Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/3d046c-1178-46a3-82e0-74d56c441dc1/1/rTzBp4cLYQw1XG7CmbFm7auj3wQ.mft
File: rTzBp4cLYQw1XG7CmbFm7auj3wQ.mft (raw, json)
Hash identifier: DKpUcIwGl7+87mW8U1tDkcZIXAYmLJsHWSbXaTcNIV0=
Subject key identifier: 23:D7:83:01:1C:29:D8:DD:A7:D8:2E:1C:4D:86:BE:7F:52:64:AE:95
Authority key identifier: AD:3C:C1:A7:87:0B:61:0C:35:5C:6E:C2:99:B1:66:ED:AB:A3:DF:04
Certificate issuer: /CN=ad3cc1a7870b610c355c6ec299b166edaba3df04
Certificate serial: 0199FBEA89B94616C4C5617D959E4725F56D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rTzBp4cLYQw1XG7CmbFm7auj3wQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/3d046c-1178-46a3-82e0-74d56c441dc1/1/rTzBp4cLYQw1XG7CmbFm7auj3wQ.mft
Manifest number: 0927
Signing time: Sun 19 Oct 2025 10:01:15 +0000
Manifest this update: Sun 19 Oct 2025 10:01:15 +0000
Manifest next update: Mon 20 Oct 2025 10:01:15 +0000
Files and hashes: 1: rTzBp4cLYQw1XG7CmbFm7auj3wQ.crl (hash: kL+K5TJtKphFzsqfrC8szxb5viDrKg43kiaMqfn2EMc=)
2: tFQcfPCSB6BXqTTZvhFAhl-OS0Y.roa (hash: gDfDS8wP6pJ9Ytao7oOOdrquqvAnErNK/1uv1jTII9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/3d046c-1178-46a3-82e0-74d56c441dc1/1/rTzBp4cLYQw1XG7CmbFm7auj3wQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/3d046c-1178-46a3-82e0-74d56c441dc1/1/rTzBp4cLYQw1XG7CmbFm7auj3wQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rTzBp4cLYQw1XG7CmbFm7auj3wQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:89:b9:46:16:c4:c5:61:7d:95:9e:47:25:f5:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad3cc1a7870b610c355c6ec299b166edaba3df04
Validity
Not Before: Oct 19 10:01:15 2025 GMT
Not After : Oct 20 10:01:15 2025 GMT
Subject: CN=23d783011c29d8dda7d82e1c4d86be7f5264ae95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:b8:e0:3b:29:f7:ed:a1:1c:34:e6:45:0e:8f:
06:37:fb:04:70:a5:f4:78:c5:8e:8a:11:c2:d0:8a:
78:eb:78:65:3d:90:3f:24:e9:5a:23:cb:d1:c0:41:
a5:b5:f4:27:dc:26:0d:23:bd:25:ff:5d:fd:9e:20:
6d:14:8c:7a:ad:a4:20:ef:52:13:94:c5:e0:c7:53:
18:1d:ac:54:34:08:f4:49:be:d6:29:99:dc:be:aa:
16:04:53:41:70:d8:46:f4:8a:5f:26:6a:ec:51:41:
6e:22:78:b3:11:fb:28:c7:a9:02:6c:63:ea:14:f6:
30:24:17:5d:e5:4b:f6:dc:a1:52:a8:82:67:24:76:
6b:95:e0:d1:22:ab:aa:0a:55:de:d2:20:f3:0d:2b:
bc:7e:d9:ce:86:17:76:33:ff:a6:40:6c:bf:ef:02:
63:ef:28:f4:11:2e:6b:57:da:11:29:9a:3d:83:4f:
aa:39:49:79:a5:35:dc:c6:61:1d:55:37:11:71:ff:
63:0a:fc:cc:c3:41:62:d8:0f:c9:40:76:47:98:1b:
e6:92:17:0b:99:b6:45:dd:13:46:20:51:3f:2f:58:
59:e5:16:29:1f:d6:ac:a7:99:c0:ef:fb:c5:83:c1:
a7:c3:4b:b5:33:c9:80:46:e6:e9:bf:6c:d5:b7:66:
22:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:D7:83:01:1C:29:D8:DD:A7:D8:2E:1C:4D:86:BE:7F:52:64:AE:95
X509v3 Authority Key Identifier:
keyid:AD:3C:C1:A7:87:0B:61:0C:35:5C:6E:C2:99:B1:66:ED:AB:A3:DF:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTzBp4cLYQw1XG7CmbFm7auj3wQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/3d046c-1178-46a3-82e0-74d56c441dc1/1/rTzBp4cLYQw1XG7CmbFm7auj3wQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/3d046c-1178-46a3-82e0-74d56c441dc1/1/rTzBp4cLYQw1XG7CmbFm7auj3wQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:28:c6:fb:56:5c:c8:74:eb:ac:bf:f9:f1:9f:97:97:d8:a5:
ee:59:94:ac:37:0a:89:f9:e1:9a:b2:5b:4e:e6:ed:a2:64:67:
88:68:ff:ed:1c:88:01:75:8b:e9:9c:af:b2:2f:18:e2:a5:0c:
be:10:bd:57:08:17:85:bf:bf:30:74:e3:6e:5e:93:2a:15:2c:
51:e7:b5:0a:cd:ad:a5:11:b2:bc:5e:52:83:84:fe:a5:58:5f:
b7:b3:9c:75:72:ed:a2:35:8a:4c:8d:b9:86:4d:02:d4:a5:32:
31:6b:d1:cf:a0:11:43:ac:11:0e:78:49:fd:b8:7a:e5:c0:a2:
0f:95:09:07:77:a1:7d:89:32:91:f5:2d:7e:55:67:8d:72:10:
56:54:1e:43:98:43:2f:74:bb:5b:d6:8d:0a:00:1d:83:fe:7f:
08:0c:fe:bf:4a:ad:33:66:97:fe:5e:5c:b1:25:58:70:03:c8:
75:e3:9a:bb:30:6e:a9:91:f4:29:38:ab:1e:aa:62:19:19:3c:
23:8e:df:e6:24:20:12:8c:02:08:18:7e:c1:39:8a:67:d0:0d:
56:02:64:a8:2b:76:7a:e3:6b:d1:cb:1a:e1:fb:2d:33:bb:1b:
1e:6d:58:24:78:92:81:d3:48:a3:6c:65:02:cf:97:f5:79:66:
29:8d:a7:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:23:49 2025 by rpki-client