Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
File: tIoonrst1oBtYLjFrQNseY9mugY.mft (raw, json)
Hash identifier: 0F04+D4xVbFGmSSM44WNuEfhY5gKLDkIcXfPM3Qr4e4=
Subject key identifier: 2F:8F:56:C5:D0:60:38:BD:D6:6C:89:F9:30:F8:03:47:55:AD:F6:3F
Authority key identifier: B4:8A:28:9E:BB:2D:D6:80:6D:60:B8:C5:AD:03:6C:79:8F:66:BA:06
Certificate issuer: /CN=b48a289ebb2dd6806d60b8c5ad036c798f66ba06
Certificate serial: 0198D58342FB4E9A13EAE0089E9FA4584451
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIoonrst1oBtYLjFrQNseY9mugY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
Manifest number: 0504
Signing time: Sat 23 Aug 2025 06:00:05 +0000
Manifest this update: Sat 23 Aug 2025 06:00:05 +0000
Manifest next update: Sun 24 Aug 2025 06:00:05 +0000
Files and hashes: 1: nKxswHwUBE_XIOIyQ1Qpw5XOFvo.roa (hash: xZYcCOMTf00TiuBXWvG+qaD8S6ouJ5YlmrR2oW0i9z0=)
2: tIoonrst1oBtYLjFrQNseY9mugY.crl (hash: pIemJvCyflQ2TYgLzESYbJahsWzwxLvLoNEq0hE2wlI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIoonrst1oBtYLjFrQNseY9mugY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:42:fb:4e:9a:13:ea:e0:08:9e:9f:a4:58:44:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b48a289ebb2dd6806d60b8c5ad036c798f66ba06
Validity
Not Before: Aug 23 06:00:05 2025 GMT
Not After : Aug 24 06:00:05 2025 GMT
Subject: CN=2f8f56c5d06038bdd66c89f930f8034755adf63f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:f5:94:6a:c9:b5:8f:13:ff:da:cd:d9:97:c6:
ce:84:5f:2a:31:cc:a0:2d:9a:d7:89:39:23:c8:02:
ca:57:60:fd:75:71:a3:aa:14:50:ba:ee:50:3f:b4:
6b:07:b4:17:ae:3b:16:00:55:53:2b:f6:68:07:85:
ff:c4:21:a5:d5:ec:19:76:e7:02:0f:83:af:0b:aa:
39:68:28:41:6f:51:79:a6:14:8e:ab:ae:61:d2:6f:
9b:dd:b5:3f:ec:eb:e3:a6:8e:a7:fa:e2:36:b9:4e:
ae:7b:74:66:0b:fc:06:d3:39:5c:26:93:92:7d:e1:
96:2b:bb:f4:b2:4c:18:8d:4f:f7:0a:02:07:a0:93:
00:c7:87:da:b2:bd:50:0d:c5:fc:8c:65:b8:28:b4:
38:3a:52:e0:7b:d9:77:15:66:12:c8:1e:5e:9f:09:
33:08:57:b1:96:43:ce:32:e1:e7:a6:35:c7:41:82:
4f:37:37:53:72:12:4c:c7:f9:1b:24:05:14:e3:07:
7a:c9:6a:e0:19:f2:87:57:82:09:ce:81:4f:ea:7c:
04:aa:39:43:9a:7b:7c:ea:da:84:48:2d:be:b7:92:
e2:ba:b1:89:30:08:ee:14:cc:f1:78:c1:47:e1:e2:
33:91:72:77:97:58:5c:e1:8c:3b:9f:48:27:d3:f4:
6e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:8F:56:C5:D0:60:38:BD:D6:6C:89:F9:30:F8:03:47:55:AD:F6:3F
X509v3 Authority Key Identifier:
keyid:B4:8A:28:9E:BB:2D:D6:80:6D:60:B8:C5:AD:03:6C:79:8F:66:BA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIoonrst1oBtYLjFrQNseY9mugY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:54:80:eb:85:60:1e:85:a6:ff:73:dc:36:97:4f:66:fa:e4:
07:21:e0:7a:8f:8a:b2:d1:d7:eb:10:b8:90:f0:19:af:14:48:
bb:94:d3:db:8f:9d:9a:41:82:82:df:55:f5:0e:fa:1e:f2:73:
ad:f3:30:e8:53:ae:29:3a:f7:e8:14:86:0f:15:70:1c:cb:aa:
cb:bd:94:f1:71:e0:90:22:4d:d2:7d:a3:29:2a:dd:9b:51:99:
a7:79:a6:d0:e1:65:75:9f:b4:56:35:e0:ff:42:af:c4:2e:de:
d2:82:12:cd:48:31:e3:33:bb:69:4a:bf:2d:29:cc:82:fe:91:
9d:36:a7:ec:60:8c:83:40:8a:f3:4b:b9:03:8b:31:0c:ad:91:
6d:cb:5d:5b:7c:f7:9b:8d:5d:ea:5c:75:8e:81:61:c8:d4:40:
d3:e9:f6:93:8c:e8:c5:44:d5:7a:98:25:d5:2a:34:7a:00:5b:
ee:a6:d3:9b:9f:c5:46:8a:4d:94:3f:42:25:f0:67:99:76:7e:
b4:d4:5b:f5:2d:5d:83:0e:d7:ae:f2:87:28:3e:fd:f7:70:18:
88:e1:0a:ec:e1:28:d6:e4:ae:1a:14:0b:06:a5:86:f2:27:ae:
f5:f9:dc:76:28:c0:6f:64:5d:e8:15:e4:6e:1c:7b:e1:5c:50:
a8:c9:6e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:25:57 2025 by rpki-client