Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json)
Hash identifier: kHDuaL6J1kh8ehw4vZBDsCgFaN3NBjrTs0/k1bGgZig=
Subject key identifier: 04:DE:8F:57:EE:4B:AF:E8:CD:32:58:57:85:05:5C:3D:98:6E:50:04
Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Certificate serial: 0198D54EB3E22BA2A1C091C5F2FB705D189D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
Manifest number: 0D2B
Signing time: Sat 23 Aug 2025 05:02:41 +0000
Manifest this update: Sat 23 Aug 2025 05:02:41 +0000
Manifest next update: Sun 24 Aug 2025 05:02:41 +0000
Files and hashes: 1: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: KCp1C35+Bf8OA7+cOuiIFVaMjYEmlWd56z/bbMU4dZI=)
2: ehQIMYmYwJQIMwezxzrnCxQWXrQ.roa (hash: K5j8O7wSUuuth3uj2946HM7L4q3WosF43ObE+K/eL8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:b3:e2:2b:a2:a1:c0:91:c5:f2:fb:70:5d:18:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Validity
Not Before: Aug 23 05:02:41 2025 GMT
Not After : Aug 24 05:02:41 2025 GMT
Subject: CN=04de8f57ee4bafe8cd32585785055c3d986e5004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:50:1d:cd:a3:3b:bb:c0:57:ca:71:4c:02:68:
96:65:bf:f4:1b:73:85:89:8b:f7:ae:5a:ac:b0:07:
83:d2:c7:2a:d0:c5:44:10:5f:2a:53:c0:ec:c1:0b:
cb:6c:11:27:1b:c2:ea:6a:4f:a2:e9:9f:4d:c0:d5:
df:bc:a8:11:19:df:da:0a:1c:e5:ee:90:f8:4c:52:
a9:c0:ac:45:47:61:b4:11:e5:22:a2:85:aa:e2:39:
e1:cc:21:b8:21:76:57:a4:a3:31:3f:22:d1:4c:d0:
f9:71:14:b9:ea:a4:2e:af:d0:00:bf:9c:32:e3:f8:
22:b8:ac:42:2a:59:17:ea:04:06:bb:7c:0b:d9:54:
1e:c3:e0:78:12:34:fa:d2:8a:0f:0b:7c:65:6d:fe:
c7:f9:84:b3:31:61:98:c0:31:87:2d:10:e9:e9:db:
88:7e:74:20:ee:0f:22:68:77:43:e3:51:37:53:ea:
b0:71:e0:2d:98:32:26:0c:fb:6b:0c:61:dc:2c:eb:
5c:09:6b:4d:f1:24:a9:78:37:d5:c4:e9:b8:a5:a7:
e5:16:7e:11:5b:98:6b:c1:9e:06:e7:f8:25:89:85:
f8:e6:56:97:0a:e6:82:f1:44:1a:37:5a:24:5c:f7:
b8:98:af:d2:4e:bb:88:1e:fc:25:49:66:38:8e:86:
61:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:DE:8F:57:EE:4B:AF:E8:CD:32:58:57:85:05:5C:3D:98:6E:50:04
X509v3 Authority Key Identifier:
keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:94:f3:6b:70:d3:6d:09:21:8d:d8:84:71:0f:9b:91:3e:a4:
fc:c3:e8:76:67:b6:92:9d:60:6c:73:9a:a8:7d:bf:da:d2:cd:
97:31:06:15:41:eb:08:9d:61:87:3e:fa:51:ca:8e:aa:50:52:
93:a2:f4:dc:dd:fb:e4:18:34:1b:e2:86:87:6b:bb:d7:55:f7:
86:7d:8c:0a:8e:89:eb:12:00:92:74:ca:8c:21:8e:6a:db:c3:
3a:49:2b:29:05:99:3a:48:53:25:4f:b5:ae:41:4d:3b:45:0c:
a5:33:55:41:c9:dd:4f:41:3a:4d:87:2a:b4:56:8a:54:bf:7a:
a1:f9:49:90:fa:6a:70:c9:0c:b9:97:dc:c6:e4:2a:39:dd:e2:
e6:53:1d:cd:74:c1:84:53:f4:c4:a8:9c:b6:08:b4:f0:82:82:
44:30:b9:17:df:86:f3:bc:b6:46:6c:58:e1:39:00:a9:33:d7:
6b:bc:b3:a6:92:22:be:02:2f:3c:dc:c0:96:45:b9:30:6b:dc:
99:67:cc:2b:24:59:7a:64:26:8e:a9:05:87:5b:ad:56:8e:a9:
26:97:8c:66:3e:36:a1:f0:5a:93:6e:42:1b:cf:d5:fb:46:74:
bf:87:0f:c3:ef:26:58:f9:c9:78:a4:33:c4:c8:94:69:15:7b:
c3:49:28:d7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTrPiK6KhwJHF8vtwXRidMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkMzY4Nzc0MmJlY2YzZDA4MDgyZWQxMmU5ZjM0NzBiODJk
YTdjZmYwHhcNMjUwODIzMDUwMjQxWhcNMjUwODI0MDUwMjQxWjAzMTEwLwYDVQQD
EygwNGRlOGY1N2VlNGJhZmU4Y2QzMjU4NTc4NTA1NWMzZDk4NmU1MDA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAylAdzaM7u8BXynFMAmiWZb/0G3OF
iYv3rlqssAeD0scq0MVEEF8qU8DswQvLbBEnG8Lqak+i6Z9NwNXfvKgRGd/aChzl
7pD4TFKpwKxFR2G0EeUiooWq4jnhzCG4IXZXpKMxPyLRTND5cRS56qQur9AAv5wy
4/giuKxCKlkX6gQGu3wL2VQew+B4EjT60ooPC3xlbf7H+YSzMWGYwDGHLRDp6duI
fnQg7g8iaHdD41E3U+qwceAtmDImDPtrDGHcLOtcCWtN8SSpeDfVxOm4paflFn4R
W5hrwZ4G5/gliYX45laXCuaC8UQaN1okXPe4mK/STruIHvwlSWY4joZhWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFATej1fuS6/ozTJYV4UFXD2YblAEMB8GA1UdIwQY
MBaAFE02h3Qr7PPQgILtEunzRwuC2nz/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQt
MTAzYjE3ZDNlYjQ1LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQtMTAzYjE3ZDNlYjQ1
LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXpTza3DT
bQkhjdiEcQ+bkT6k/MPodme2kp1gbHOaqH2/2tLNlzEGFUHrCJ1hhz76UcqOqlBS
k6L03N375Bg0G+KGh2u711X3hn2MCo6J6xIAknTKjCGOatvDOkkrKQWZOkhTJU+1
rkFNO0UMpTNVQcndT0E6TYcqtFaKVL96oflJkPpqcMkMuZfcxuQqOd3i5lMdzXTB
hFP0xKictgi08IKCRDC5F9+G87y2RmxY4TkAqTPXa7yzppIivgIvPNzAlkW5MGvc
mWfMKyRZemQmjqkFh1utVo6pJpeMZj42ofBak25CG8/V+0Z0v4cPw+8mWPnJeKQz
xMiUaRV7w0ko1w==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:34 2025 by rpki-client