2c:0f:d6:39:b9:00:48:8c:58:85:30:60:
1e:9e:57:e1:66:93:2f:c0:fc:82:4a:0f:6c:32:9b:
92:cd:86:16:32:44:fe:76:8e:f1:07:88:72:1d:72:
26:8e:94:93:05:01:77:49:a9:95:61:92:21:3d:de:
df:d8:7e:16:e7:2a:c9:2b:82:40:b6:50:ce:9f:64:
2a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:B6:66:A6:D5:91:A5:F3:CD:C9:9A:28:CE:CE:DA:90:57:89:16:DA
X509v3 Authority Key Identifier:
keyid:B6:ED:9B:5C:B4:B6:48:66:C3:83:DE:E4:57:6B:FF:3F:F8:75:24:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:c9:3f:c8:0c:8c:97:69:66:a4:1f:59:1c:4f:b0:07:c4:50:
fc:a5:b6:5e:dc:33:d3:0d:88:25:95:66:62:5a:fb:64:94:59:
7b:86:88:a0:81:ea:38:10:01:88:fe:d1:07:29:55:7b:93:ce:
fb:1b:e4:7f:fa:8f:0f:32:47:81:c5:be:67:d7:1c:1b:2a:9b:
40:f4:eb:6c:0e:de:69:0f:db:65:8f:82:0e:87:22:b3:86:ec:
cb:4f:b9:c8:2b:14:82:7a:8b:e2:68:d4:87:b3:10:8d:bf:9e:
51:39:43:a9:1b:c3:1d:0c:50:32:b6:81:bb:9a:0f:c8:5b:c7:
d1:d1:04:ef:4a:85:f0:19:79:07:1b:49:a3:0c:2e:9b:74:10:
f4:85:b4:21:a8:a4:33:86:8a:ed:6f:de:59:c1:19:20:ff:30:
11:ed:26:ae:66:cc:c7:c0:5b:ee:26:20:59:50:de:be:2f:0b:
39:f4:f9:2e:99:69:62:ae:af:ae:f8:2d:1e:d8:74:2a:bf:dd:
0a:12:8e:d0:a9:44:17:81:8b:a2:d6:8b:32:a4:e1:5b:9c:57:
27:27:ce:d2:f0:da:8f:55:ab:27:7c:f7:eb:e8:05:c0:9d:93:
d3:9f:94:73:ef:44:10:f8:be:db:2c:b8:d8:c6:a2:70:bd:23:
f0:80:1e:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:09:53 2025 by rpki-client