Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
File: tyDzzrDmtZejgUXFp0M2nH9JZuA.mft (raw, json)
Hash identifier: ODhDuVjhP9k/HOWYF2nTIBO/EX+rb/ycVokOqYtcnts=
Subject key identifier: 0E:6F:FB:71:C5:4F:3C:96:75:3C:9E:F4:3B:49:0B:13:2F:D2:DA:CD
Authority key identifier: B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0
Certificate issuer: /CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0
Certificate serial: 0198D583F272749B1CE4466FDB74A3F39C88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
Manifest number: 1085
Signing time: Sat 23 Aug 2025 06:00:50 +0000
Manifest this update: Sat 23 Aug 2025 06:00:50 +0000
Manifest next update: Sun 24 Aug 2025 06:00:50 +0000
Files and hashes: 1: ggC5V29BMdNUn59EruOGoGZJaaQ.roa (hash: ttIpUsiJ4qeM8pCSgboK+Vkbkx0DrAYP7DxfAZL+EN4=)
2: tyDzzrDmtZejgUXFp0M2nH9JZuA.crl (hash: 5mZmc3u2waUuITNRuNQiWW4VIfudTQfpU2kmmbnCy3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:f2:72:74:9b:1c:e4:46:6f:db:74:a3:f3:9c:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0
Validity
Not Before: Aug 23 06:00:50 2025 GMT
Not After : Aug 24 06:00:50 2025 GMT
Subject: CN=0e6ffb71c54f3c96753c9ef43b490b132fd2dacd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d5:ad:de:41:3d:31:31:87:3e:f9:56:e9:b7:
ca:47:9b:ef:98:43:e8:77:6c:3f:64:43:4c:77:42:
12:a4:b9:ef:b8:87:9b:6e:18:3f:db:03:a6:13:86:
51:5b:be:cf:2f:3f:d5:e6:92:b5:c3:a6:07:c7:fe:
a0:14:36:b9:4e:8f:d9:f7:8e:57:f6:f1:bf:8b:58:
38:9e:d9:38:46:0f:a8:04:6a:57:57:75:7c:a4:b2:
6b:68:74:91:37:13:98:d1:48:b8:da:8e:4a:e7:e6:
f6:73:39:4d:2f:9f:35:5d:51:2e:5e:a5:ed:05:50:
8a:22:a8:81:ee:77:7d:3e:3c:8e:5b:4d:d8:66:22:
de:c0:f6:23:79:3f:a6:bf:fa:9c:b4:90:df:a0:5d:
07:21:c7:5d:1b:73:2e:41:a4:61:4a:a7:71:39:81:
b9:d6:67:74:63:e8:f2:af:3b:3d:0f:98:ae:73:5d:
55:65:73:9c:eb:52:17:3b:c9:3c:59:e6:36:2e:dd:
ee:69:27:fa:ce:fc:ef:78:67:4c:b3:56:ef:d1:35:
23:13:ec:a8:a1:9f:5f:dd:50:f1:95:a1:24:23:8f:
65:35:7d:d8:7a:b0:d0:44:c5:28:31:7b:17:29:78:
5a:d2:32:69:f7:6e:dd:eb:26:7b:ef:9e:7c:f2:d6:
f8:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:6F:FB:71:C5:4F:3C:96:75:3C:9E:F4:3B:49:0B:13:2F:D2:DA:CD
X509v3 Authority Key Identifier:
keyid:B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:07:9c:72:ca:1c:35:b6:8c:9a:9a:36:b7:aa:a9:c1:40:49:
6c:b1:3b:f2:c6:f9:21:86:9f:08:9b:66:a4:6d:c3:1a:05:49:
44:51:e7:17:07:7c:05:90:31:ed:f4:ef:71:82:50:b2:49:b4:
d8:0a:fa:30:77:ca:75:49:e3:a9:74:18:cc:63:99:ed:78:4a:
33:34:4b:22:aa:ba:84:87:c2:f4:eb:c0:87:51:14:e8:43:13:
2c:1e:bd:02:e1:1a:e0:ae:1b:28:79:0d:75:a0:f2:54:14:a5:
23:f6:ed:2a:60:2b:ee:e7:4c:f5:6c:e9:28:ad:1d:71:4c:71:
37:cb:94:a1:02:f7:7c:6e:3c:ce:31:14:3f:0d:d8:19:83:a9:
a2:80:df:6c:00:bd:78:44:97:30:22:e3:92:ea:41:00:de:02:
4b:8b:6d:3b:07:20:c3:97:e9:49:e7:f7:04:a5:2e:61:65:1b:
da:d7:81:df:91:e6:bf:9d:d9:48:b6:9a:cb:ca:d3:7f:7f:42:
8b:c6:6c:c6:e9:77:21:a4:e9:b2:26:31:cb:a2:dc:8c:52:cf:
33:2c:bc:06:3a:7a:50:bd:ec:e3:6d:d5:e9:07:73:bc:a3:5b:
58:f1:9c:27:b7:85:40:c7:a4:6d:82:1a:b6:13:a8:e9:4b:45:
01:44:ca:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:23:18 2025 by rpki-client