Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
File: Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft (raw, json)
Hash identifier: Y6CO8P1y3AtClWWNDSnabRoTbxq5gSLRFc9Offp2oxY=
Subject key identifier: DF:44:87:59:51:07:5B:D8:51:30:74:17:16:5F:99:E9:67:55:19:3D
Authority key identifier: 4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
Certificate issuer: /CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Certificate serial: 0199FB0F2633830D3D54ABE9A93FD8A3C962
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
Manifest number: 02CC
Signing time: Sun 19 Oct 2025 06:01:38 +0000
Manifest this update: Sun 19 Oct 2025 06:01:38 +0000
Manifest next update: Mon 20 Oct 2025 06:01:38 +0000
Files and hashes: 1: 2YHBxyZ_z4Fcrt68TQqMf0wkwmM.roa (hash: KMD/ALL2N2LqU8y7+1f9YpFqy5OsmhRXi+hfcZ2aIxY=)
2: Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl (hash: W2fpwTRgFqvabh2WVJGYsZd0M4j0KgKF0IS8to6vcBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:26:33:83:0d:3d:54:ab:e9:a9:3f:d8:a3:c9:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Validity
Not Before: Oct 19 06:01:38 2025 GMT
Not After : Oct 20 06:01:38 2025 GMT
Subject: CN=df44875951075bd851307417165f99e96755193d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:96:29:83:b1:17:39:8d:cd:02:50:3b:22:3f:
45:c9:fb:6a:3b:a8:f6:63:13:8f:7c:22:3e:16:e7:
b5:bb:1b:6b:5c:15:07:75:82:e6:d0:ef:e3:00:50:
cd:9c:15:2b:b7:79:52:45:ac:0b:17:b0:ae:69:e3:
39:8c:b5:1e:53:24:10:2e:57:19:15:cb:d6:be:eb:
cf:24:2b:d5:6d:5d:03:25:26:94:8e:e0:23:72:be:
12:01:70:5e:27:57:d5:b6:b2:4b:f8:4a:47:33:1f:
9a:0d:73:50:aa:80:3f:a2:2d:b5:ae:1d:d9:37:78:
9e:e4:4f:2c:b0:eb:53:7e:f9:02:6f:12:63:a3:10:
49:c0:fe:81:48:b9:d3:a1:7a:eb:df:4a:d7:62:b4:
51:1d:3a:54:76:da:8b:1c:0a:91:8c:85:52:cc:ca:
40:47:dc:e6:1f:48:b4:73:f2:5e:dd:e3:48:00:75:
d6:12:6c:82:a3:3b:ab:79:79:09:30:28:8c:3a:af:
af:ac:4d:b6:37:b7:09:2f:2d:00:8a:ab:62:4e:c9:
67:4c:35:a6:09:0a:29:8c:18:2e:92:d3:b3:4f:8a:
8f:39:a7:b8:e2:47:e6:b1:e9:ba:3a:bb:4c:dd:f2:
a6:1c:c4:f5:1f:68:3f:36:ce:80:58:c6:27:41:9f:
63:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:44:87:59:51:07:5B:D8:51:30:74:17:16:5F:99:E9:67:55:19:3D
X509v3 Authority Key Identifier:
keyid:4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:e6:b7:54:e4:d6:91:50:20:54:55:80:a0:58:ad:40:88:93:
d5:4f:64:4e:47:e9:89:f6:e0:5b:88:8b:83:a9:60:d3:45:e4:
58:2e:32:02:6c:88:82:62:3a:f0:ef:6d:93:34:3d:dc:73:5b:
7e:d5:a8:e3:49:bc:55:86:44:e9:06:f5:ee:d8:13:ea:09:79:
df:07:2a:f6:93:fd:cf:0a:ec:f0:19:2b:25:db:cf:60:27:93:
af:7a:ad:c0:1a:c5:64:2a:39:40:85:0f:e8:9b:3c:14:fd:31:
7d:ab:e5:71:3f:06:78:c1:26:52:b8:65:b6:96:77:c5:38:64:
e3:0e:61:47:f9:06:e6:45:22:f2:33:01:86:3d:ba:93:22:f3:
f7:4b:cd:66:25:69:b2:4d:c3:89:3e:51:6e:d2:fd:a1:05:35:
d1:e0:da:9c:26:72:7a:f6:c5:3e:40:7b:66:eb:19:21:0b:c7:
8b:5b:4c:d3:04:69:23:4a:2f:87:48:f2:ab:9a:10:82:b0:ec:
b5:f5:8e:d2:d4:40:7a:d3:7d:4b:5f:19:6b:07:c0:8d:95:a5:
28:ef:c3:bb:48:76:2e:cb:f7:3a:b6:c6:03:81:65:b8:f2:d7:
7f:d3:48:0f:cd:be:49:1b:94:36:e4:11:1d:99:42:ea:6a:cd:
a4:7f:63:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7DyYzgw09VKvpqT/Yo8liMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlYmY2YjM3Yjk0Zjk1YjQ5MDVjZjhjNmEyMWQ4ODAzZWFi
ZmE3N2UwHhcNMjUxMDE5MDYwMTM4WhcNMjUxMDIwMDYwMTM4WjAzMTEwLwYDVQQD
EyhkZjQ0ODc1OTUxMDc1YmQ4NTEzMDc0MTcxNjVmOTllOTY3NTUxOTNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZYpg7EXOY3NAlA7Ij9FyftqO6j2
YxOPfCI+Fue1uxtrXBUHdYLm0O/jAFDNnBUrt3lSRawLF7CuaeM5jLUeUyQQLlcZ
FcvWvuvPJCvVbV0DJSaUjuAjcr4SAXBeJ1fVtrJL+EpHMx+aDXNQqoA/oi21rh3Z
N3ie5E8ssOtTfvkCbxJjoxBJwP6BSLnToXrr30rXYrRRHTpUdtqLHAqRjIVSzMpA
R9zmH0i0c/Je3eNIAHXWEmyCozureXkJMCiMOq+vrE22N7cJLy0AiqtiTslnTDWm
CQopjBguktOzT4qPOae44kfmsem6OrtM3fKmHMT1H2g/Ns6AWMYnQZ9jrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN9Eh1lRB1vYUTB0FxZfmelnVRk9MB8GA1UdIwQY
MBaAFE6/aze5T5W0kFz4xqIdiAPqv6d+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHI5ck43bFBsYlNRWFBqR29oMklBLXFfcDM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9hMjE3MmQtYjY1MS00M2RhLThhY2Yt
ZTdlNzRkYjcyMWQyLzEvVHI5ck43bFBsYlNRWFBqR29oMklBLXFfcDM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9hMjE3MmQtYjY1MS00M2RhLThhY2YtZTdlNzRkYjcyMWQy
LzEvVHI5ck43bFBsYlNRWFBqR29oMklBLXFfcDM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmea3VOTW
kVAgVFWAoFitQIiT1U9kTkfpifbgW4iLg6lg00XkWC4yAmyIgmI68O9tkzQ93HNb
ftWo40m8VYZE6Qb17tgT6gl53wcq9pP9zwrs8BkrJdvPYCeTr3qtwBrFZCo5QIUP
6Js8FP0xfavlcT8GeMEmUrhltpZ3xThk4w5hR/kG5kUi8jMBhj26kyLz90vNZiVp
sk3DiT5RbtL9oQU10eDanCZyevbFPkB7ZusZIQvHi1tM0wRpI0ovh0jyq5oQgrDs
tfWO0tRAetN9S18ZawfAjZWlKO/Du0h2Lsv3OrbGA4FluPLXf9NID82+SRuUNuQR
HZlC6mrNpH9jYg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:36 2025 by rpki-client