Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json)
Hash identifier: Y1j0PZz0CzFm6VyaMqBqZF4WFkPFEQgR8YtIS9rOsLQ=
Subject key identifier: A9:6B:A8:8C:BE:5F:70:04:BD:24:47:5B:14:28:6F:49:DF:14:30:B5
Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Certificate serial: 0199FAD7DED3169CEADF309EE093D68C50BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
Manifest number: 0DC3
Signing time: Sun 19 Oct 2025 05:01:15 +0000
Manifest this update: Sun 19 Oct 2025 05:01:15 +0000
Manifest next update: Mon 20 Oct 2025 05:01:15 +0000
Files and hashes: 1: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: bfdvH8ewMynmHBd5yGT2TIaSgleJD4P8BdlazMlNTAc=)
2: ehQIMYmYwJQIMwezxzrnCxQWXrQ.roa (hash: K5j8O7wSUuuth3uj2946HM7L4q3WosF43ObE+K/eL8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d7:de:d3:16:9c:ea:df:30:9e:e0:93:d6:8c:50:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Validity
Not Before: Oct 19 05:01:15 2025 GMT
Not After : Oct 20 05:01:15 2025 GMT
Subject: CN=a96ba88cbe5f7004bd24475b14286f49df1430b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ad:55:52:b0:36:1f:a7:12:d7:e4:2f:af:b9:
2e:8d:01:06:68:9d:32:0b:6c:f5:bb:bf:84:19:da:
6d:7c:21:0a:5f:40:ae:14:32:3e:bb:d6:eb:01:e4:
99:16:b9:69:ba:7c:7c:57:56:81:d6:20:93:a4:4b:
17:47:f3:15:91:b5:6f:20:b4:54:ce:28:0f:5c:fa:
33:47:65:28:cb:6c:70:24:21:18:69:b5:41:25:f3:
ff:35:81:2c:7e:aa:8d:10:d4:43:66:ea:64:39:9e:
1a:fa:da:3a:40:b5:41:65:7d:48:43:af:72:ef:d2:
3c:76:ea:00:7d:ad:ad:8d:80:aa:80:8f:1f:f4:5e:
36:95:f2:5b:a3:ed:ff:19:62:e8:61:b1:1a:95:ee:
35:07:65:7b:1f:4f:c2:3e:00:a1:fa:10:79:b4:44:
e2:58:e2:f3:7c:d9:df:9a:d5:b7:24:44:56:d5:48:
eb:7f:37:ca:ec:c5:57:40:f7:1a:15:47:1b:a3:e0:
3c:ee:7a:a3:d5:0a:2f:55:b6:72:ba:e2:28:54:29:
72:64:25:3d:ee:3e:b8:4c:5c:6a:f5:5a:93:e9:1b:
a3:88:af:c2:ab:c1:57:aa:3d:0e:14:91:07:85:89:
ac:78:6c:cd:fd:0b:2f:d6:66:d1:00:7c:32:2d:18:
32:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:6B:A8:8C:BE:5F:70:04:BD:24:47:5B:14:28:6F:49:DF:14:30:B5
X509v3 Authority Key Identifier:
keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:69:7a:e3:84:8e:48:4e:ad:28:33:26:d9:77:44:4e:c9:3f:
9b:8c:9a:7a:d3:0e:c4:5f:64:82:47:41:73:6f:bd:ae:33:c7:
ac:66:d5:8f:e5:4a:cb:9e:88:1b:8f:6c:1e:ba:33:4c:a0:95:
8e:7c:6e:dd:80:96:7e:94:15:ba:2b:04:38:08:c2:1f:7e:2c:
2c:94:c5:af:27:87:83:6a:e7:d2:04:97:73:fe:b5:cb:22:fa:
fb:ac:9a:9b:2b:0b:38:66:80:ad:c2:3c:22:10:93:c7:93:54:
eb:f8:85:fc:ff:12:92:a2:70:1c:14:08:f2:54:26:6f:08:35:
8a:15:93:22:5c:cd:14:7f:84:a8:5f:07:9c:7d:e6:8d:dd:ca:
c3:37:b0:bd:8d:79:06:24:01:54:e3:c7:6c:27:e9:a1:83:46:
c6:da:ee:c9:80:76:76:66:cf:0a:98:e6:dd:74:21:dc:12:34:
e7:0a:95:2c:4d:6c:da:47:11:bd:9a:14:cb:d5:f0:92:c6:20:
51:ab:fa:a0:16:ad:b9:ca:8f:45:c0:be:a7:3d:c9:33:8f:8b:
41:ce:17:ba:cd:53:be:d2:34:90:d8:59:17:7d:c5:f8:52:fd:
14:23:e8:69:78:4c:f4:58:b4:b7:51:eb:57:00:84:62:8a:d5:
f5:2d:ba:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:49 2025 by rpki-client