Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
File: tRYDJr5-XNw1tcA2RBFjzSWkl00.mft (raw, json)
Hash identifier: kKQWrh5Dc4L57T1cel8DBTR0LKk/YOMkBcr2bLa5GDc=
Subject key identifier: CD:00:CA:0F:AD:0A:3D:8E:68:74:2B:8E:2F:E6:AA:08:A4:32:E0:29
Authority key identifier: B5:16:03:26:BE:7E:5C:DC:35:B5:C0:36:44:11:63:CD:25:A4:97:4D
Certificate issuer: /CN=b5160326be7e5cdc35b5c036441163cd25a4974d
Certificate serial: 0199FD6B02FC14FEDA2B86169B9E2E22C882
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 17:01:12 +0000
Manifest this update: Sun 19 Oct 2025 17:01:12 +0000
Manifest next update: Mon 20 Oct 2025 17:01:12 +0000
Files and hashes: 1: 8ia-FfbPiHzFeisz5Ltz_iH4NuE.roa (hash: 2vUluYbn/ZjPa8MjPMnro3n0N0IitO4q9I7893CE2pw=)
2: tRYDJr5-XNw1tcA2RBFjzSWkl00.crl (hash: SaCVoY8Bu7gU3b4ShoSTIwmgqBz091HYgvtgEQ2N5GM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:02:fc:14:fe:da:2b:86:16:9b:9e:2e:22:c8:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5160326be7e5cdc35b5c036441163cd25a4974d
Validity
Not Before: Oct 19 17:01:12 2025 GMT
Not After : Oct 20 17:01:12 2025 GMT
Subject: CN=cd00ca0fad0a3d8e68742b8e2fe6aa08a432e029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:02:3e:be:bb:06:6b:49:d6:b2:ae:1f:84:8a:
b2:d4:c3:0e:f1:13:93:3c:28:16:79:70:c2:44:60:
60:5b:05:e4:b5:b8:c4:12:fe:ef:56:9d:da:e4:5e:
ea:e5:22:91:1e:c5:c3:5d:96:b9:75:36:77:4d:46:
f1:5c:56:01:f4:33:aa:19:f9:10:fb:be:b1:2a:96:
12:41:83:cd:2a:ec:0c:3f:4e:9c:78:fe:db:f5:e9:
69:3c:90:34:0a:34:cc:15:c9:d5:76:14:82:45:73:
03:bb:ad:2a:2c:03:d7:8a:db:58:61:87:00:90:fc:
21:32:8e:05:e1:81:25:8f:e4:6e:15:c1:bf:56:ef:
f6:cc:02:92:ae:d4:15:67:ee:a1:6e:dc:6f:10:cc:
b7:81:a6:bf:a1:53:86:4e:a3:9d:a6:53:43:46:ea:
d3:0f:b2:28:ce:cd:4c:88:a6:c2:d6:2e:d8:93:22:
60:84:40:d9:41:5d:8e:5e:6c:30:f9:77:d3:37:3d:
f5:c3:61:b4:f6:e0:17:9c:fa:18:46:4b:1a:35:e9:
42:37:8b:a4:52:6c:d9:23:17:52:0d:29:8b:d8:09:
70:c8:b7:3b:f2:61:b0:33:e8:f1:e8:5d:24:dd:40:
03:40:98:ae:27:c2:4a:b2:8a:da:78:c1:c9:aa:c7:
8c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:00:CA:0F:AD:0A:3D:8E:68:74:2B:8E:2F:E6:AA:08:A4:32:E0:29
X509v3 Authority Key Identifier:
keyid:B5:16:03:26:BE:7E:5C:DC:35:B5:C0:36:44:11:63:CD:25:A4:97:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:f0:44:9a:f9:8c:21:08:ba:54:5b:14:18:00:9f:79:59:5f:
cf:61:af:ac:4d:0f:8d:07:3d:91:70:d5:5a:44:21:a3:92:65:
73:d1:85:94:08:62:25:43:14:0b:c7:e3:8b:64:e3:44:07:51:
e4:5e:30:c8:fe:a6:68:dd:ca:d9:64:d8:9a:30:82:e0:e0:31:
5b:a7:43:11:1d:97:3c:8b:fa:78:74:d4:be:ac:91:dc:6f:e3:
4f:6d:02:ff:3e:a1:22:79:b0:51:5e:3d:f9:8a:40:ac:da:d3:
3e:16:e3:56:ce:9e:b7:ec:a1:e5:5d:1d:73:d7:99:a9:58:e5:
51:05:a9:e6:77:99:ee:9e:4b:08:f3:9e:91:2c:3e:ff:86:fb:
40:51:59:0b:0f:5d:25:bd:36:e4:0d:e2:2c:01:69:e0:68:ed:
54:6d:16:20:74:5a:34:3b:2c:81:03:8b:0f:4b:f8:b6:24:1c:
42:dc:84:56:7e:6f:09:a4:e5:e8:58:20:61:45:9f:45:36:95:
c8:74:ec:6f:43:b9:e8:3d:51:14:33:74:22:84:0f:77:90:17:
9c:68:62:23:2c:d0:29:3e:bf:48:ef:c9:27:d1:4f:a0:3a:16:
09:0b:ec:d4:bd:d4:50:88:82:b5:aa:08:c4:cf:bf:bd:38:85:
35:ac:f2:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:03:19 2025 by rpki-client