Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
File: TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft (raw, json)
Hash identifier: TbIgp8yy0ylLHU7xbBEGIaFEYDfS8a8wG46gk8x04aQ=
Subject key identifier: B0:BC:C9:7A:31:D7:8B:52:7E:BD:23:AD:05:A1:8B:BA:51:10:AF:04
Authority key identifier: 4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
Certificate issuer: /CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Certificate serial: 0198D5F12E11979A40FC1ED28D12F210F819
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
Manifest number: 02F2
Signing time: Sat 23 Aug 2025 08:00:09 +0000
Manifest this update: Sat 23 Aug 2025 08:00:09 +0000
Manifest next update: Sun 24 Aug 2025 08:00:09 +0000
Files and hashes: 1: 1-QbsigNOAsIOrzATvCDKf5YVw3s.roa (hash: gWNRwRZG0Ifn0uSFb+Au9uZSZqHds/SqKOwbteITnow=)
2: TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl (hash: PqBwVuJZL+Rj9rPwyjyH0YWWevmEDuYpS7fCmtc25mQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 08:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:2e:11:97:9a:40:fc:1e:d2:8d:12:f2:10:f8:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Validity
Not Before: Aug 23 08:00:09 2025 GMT
Not After : Aug 24 08:00:09 2025 GMT
Subject: CN=b0bcc97a31d78b527ebd23ad05a18bba5110af04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2e:15:e4:cc:0a:88:a7:76:d5:de:78:5f:ed:
94:c9:22:9a:8e:be:d3:b0:11:4a:d2:70:99:33:84:
df:91:d1:e3:b5:6e:b7:3b:01:9b:f2:75:00:84:2b:
23:d3:6c:12:22:67:6c:a4:86:9b:bc:f9:bf:0b:8f:
bf:db:d4:ab:21:47:a9:3f:1a:30:6e:ff:a4:95:bd:
27:c1:68:69:9e:bf:ef:c9:39:55:16:3e:84:53:68:
a3:9e:de:f6:c6:7e:a9:6c:63:2f:b1:16:d6:52:6e:
2a:98:66:87:9a:e7:cc:6b:11:77:8c:60:09:7b:17:
e2:c9:c1:67:65:d2:be:f5:b8:99:7a:27:42:2e:d0:
bb:d3:54:d0:0f:5d:af:7c:41:80:3a:92:01:57:6e:
bb:f4:63:a7:e2:6f:18:61:3a:cb:72:c1:8a:c3:1b:
26:0d:3d:40:3a:91:c3:67:38:47:d6:d4:79:d9:d5:
53:38:ca:71:c2:45:57:fe:73:00:b7:6e:ed:86:c5:
f1:3f:09:67:77:b3:49:ef:ef:4c:1c:a2:a4:23:dd:
06:cc:ba:41:02:29:71:9e:09:65:c9:03:7c:d0:68:
c1:31:4d:13:45:01:d7:9a:2e:61:18:25:a3:a1:d3:
ef:1d:5b:3d:10:ac:3f:2c:e9:e2:90:f5:dc:ea:0a:
7f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:BC:C9:7A:31:D7:8B:52:7E:BD:23:AD:05:A1:8B:BA:51:10:AF:04
X509v3 Authority Key Identifier:
keyid:4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:61:81:0c:cf:c5:9f:b0:43:e8:84:2d:3f:03:6f:a7:51:58:
4a:1c:a2:8a:ea:9d:25:fb:bb:45:78:dc:c6:8e:d9:43:5c:52:
9d:24:63:08:3e:b3:a2:06:65:cd:9c:24:45:d8:3b:67:58:8a:
41:42:99:61:db:89:13:a2:67:5a:76:17:d7:d8:c3:ee:b9:9f:
a2:f0:66:63:89:98:44:13:1b:5a:bb:ac:d1:9e:f5:9e:8c:c7:
61:e3:be:7f:7a:5c:74:16:10:c1:e0:66:71:b8:99:68:73:31:
32:0b:e2:7e:6d:39:20:87:8c:9a:35:ca:d1:4e:94:d4:5b:ea:
53:c9:8d:45:9a:b3:31:0f:03:ea:84:78:cd:6d:e9:9a:66:64:
87:9c:bf:f9:a6:5e:1e:2a:fe:73:9a:97:b1:2c:9b:f7:13:ee:
62:aa:24:c2:35:c8:8d:90:f7:dd:28:a0:7f:35:a6:c3:2f:52:
e1:67:dd:59:b2:8d:1d:f0:ee:82:64:1b:c5:3f:95:fe:66:ac:
50:fd:c6:7b:c0:9e:c6:16:e3:c5:0a:12:2b:86:37:06:5c:82:
3c:3d:92:93:27:23:48:31:11:56:86:d7:00:4a:66:ee:b5:34:
7a:6a:5c:ec:fb:34:55:d8:82:c6:95:25:71:1e:29:7b:c4:ff:
b4:80:a7:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:25:12 2025 by rpki-client