Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
File: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft (raw, json)
Hash identifier: CCbYdoGQ6H0w7pCWOSEaaSRSU/88AXG9Erl8D7cOrYw=
Subject key identifier: BC:36:A9:35:E1:0D:BD:04:01:FB:F9:55:31:DB:0D:A1:EB:F1:59:BB
Authority key identifier: FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
Certificate issuer: /CN=fad7e14a262560191c66576998e9c69b89c3c136
Certificate serial: 0198D54DFB5A5363CDB2747275209C23F471
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
Manifest number: 0AD9
Signing time: Sat 23 Aug 2025 05:01:54 +0000
Manifest this update: Sat 23 Aug 2025 05:01:54 +0000
Manifest next update: Sun 24 Aug 2025 05:01:54 +0000
Files and hashes: 1: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl (hash: kqXPiNHz2E3QTR1FWz6UpndiIAKO/4PHQItj1FFckQE=)
2: ELYZJGHcWhKUiY7ABJ-PY-iSroQ.roa (hash: XKv64QH5ODk1+MXzK56Lue/Lun/NuUmKCWEmKamL9J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:fb:5a:53:63:cd:b2:74:72:75:20:9c:23:f4:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7e14a262560191c66576998e9c69b89c3c136
Validity
Not Before: Aug 23 05:01:54 2025 GMT
Not After : Aug 24 05:01:54 2025 GMT
Subject: CN=bc36a935e10dbd0401fbf95531db0da1ebf159bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:9d:cf:9f:9c:63:bd:20:1f:86:97:80:71:45:
ec:9e:96:97:3f:c7:44:cc:1c:ce:71:5a:e1:94:f4:
f5:aa:17:c4:c8:3c:93:0b:7f:35:08:fc:02:a4:6b:
df:c0:b1:12:42:55:25:cf:ec:af:ad:54:e6:72:cf:
d1:8d:e3:e2:9a:b2:f4:33:ad:58:12:66:13:fd:fa:
5d:35:a7:04:86:d7:5d:64:22:a8:38:38:78:cf:0a:
aa:fc:54:fc:e5:72:68:95:0a:ed:6f:32:4e:ac:b3:
8e:a2:fb:2f:48:40:51:00:d4:ab:b9:46:5a:e9:15:
32:92:0c:d1:e1:93:b5:2e:7f:1b:7a:a5:f6:e9:d8:
4b:d5:b9:0f:96:3a:af:72:64:63:0d:33:1a:f2:c3:
5b:fb:f5:06:ad:24:fd:ed:58:d3:3a:e4:54:79:69:
a6:64:50:8e:bb:36:1e:3f:99:2b:76:9b:fe:9f:b1:
56:4e:69:95:dc:69:00:a0:08:8b:23:57:19:aa:9b:
f1:7c:a1:21:22:88:f4:b5:8f:df:a3:a3:f7:b6:f8:
df:94:4d:5b:a7:70:6d:c0:18:35:11:07:c4:2f:a2:
f9:52:74:ef:ec:54:e9:51:1a:36:e3:e2:70:15:93:
e1:62:59:6a:cf:fb:40:b8:65:4b:0c:ff:7a:3c:c1:
f2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:36:A9:35:E1:0D:BD:04:01:FB:F9:55:31:DB:0D:A1:EB:F1:59:BB
X509v3 Authority Key Identifier:
keyid:FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:99:a7:65:05:d9:5b:59:93:32:36:ad:56:dc:0c:72:5b:1e:
f2:24:23:28:e9:4d:93:f1:4e:c8:ee:bf:9e:4b:a6:7d:e1:43:
a2:fc:a3:42:43:3a:ea:b9:19:2c:eb:a7:0b:f8:d3:a9:7f:b7:
f1:42:ed:b2:a2:8c:bc:b3:71:ef:a3:d8:0e:0c:ca:8b:c6:b0:
20:c8:db:27:97:96:d4:20:57:47:27:6f:cf:8c:fe:a5:49:58:
42:d0:46:d2:25:57:8a:c4:9c:22:bc:6f:6c:ca:06:3c:18:ef:
f3:c9:42:85:fb:4e:5e:2b:01:c7:f5:26:4f:3e:d5:9f:2c:a7:
bb:9d:37:12:66:a8:47:3e:f9:4c:a0:e7:f7:50:a3:7b:9b:ee:
74:9f:86:9f:2c:56:50:66:1d:c9:8d:71:7e:c5:79:c6:24:6a:
b8:f5:96:7b:aa:b7:50:b9:eb:d5:70:3e:34:63:af:2b:b3:e2:
b7:f2:93:46:84:53:ae:cd:bb:0a:71:3a:a3:99:47:ae:d9:3e:
7c:82:2c:7e:74:48:cc:01:19:22:ee:50:9b:d5:13:e5:5b:09:
80:9c:35:61:a6:30:19:9b:f5:ae:24:c5:17:7e:d4:35:f4:16:
d0:99:7d:54:dd:c1:37:0d:3d:83:c4:45:e7:04:47:6f:29:34:
bf:c7:97:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:27:12 2025 by rpki-client