Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
File: tyDzzrDmtZejgUXFp0M2nH9JZuA.mft (raw, json)
Hash identifier: GzhO52FYNk/cdgE+5cyHxdYlpCgefDg73pHQNAfYvUM=
Subject key identifier: BD:A6:99:11:20:D1:D9:E4:04:97:08:91:73:70:38:E0:19:41:35:3F
Authority key identifier: B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0
Certificate issuer: /CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0
Certificate serial: 0199FCFD5D455CDFE60FCD7878983784CEBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
Manifest number: 111E
Signing time: Sun 19 Oct 2025 15:01:26 +0000
Manifest this update: Sun 19 Oct 2025 15:01:26 +0000
Manifest next update: Mon 20 Oct 2025 15:01:26 +0000
Files and hashes: 1: ggC5V29BMdNUn59EruOGoGZJaaQ.roa (hash: ttIpUsiJ4qeM8pCSgboK+Vkbkx0DrAYP7DxfAZL+EN4=)
2: tyDzzrDmtZejgUXFp0M2nH9JZuA.crl (hash: l7taodlo1I0aIaZVNpLLEA2HBYPloRQUxJgFV8UgOMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:5d:45:5c:df:e6:0f:cd:78:78:98:37:84:ce:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0
Validity
Not Before: Oct 19 15:01:26 2025 GMT
Not After : Oct 20 15:01:26 2025 GMT
Subject: CN=bda6991120d1d9e404970891737038e01941353f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1f:39:f6:f0:c9:5e:83:c0:20:cb:89:16:92:
f3:59:fc:f4:b6:3a:0e:18:be:ed:79:51:a0:0e:b0:
fb:19:8d:d5:7b:ad:e0:54:5e:d5:9b:5e:68:fe:f5:
94:91:03:98:e5:9b:ec:30:37:68:f9:b5:92:41:d8:
fb:a9:de:a7:5b:ab:d4:2d:0d:97:2b:86:ef:2f:50:
ca:dd:c6:e7:87:89:b7:a9:01:76:7e:11:89:d8:cc:
31:ce:76:38:4c:90:b3:ae:6e:5a:c9:c6:5e:22:35:
5d:b1:c2:b0:86:21:6a:be:ab:33:92:29:8d:51:e6:
e8:bd:af:6b:a8:a4:9b:22:f8:ae:20:cf:84:a5:ab:
2c:cb:3c:b7:55:27:26:e6:98:50:a3:d2:32:a9:f5:
25:80:0c:90:b8:bf:8d:77:c5:ab:2a:80:cd:bb:72:
fa:17:d0:3c:79:7d:4d:8d:4d:7b:2d:85:55:90:8e:
ab:e7:f1:a9:96:7e:d7:bf:07:b6:d7:93:70:74:13:
ea:3b:95:ad:31:1b:46:00:f4:0c:aa:b5:ec:3a:b9:
e1:d6:bc:07:37:5f:19:6f:b0:a1:76:80:1b:81:e5:
33:99:27:a0:02:d1:60:18:3a:06:58:30:77:3c:0f:
67:41:8d:fa:4c:6e:bd:46:01:4c:db:a7:91:61:9b:
df:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:A6:99:11:20:D1:D9:E4:04:97:08:91:73:70:38:E0:19:41:35:3F
X509v3 Authority Key Identifier:
keyid:B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:52:ff:1c:1f:55:47:d1:46:1e:ef:73:64:70:ba:b8:3e:95:
35:14:aa:08:d8:6f:e0:fb:79:3d:c0:a8:4e:ef:c4:ef:5d:b3:
82:b2:d6:93:01:8d:c5:f8:e7:8a:c8:3b:c1:bd:2f:60:0b:a3:
05:84:98:af:9d:50:6c:33:07:1a:71:3c:c5:cf:d0:d5:a9:e0:
83:3b:c0:cb:50:de:8f:cc:a8:c2:09:0d:c7:e2:64:fb:f6:e4:
9e:41:fe:e9:88:1c:d1:17:da:95:f9:f7:1f:5f:ff:e1:89:9f:
3a:7f:08:58:8b:82:0c:f8:c0:da:6b:ac:4a:0d:78:d0:0f:33:
29:0d:f9:50:f6:73:28:78:85:c5:c7:f4:29:aa:f9:24:0b:0e:
3f:1c:d1:f8:36:18:17:90:1b:c2:33:b9:4c:82:72:31:45:2c:
5c:71:fd:2b:a8:e2:14:be:a9:c4:d2:ce:02:50:da:bf:70:f4:
28:b6:3e:32:de:88:5a:1d:37:be:68:1c:14:2e:8a:31:e2:fa:
cf:d7:30:2a:9c:16:52:65:70:51:c6:2a:fb:b1:8e:59:4b:10:
85:36:c7:f5:32:a6:31:c9:7f:d8:ac:b0:67:28:45:f6:20:3e:
f9:a8:7d:90:05:df:af:7f:31:c2:37:df:a6:e9:5e:14:cb:f4:
5e:f3:c7:ac
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8/V1FXN/mD814eJg3hM68MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3MjBmM2NlYjBlNmI1OTdhMzgxNDVjNWE3NDMzNjljN2Y0
OTY2ZTAwHhcNMjUxMDE5MTUwMTI2WhcNMjUxMDIwMTUwMTI2WjAzMTEwLwYDVQQD
EyhiZGE2OTkxMTIwZDFkOWU0MDQ5NzA4OTE3MzcwMzhlMDE5NDEzNTNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyh859vDJXoPAIMuJFpLzWfz0tjoO
GL7teVGgDrD7GY3Ve63gVF7Vm15o/vWUkQOY5ZvsMDdo+bWSQdj7qd6nW6vULQ2X
K4bvL1DK3cbnh4m3qQF2fhGJ2MwxznY4TJCzrm5aycZeIjVdscKwhiFqvqszkimN
Uebova9rqKSbIviuIM+Epassyzy3VScm5phQo9IyqfUlgAyQuL+Nd8WrKoDNu3L6
F9A8eX1NjU17LYVVkI6r5/Gpln7Xvwe215NwdBPqO5WtMRtGAPQMqrXsOrnh1rwH
N18Zb7ChdoAbgeUzmSegAtFgGDoGWDB3PA9nQY36TG69RgFM26eRYZvfUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL2mmREg0dnkBJcIkXNwOOAZQTU/MB8GA1UdIwQY
MBaAFLcg886w5rWXo4FFxadDNpx/SWbgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHlEenpyRG10WmVqZ1VYRnAwTTJuSDlKWnVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9kN2ZiNmQtZWJiZS00M2EyLWIxMTkt
MzkzYzQ1NzQyMjU5LzEvdHlEenpyRG10WmVqZ1VYRnAwTTJuSDlKWnVBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi9kN2ZiNmQtZWJiZS00M2EyLWIxMTktMzkzYzQ1NzQyMjU5
LzEvdHlEenpyRG10WmVqZ1VYRnAwTTJuSDlKWnVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV1L/HB9V
R9FGHu9zZHC6uD6VNRSqCNhv4Pt5PcCoTu/E712zgrLWkwGNxfjnisg7wb0vYAuj
BYSYr51QbDMHGnE8xc/Q1anggzvAy1Dej8yowgkNx+Jk+/bknkH+6Ygc0Rfalfn3
H1//4YmfOn8IWIuCDPjA2musSg140A8zKQ35UPZzKHiFxcf0Kar5JAsOPxzR+DYY
F5AbwjO5TIJyMUUsXHH9K6jiFL6pxNLOAlDav3D0KLY+Mt6IWh03vmgcFC6KMeL6
z9cwKpwWUmVwUcYq+7GOWUsQhTbH9TKmMcl/2KywZyhF9iA++ah9kAXfr38xwjff
puleFMv0XvPHrA==
-----END CERTIFICATE-----
Generated at Mon Oct 20 01:17:27 2025 by rpki-client