Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json)
Hash identifier: oDWKxyF+0LEo3SqJ9QMy3D749Qyv/W1QLF+wwpaqMKU=
Subject key identifier: D5:C0:C2:6B:57:5A:3B:08:16:83:54:0C:2A:7F:A1:23:F1:F9:82:35
Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Certificate serial: 0198D583532FA721F6EB6225A51F604C55B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 06:00:10 +0000
Manifest this update: Sat 23 Aug 2025 06:00:10 +0000
Manifest next update: Sun 24 Aug 2025 06:00:10 +0000
Files and hashes: 1: DvRXNlTCR35yGxJPggKI6LQ1TXY.roa (hash: uCs5edSvBBj2KY6s6HL8wAMD7pMX49G3e3NvxavAQGo=)
2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: IKCNnL85WoA/60xLrXhg6YwTZ/ZslBd52tJek5wwYu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:53:2f:a7:21:f6:eb:62:25:a5:1f:60:4c:55:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Validity
Not Before: Aug 23 06:00:10 2025 GMT
Not After : Aug 24 06:00:10 2025 GMT
Subject: CN=d5c0c26b575a3b081683540c2a7fa123f1f98235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b1:70:89:5c:8b:d4:53:d2:67:ad:47:47:7c:
5e:00:32:4d:3b:fb:8a:35:6d:8c:09:78:44:4b:39:
08:24:3c:7e:3e:77:85:ce:81:1c:27:63:64:cf:19:
53:47:08:69:36:7f:45:45:2a:83:9f:fb:1f:f6:5d:
e0:de:5d:df:ba:e0:f0:b8:57:72:75:a6:85:ba:f9:
eb:69:59:cb:65:c8:b6:7e:b3:f9:c1:ea:44:2e:c2:
85:2a:f6:c5:90:91:71:99:64:41:f0:c4:5d:f1:7d:
88:de:e3:13:6c:b9:a8:75:61:31:37:b0:f7:3a:89:
e2:9f:70:1b:3d:42:f6:a9:3f:43:c6:11:0b:0a:f4:
a8:a1:d3:ee:08:93:e4:db:17:01:38:d5:38:d2:50:
d2:b4:c0:25:86:0a:e0:bf:19:55:0b:56:8c:85:5f:
80:f9:c9:c2:a7:50:02:a0:ca:95:da:54:ee:e1:ef:
1f:1a:84:a1:be:f0:ec:14:c3:8b:b3:22:92:0b:a1:
6e:f3:2e:54:eb:79:31:1b:86:a2:3c:16:df:8e:c1:
54:60:09:61:7e:64:13:c9:f1:a0:37:5f:32:3c:ac:
b2:c7:a2:ec:1c:99:05:99:9d:18:b8:52:81:cf:5d:
a8:69:72:8d:b1:4c:2e:3f:bc:3b:c2:96:d8:f0:a9:
7a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C0:C2:6B:57:5A:3B:08:16:83:54:0C:2A:7F:A1:23:F1:F9:82:35
X509v3 Authority Key Identifier:
keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:b6:42:bb:56:66:88:a4:9e:7e:dc:01:ec:16:42:d3:7c:45:
20:a3:9f:63:56:37:60:4d:3c:db:d6:27:03:8a:bc:d5:65:bf:
e0:ba:19:fa:bf:f3:18:ea:92:0d:60:32:c4:f7:51:26:d2:e0:
da:c0:2a:6d:d0:45:8b:9f:5f:e2:c5:fa:20:ad:9f:d2:33:05:
69:8d:7d:4c:3d:5e:82:93:33:7a:d2:94:7a:54:4b:f9:2e:85:
da:27:1c:81:04:08:9d:ba:5d:13:54:4a:d3:aa:dd:60:22:92:
04:0c:28:83:3f:7e:7e:95:81:5e:5d:47:f1:56:78:8c:af:22:
8a:c2:40:e9:c3:f3:43:e8:ea:14:eb:a2:99:07:ed:e8:9f:21:
25:98:4a:28:26:c6:c0:14:58:bb:62:9b:90:50:56:14:30:ba:
c3:cd:f7:60:5f:7c:14:9a:2f:94:d0:91:cb:14:6c:04:01:a3:
e6:7e:f1:80:fc:29:dc:8a:9b:95:b9:d4:48:e5:3d:33:0b:39:
73:b7:e8:62:b1:29:96:a0:78:4e:39:12:da:45:6c:b0:8e:d3:
f9:c1:e7:1e:0f:dd:72:9b:24:3c:53:cb:5f:bc:c9:e6:d7:4e:
6b:3c:f9:ed:02:43:bd:43:1d:b6:69:63:80:55:34:7e:19:4a:
83:e6:3e:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:31 2025 by rpki-client