Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
File: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft (raw, json)
Hash identifier: BsNq5x/kGB9sHyz+sBGrYeISkjaofq78uVQZclGCtlc=
Subject key identifier: 4C:7D:8F:47:65:6A:EC:12:91:0E:92:B2:A6:A1:1D:65:C9:01:9F:F2
Authority key identifier: FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
Certificate issuer: /CN=fad7e14a262560191c66576998e9c69b89c3c136
Certificate serial: 0199FAD84CD7D8FF9CEB10403FA4C6250A79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
Manifest number: 0B71
Signing time: Sun 19 Oct 2025 05:01:43 +0000
Manifest this update: Sun 19 Oct 2025 05:01:43 +0000
Manifest next update: Mon 20 Oct 2025 05:01:43 +0000
Files and hashes: 1: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl (hash: 04Fkzu9YtkihOajGd4eqgixLSEh3SiNI9C0K+GgIoqw=)
2: ELYZJGHcWhKUiY7ABJ-PY-iSroQ.roa (hash: XKv64QH5ODk1+MXzK56Lue/Lun/NuUmKCWEmKamL9J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:4c:d7:d8:ff:9c:eb:10:40:3f:a4:c6:25:0a:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7e14a262560191c66576998e9c69b89c3c136
Validity
Not Before: Oct 19 05:01:43 2025 GMT
Not After : Oct 20 05:01:43 2025 GMT
Subject: CN=4c7d8f47656aec12910e92b2a6a11d65c9019ff2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c0:2f:55:d4:fb:82:db:a4:ab:66:5a:72:6f:
ff:76:81:91:3f:2f:f9:fa:4a:fc:23:02:ae:ef:2c:
0b:e2:f5:96:04:ed:91:cc:92:70:d4:90:51:3f:b1:
ec:27:70:6d:e4:87:39:30:63:b6:2c:9a:86:fc:c9:
03:ff:03:e2:13:79:3d:cc:3f:26:2c:d9:1e:7b:0d:
fb:68:2b:aa:d3:53:e2:31:ca:93:5c:a8:1a:9e:ce:
7b:be:21:8c:da:3e:c5:a2:ef:bb:28:33:28:b9:30:
48:1c:3c:c9:ae:06:21:64:09:0c:e2:2e:ed:52:71:
f2:f2:5b:c9:cd:d2:f2:30:2c:b0:6b:2a:2e:ae:27:
f6:a0:b6:d7:e7:4a:9b:5c:7d:36:e1:95:26:7f:32:
cb:ec:ae:38:66:20:1a:f6:dc:4b:93:ce:e5:cf:41:
a3:0a:93:8f:8c:fa:02:a2:68:a5:56:8e:9e:3d:a6:
4a:c4:d9:b8:35:7a:7e:a7:65:f7:ee:5a:16:91:bf:
c4:11:6d:27:db:a7:96:f2:2a:0d:4f:f9:e1:ba:11:
9a:d1:e7:de:5f:cf:ce:64:6b:2d:6d:7e:f1:81:69:
f0:96:3f:23:68:b0:0a:7f:b3:15:9c:5f:c4:2f:5c:
49:4f:e9:c0:d4:7c:fa:9f:88:93:dd:7c:b8:b9:62:
3a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:7D:8F:47:65:6A:EC:12:91:0E:92:B2:A6:A1:1D:65:C9:01:9F:F2
X509v3 Authority Key Identifier:
keyid:FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:42:90:37:ab:19:3b:b0:9e:fa:fe:82:5b:49:a2:92:e0:66:
06:db:50:cc:ff:2f:ff:24:22:9e:0d:48:98:5d:44:80:b0:49:
88:a7:e2:3d:65:73:10:29:d2:a0:9c:a1:a9:f2:1b:38:7b:20:
dc:39:73:24:ef:c1:e2:da:f3:ac:ba:4d:a1:59:1d:50:b1:cc:
c9:d9:57:a2:5b:cb:63:73:05:6e:51:a0:db:7f:63:ef:38:40:
13:f2:4a:a2:09:1e:f7:74:75:d3:35:11:89:0c:ff:7c:80:e0:
47:98:7d:ef:54:33:61:ff:20:a4:0c:e4:b5:84:37:b8:34:40:
41:01:79:f5:22:b7:43:8e:36:64:90:46:3a:84:25:60:73:ac:
75:64:a3:1a:77:2a:9a:3a:5a:2a:c5:84:07:82:bb:74:7b:42:
14:44:03:2a:db:07:fa:99:b0:24:f4:4e:7b:ba:38:a4:b9:81:
bd:ef:c8:28:c1:31:e2:30:0a:e3:13:60:fe:f7:4a:40:d8:f9:
1f:2c:6c:a5:b4:4d:fb:c1:65:55:cf:33:24:89:cb:7d:dc:ac:
f1:98:c3:de:a0:92:29:40:f0:1e:76:a6:a9:01:6a:30:10:77:
9d:db:2b:83:d6:b4:01:ce:96:8a:82:0e:94:5b:f0:45:6f:e4:
fd:5a:5e:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 12:53:07 2025 by rpki-client