Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
File: tRhBzcn2NZTd3CulmkATMYK1efo.mft (raw, json)
Hash identifier: A0X18EWCIorssz7NgNxF3HfOJjW8EYpeo04V6lv654I=
Subject key identifier: E0:E8:63:24:35:98:80:F8:22:42:01:2A:FF:E0:D6:28:26:08:50:D2
Authority key identifier: B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
Certificate issuer: /CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Certificate serial: 0198D6CDEDC458D596F1D44E5B94560E9D5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
Manifest number: 164D
Signing time: Sat 23 Aug 2025 12:01:16 +0000
Manifest this update: Sat 23 Aug 2025 12:01:16 +0000
Manifest next update: Sun 24 Aug 2025 12:01:16 +0000
Files and hashes: 1: iQxCTqJc23IztH0qMtXGhii78xc.roa (hash: b/32KuHdgss/tEEpqliyL9nGxIGy3IsYTip4QREYlPc=)
2: tRhBzcn2NZTd3CulmkATMYK1efo.crl (hash: q6bNMCG0kQwNkIR5VU306ETazdnmaggyFFHvY8lRelQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:ed:c4:58:d5:96:f1:d4:4e:5b:94:56:0e:9d:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Validity
Not Before: Aug 23 12:01:16 2025 GMT
Not After : Aug 24 12:01:16 2025 GMT
Subject: CN=e0e86324359880f82242012affe0d628260850d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ec:0d:df:64:23:fc:3c:85:d2:5c:7c:b8:fc:
7c:3e:ba:88:b5:c3:3f:d2:a4:39:b3:fe:77:8c:23:
62:a0:44:a2:a3:62:1d:8e:2c:aa:1e:0e:00:ac:85:
fe:57:d4:65:4d:cf:70:3c:0d:ec:f0:72:e7:86:7d:
9c:46:26:84:63:b1:2d:58:a9:ed:5d:9a:9a:11:70:
39:ac:0a:02:c0:cb:35:2d:7b:98:46:a2:70:82:14:
57:5a:08:ae:11:ed:b9:9e:2c:a7:26:e0:6a:ca:57:
a3:53:d6:c3:26:20:9e:5a:d6:e5:c5:c7:b1:2d:aa:
4a:af:f7:8e:4e:4f:cc:b1:66:36:d5:e5:89:d3:77:
be:c7:a5:b0:5e:70:46:5e:82:1c:c3:83:1a:01:c0:
7b:2c:83:c6:a8:d0:b2:c5:b6:02:e0:b5:be:bb:df:
23:86:cd:6c:50:06:67:fa:29:af:9d:28:fc:95:d5:
1d:1a:2a:22:a7:b4:0e:00:44:0d:bf:60:eb:27:bb:
bf:fc:9d:b6:ea:8a:4f:9e:03:f6:6e:e2:1e:52:66:
4b:ea:32:f8:e8:a7:95:c3:fe:68:08:4e:1d:e6:e2:
e1:20:8d:42:06:7c:7a:69:5b:cd:07:3b:2d:76:47:
a9:51:ce:0f:f8:98:e6:1f:3d:5c:6f:76:7c:2d:45:
b3:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:E8:63:24:35:98:80:F8:22:42:01:2A:FF:E0:D6:28:26:08:50:D2
X509v3 Authority Key Identifier:
keyid:B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:18:00:66:b4:5a:64:a2:a1:e4:6a:4d:fd:9a:c0:d2:ae:ad:
f2:9e:99:48:b0:89:4e:52:da:c7:fd:61:a4:c5:3a:57:53:96:
4f:ec:14:51:06:16:3e:42:d6:64:92:ed:1d:a7:1e:18:a8:5f:
d4:4e:2d:93:b4:c0:5a:cd:9f:de:3d:eb:3a:d7:07:e1:ef:4e:
f9:d1:5a:d3:0d:28:f1:51:ba:be:87:08:17:4f:59:26:a8:ba:
d7:f8:2a:ca:90:98:fa:bf:4e:54:de:24:55:69:e2:ef:60:16:
a6:7d:63:23:72:05:c8:db:0e:a7:74:44:56:33:de:17:f5:28:
26:c0:34:e6:01:af:ca:e0:65:de:ae:b7:05:15:fe:ce:d4:83:
b9:2c:21:5f:9a:4e:4a:64:14:89:88:a3:9c:0a:c2:5c:f3:c5:
58:7f:3b:a8:66:7b:22:7d:40:2a:79:f6:e9:32:e9:8d:51:66:
38:7a:fe:48:2e:a2:01:ab:7a:e5:31:00:37:76:39:45:e6:d0:
ca:5f:d6:32:42:70:3a:1c:ea:cf:cb:89:2a:2f:10:e9:24:97:
e0:8a:df:df:22:77:da:ec:0b:b6:d0:fd:0b:71:bb:92:a6:09:
db:14:f1:3e:46:5f:a9:77:c1:41:62:f1:78:fd:b3:85:bc:71:
08:0c:2c:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:44:18 2025 by rpki-client