Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
File: tRQMX448e8JKGtTIQGQVJj62ur8.mft (raw, json)
Hash identifier: 85tCinaaMoCJj+jE8F5vsAE9YDO8HY9NpM8GFDB3nfE=
Subject key identifier: 09:16:73:85:6A:5B:1F:98:F2:18:A2:CC:79:A0:96:C7:D0:8F:B1:E1
Authority key identifier: B5:14:0C:5F:8E:3C:7B:C2:4A:1A:D4:C8:40:64:15:26:3E:B6:BA:BF
Certificate issuer: /CN=b5140c5f8e3c7bc24a1ad4c8406415263eb6babf
Certificate serial: 0198D583DE7B19E16BB8704FCFFE04349547
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRQMX448e8JKGtTIQGQVJj62ur8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
Manifest number: 1405
Signing time: Sat 23 Aug 2025 06:00:45 +0000
Manifest this update: Sat 23 Aug 2025 06:00:45 +0000
Manifest next update: Sun 24 Aug 2025 06:00:45 +0000
Files and hashes: 1: tRQMX448e8JKGtTIQGQVJj62ur8.crl (hash: bQC1sq+xnf9NXQI59OGDSGrQEzWDTeQAGDA7a03rZ2w=)
2: vBSjooCv1VbYtFGvr_WsQil5zco.roa (hash: 9TpEuhk1/IC2lzmVZHygO3k9GcTIx0s6uCEc0lzgzlU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRQMX448e8JKGtTIQGQVJj62ur8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:de:7b:19:e1:6b:b8:70:4f:cf:fe:04:34:95:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5140c5f8e3c7bc24a1ad4c8406415263eb6babf
Validity
Not Before: Aug 23 06:00:45 2025 GMT
Not After : Aug 24 06:00:45 2025 GMT
Subject: CN=091673856a5b1f98f218a2cc79a096c7d08fb1e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:72:10:cf:f6:26:6b:e0:9e:2f:3b:f3:25:e2:
8e:36:44:d7:98:d9:a6:da:56:32:41:d0:fd:de:67:
60:11:3c:34:d2:d4:5e:05:36:88:ca:25:fe:fe:b4:
f5:42:db:c5:ba:22:fa:ac:81:21:0b:69:41:e2:f5:
4e:9d:58:8f:33:fa:50:8c:19:03:53:7a:70:72:8d:
98:42:1b:40:89:75:a5:79:fd:ba:f3:e8:fd:da:79:
c9:84:33:4a:46:c1:f3:ec:4f:cf:a8:49:fb:2d:a6:
92:93:81:5f:31:cf:57:5a:95:d4:f5:06:fe:f3:80:
e4:13:31:6a:3f:93:f2:a5:d0:30:55:9e:81:a6:b6:
58:28:90:1f:1e:03:17:dc:c8:ca:7c:19:67:39:95:
e4:de:a5:cd:61:67:81:a0:5a:05:b9:7c:09:37:b0:
d1:46:94:4e:4b:19:d6:7c:01:51:84:81:2e:0f:92:
9a:de:a9:93:b2:a5:ab:ad:67:bf:97:d8:a1:00:91:
25:9f:5c:dc:77:32:71:51:a0:cd:cb:36:3b:78:92:
1e:55:28:db:43:8c:75:8a:bd:49:86:06:f5:c6:74:
b6:79:4f:f4:c4:67:9a:b7:4b:96:4a:32:42:57:6f:
d4:8d:bd:d2:40:ea:4f:9b:d6:77:73:bb:e0:36:ec:
6f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:16:73:85:6A:5B:1F:98:F2:18:A2:CC:79:A0:96:C7:D0:8F:B1:E1
X509v3 Authority Key Identifier:
keyid:B5:14:0C:5F:8E:3C:7B:C2:4A:1A:D4:C8:40:64:15:26:3E:B6:BA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRQMX448e8JKGtTIQGQVJj62ur8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:40:cb:4b:ff:9b:2b:a5:08:86:e3:62:02:1c:2f:ce:b5:41:
6a:26:33:a0:79:d6:43:d4:70:30:c7:ca:ae:f8:54:0c:44:8e:
47:70:a7:7b:71:20:ca:c8:b9:9d:8c:8b:4f:25:68:75:6d:da:
4b:4b:28:2e:a9:10:7a:3b:6b:e5:e4:63:47:d1:77:3a:47:45:
4d:92:2c:0d:25:08:ce:fb:ad:50:11:d6:be:d0:8e:a2:28:90:
16:f4:ea:9a:09:1c:89:43:b1:81:8e:f6:86:86:7d:09:a3:99:
62:0b:5e:4e:97:c5:0a:4e:06:b9:92:91:db:dc:73:3f:fe:85:
91:45:9a:f9:84:70:cf:9d:06:6a:ed:a2:ee:7b:65:9b:a0:96:
9e:3b:83:71:e9:2a:17:62:ac:39:8b:fb:08:b7:c2:1c:2a:b1:
ac:7b:8c:30:c6:26:cb:b3:91:41:b5:ba:09:1f:11:46:2d:4d:
78:96:cc:6c:8e:25:90:3f:11:71:fc:30:a6:67:2f:e4:64:6c:
19:f0:5d:5a:fd:56:53:e9:c0:c5:0a:db:a8:82:fc:3d:2c:2e:
df:12:ed:03:19:23:da:9b:97:60:de:66:b6:76:84:ff:cf:53:
89:c0:b3:9d:55:43:c9:3d:10:26:4e:a9:d4:88:19:20:65:c3:
bb:c6:0f:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:25 2025 by rpki-client