Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json)
Hash identifier: +EoikGH4jhVskrFBO8PiGb7ifQN5IMlJlYZwSjeNB2Y=
Subject key identifier: B9:29:0C:41:FF:B0:96:11:85:E1:09:77:4F:99:42:C8:30:1C:D9:B0
Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Certificate serial: 0199FB0F2082EE6EF3365E906D58D7597A06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 06:01:36 +0000
Manifest this update: Sun 19 Oct 2025 06:01:36 +0000
Manifest next update: Mon 20 Oct 2025 06:01:36 +0000
Files and hashes: 1: DvRXNlTCR35yGxJPggKI6LQ1TXY.roa (hash: uCs5edSvBBj2KY6s6HL8wAMD7pMX49G3e3NvxavAQGo=)
2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: YBYTyjRRdgiGXeQx/4y/j682xRvcgJL8FAfDAFP9cko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:20:82:ee:6e:f3:36:5e:90:6d:58:d7:59:7a:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Validity
Not Before: Oct 19 06:01:36 2025 GMT
Not After : Oct 20 06:01:36 2025 GMT
Subject: CN=b9290c41ffb0961185e109774f9942c8301cd9b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:28:2d:5b:5e:f1:84:71:2c:a5:e2:cf:29:b0:
c7:f5:cd:4d:35:96:00:73:66:99:33:a4:14:1e:25:
6c:13:64:47:b3:21:62:25:61:ab:59:9d:43:9d:53:
c1:32:87:23:88:b1:5c:85:64:72:23:c5:a1:e3:ce:
ec:46:f6:3e:b7:25:ab:19:0e:9f:9a:da:d1:9f:84:
10:b4:c4:55:15:6e:53:2a:bf:a4:1f:44:5e:a6:ac:
70:46:1f:c1:f4:a1:40:ca:74:a7:1b:ed:bf:3a:52:
52:f3:16:0c:be:28:72:90:68:ea:9c:91:14:89:4c:
55:41:e3:d5:55:ac:80:96:84:5a:2c:23:19:17:7c:
24:8f:87:d8:7f:dc:8a:3a:e6:41:ce:bd:5a:80:e9:
5e:b3:17:75:29:77:94:4a:1b:98:fa:50:c2:de:2a:
d8:42:2b:71:d8:a2:57:ea:08:61:02:b9:1a:81:a8:
9c:af:22:f9:2f:39:e8:ba:2b:56:22:6d:fd:ce:cd:
b7:20:ec:5b:2e:c2:0a:b1:d8:8c:01:75:cf:3e:18:
62:b2:22:b9:1b:26:37:77:b8:65:f9:35:a7:f7:2e:
ad:19:3e:a1:37:b0:09:a9:ad:dc:4d:76:7c:ae:1f:
2d:b7:bd:4f:0d:04:e0:a9:df:c0:57:0a:06:0b:11:
e1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:29:0C:41:FF:B0:96:11:85:E1:09:77:4F:99:42:C8:30:1C:D9:B0
X509v3 Authority Key Identifier:
keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:49:88:f0:b5:b6:e9:80:fb:fb:25:e7:d7:e3:2e:81:a0:a4:
ac:e8:9f:8e:0d:c9:64:94:23:89:96:25:fc:8e:bd:a9:b4:12:
d3:30:ec:f4:76:c9:db:ef:f6:11:4b:31:f5:8c:5d:6c:65:2c:
9c:94:12:95:42:ba:23:80:d7:fc:aa:6c:ef:ba:a1:6d:2a:7c:
98:80:a0:76:26:ec:12:a5:bd:01:ba:b8:c8:75:46:31:75:0e:
3f:20:57:36:a0:79:3f:d6:93:74:d3:5a:38:8f:1b:78:2b:b3:
c4:ce:56:cb:c7:3a:55:9d:c5:81:e0:a0:f4:1d:40:40:60:d5:
d8:54:55:02:4d:46:8c:54:10:71:bf:1e:11:3d:3d:38:27:f2:
ad:b0:e6:07:b7:01:11:66:a0:98:c8:13:d2:2d:92:be:cb:7c:
ac:2a:2a:c2:10:5f:9c:93:bc:37:2e:ca:9b:55:51:a9:ca:97:
8d:4c:73:63:0b:e4:bb:7b:07:7f:e4:cb:3b:cc:d7:5c:7f:c3:
1e:44:4e:fc:a8:de:09:e5:a3:cc:d2:82:c2:0d:dc:ec:cc:03:
ef:06:d5:c8:93:d1:e7:da:50:bf:fe:d6:c1:5b:a0:06:2a:1b:
6b:1a:e1:b4:58:bf:0a:cf:e5:10:98:1e:28:65:67:54:ab:92:
86:fe:f3:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:10:40 2025 by rpki-client