Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
File: THGxR-uHN6vMM1-AIJUbJf8mVqY.mft (raw, json)
Hash identifier: efJbtnzOTapUGdyEeV4k+64ys4q/lSHCDTlrVkObaUI=
Subject key identifier: 30:E5:53:C4:DE:E1:91:82:CC:02:6A:B5:E5:1A:B0:A7:0C:4F:AF:9B
Authority key identifier: 4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6
Certificate issuer: /CN=4c71b147eb8737abcc335f8020951b25ff2656a6
Certificate serial: 0199FAD856BF1D6EE2BE61F4A171EA003520
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
Manifest number: 0B7B
Signing time: Sun 19 Oct 2025 05:01:45 +0000
Manifest this update: Sun 19 Oct 2025 05:01:45 +0000
Manifest next update: Mon 20 Oct 2025 05:01:45 +0000
Files and hashes: 1: THGxR-uHN6vMM1-AIJUbJf8mVqY.crl (hash: ioc+rmux8qCMs++ZHwcYnmdhM59ZDQWSqI1NkquKC4I=)
2: aZp_-IqiVFoAaaD08gi82AqrlBM.roa (hash: xAjdvDvJZRM8tEfeaFE3V9XsMT9Nsdi0raaN7LzCKfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:56:bf:1d:6e:e2:be:61:f4:a1:71:ea:00:35:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c71b147eb8737abcc335f8020951b25ff2656a6
Validity
Not Before: Oct 19 05:01:45 2025 GMT
Not After : Oct 20 05:01:45 2025 GMT
Subject: CN=30e553c4dee19182cc026ab5e51ab0a70c4faf9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4f:7d:f6:95:9b:46:30:4a:ed:7c:de:24:a6:
13:d1:5f:1c:fa:8e:b4:d5:37:34:63:74:e7:a0:f7:
cb:01:ca:ef:8e:fc:bf:54:69:dc:9b:29:44:61:70:
13:77:c2:7d:92:df:24:0c:e7:46:4a:20:c0:0d:8f:
68:6f:45:50:89:8a:1f:51:bf:4d:d0:10:9c:b5:65:
38:9a:2b:03:88:c4:ee:4d:68:e1:0f:9d:7d:2b:6c:
51:6e:8c:ec:e6:0a:9f:a5:5f:e6:88:9a:60:d6:69:
85:55:16:5b:15:ff:e3:ec:17:d8:18:c6:be:2d:82:
dd:ab:ed:2b:46:26:90:da:6d:35:03:eb:81:e6:fa:
78:9a:da:a7:aa:fa:1a:5f:70:50:ea:be:03:b5:c2:
c2:d6:b8:d4:8b:71:dc:59:c3:1e:6d:07:b2:86:a0:
79:c2:0a:c9:49:60:00:ea:7f:59:43:c3:71:7a:0a:
7c:32:6c:bc:df:29:33:11:16:f9:fe:f3:be:e5:a6:
66:c9:ce:6f:6d:8b:ca:a0:08:91:34:8e:6f:d0:9b:
c7:50:28:cf:3a:07:1c:22:2e:3a:59:ed:5a:55:8a:
bf:ba:8d:fc:3d:44:93:8c:ee:f4:c6:a7:ae:9e:b8:
3b:c7:c5:17:c6:ec:23:6c:3d:dd:09:e1:e9:d2:d6:
95:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:E5:53:C4:DE:E1:91:82:CC:02:6A:B5:E5:1A:B0:A7:0C:4F:AF:9B
X509v3 Authority Key Identifier:
keyid:4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:ea:5e:e6:59:4e:90:21:97:47:69:11:dd:fc:1c:9f:39:1d:
39:bb:08:78:53:1f:f9:f3:49:3a:53:49:78:82:30:fb:17:db:
fb:d9:f7:cb:d0:c0:71:f2:86:54:cd:35:6e:c8:f7:31:6b:04:
8b:bf:43:c0:a1:fb:80:e2:40:35:1e:e0:4b:89:7e:0d:06:1c:
ff:31:a7:9c:20:b5:f0:58:43:34:6c:20:31:e6:ac:17:f9:0b:
17:34:15:f8:a1:f9:0e:be:64:db:34:96:8c:55:b3:be:e0:33:
d6:c6:fa:ae:70:0f:b2:c3:39:30:3c:07:da:90:7d:35:91:47:
de:69:1f:2f:23:7e:28:ba:25:c3:89:d3:76:00:90:8a:04:87:
73:89:3c:71:d3:65:e5:77:0c:40:08:07:3e:ab:91:98:63:77:
97:94:c5:8f:c0:4a:c3:d3:dc:9f:5f:58:2a:84:28:58:f2:7e:
87:28:11:98:7e:69:5d:ea:30:86:79:fd:ae:9f:66:6d:21:22:
0a:a8:e6:a7:0c:2b:01:6a:a8:5d:a9:e5:21:7e:aa:e5:fc:5f:
c6:24:c0:29:93:28:a7:d4:76:4d:dc:91:e2:eb:85:94:e7:cf:
b2:0c:6e:66:cd:00:21:9e:c2:cb:f0:7b:e7:fc:aa:6a:2e:a9:
75:27:a2:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:28 2025 by rpki-client