Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
File: tDlfbOqaAYpMyEgY5qo1INMiIYs.mft (raw, json)
Hash identifier: rr2kin+ToDy3btxGsljhizh/diA/fxmCzhKwoZAzklw=
Subject key identifier: F6:77:31:D7:52:55:1C:DD:98:F0:47:E4:D1:B4:9B:F6:16:0B:B1:0F
Authority key identifier: B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
Certificate issuer: /CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Certificate serial: 0198D4724297EC12CC5C081C6EE69DC83C30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
Manifest number: 0CCB
Signing time: Sat 23 Aug 2025 01:01:54 +0000
Manifest this update: Sat 23 Aug 2025 01:01:54 +0000
Manifest next update: Sun 24 Aug 2025 01:01:54 +0000
Files and hashes: 1: UoFhfe1D4fv5504pD16hAMtOHqM.roa (hash: f5OjLqYpJfmM6P+Sc+etueFJmxpiBV6zei8gZZWeXpE=)
2: tDlfbOqaAYpMyEgY5qo1INMiIYs.crl (hash: pEOrnmrTwZL+XIGtkrxTj5kvpBAhqtsyFIGs9IfkF8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:42:97:ec:12:cc:5c:08:1c:6e:e6:9d:c8:3c:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Validity
Not Before: Aug 23 01:01:54 2025 GMT
Not After : Aug 24 01:01:54 2025 GMT
Subject: CN=f67731d752551cdd98f047e4d1b49bf6160bb10f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3c:59:ed:7d:b2:d2:46:33:17:b4:f3:73:84:
5d:84:5f:14:45:48:df:48:d3:3a:ed:d0:78:8f:fe:
12:35:1d:bc:cc:13:65:62:99:7c:c0:19:10:e9:68:
72:2e:20:bf:4f:48:eb:8c:80:c0:2c:24:14:cf:b8:
27:fb:c2:8b:47:a3:87:44:d5:a1:0f:46:73:5e:ff:
3b:13:0e:21:04:aa:d3:77:8e:f7:b0:c4:c5:bc:6f:
78:2f:12:f9:7d:de:63:9d:f1:e7:d5:2f:68:fd:87:
c9:6a:ec:1b:7b:92:3b:82:aa:2d:92:6a:49:a9:bc:
65:9e:8b:f1:dc:6c:89:bd:2a:01:54:c2:11:f7:08:
fc:66:b1:f0:da:09:a3:12:aa:e1:6e:fd:5f:41:ec:
79:b4:20:78:dd:5b:14:ec:5b:2e:df:5f:e0:e8:4c:
2d:63:c0:ba:26:dd:a4:e1:9d:8a:85:06:39:ce:76:
3c:eb:33:f8:51:73:f2:2b:39:e2:be:6e:3e:64:10:
20:1e:0a:b8:f2:13:71:02:78:db:06:5c:45:ab:5d:
26:65:a4:bd:d6:cc:8f:38:de:4c:0f:25:1d:29:20:
40:89:95:c1:88:70:95:ef:5b:d9:f9:7f:51:9a:c2:
1b:b4:ed:f0:19:50:9c:fb:86:03:a9:f1:a1:f2:6b:
37:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:77:31:D7:52:55:1C:DD:98:F0:47:E4:D1:B4:9B:F6:16:0B:B1:0F
X509v3 Authority Key Identifier:
keyid:B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:a4:a1:a7:26:18:ce:36:8a:db:ed:a1:ea:88:e5:f8:4d:79:
88:d5:e9:3f:7a:71:10:1c:af:d9:fc:a2:e9:37:5f:ff:29:bd:
d4:35:a6:91:b1:5a:b4:ca:fe:2f:7e:68:bd:63:cd:ac:89:88:
a4:e1:10:a6:e5:06:68:79:cc:9b:fd:94:6b:61:74:ff:ea:ef:
7e:9b:07:b0:49:9f:f6:4f:b3:e2:50:f7:5a:fb:56:c1:71:65:
6c:90:08:4f:c9:ef:68:1d:6c:e7:ea:1f:d6:ee:95:e6:dc:d8:
8b:c3:9d:d1:f7:8d:fc:71:a3:39:29:85:93:9a:76:8e:d3:89:
ae:80:33:db:84:85:2a:91:e7:97:8e:19:7e:ff:4e:98:93:09:
d3:6b:5c:33:95:cc:c4:de:6a:8e:c2:72:8e:4d:7d:e9:9e:6d:
27:e6:1b:9c:00:83:a1:ca:d6:da:ee:fa:eb:8f:3e:12:bb:00:
ec:15:c6:17:b5:a0:23:cc:4c:5a:b9:57:48:45:d2:3d:85:b3:
fd:e4:fc:99:94:53:83:8c:81:e6:d9:4c:a1:ef:99:50:48:4a:
c2:f7:26:d8:3d:95:11:dc:df:98:97:49:ab:12:24:99:34:4a:
b4:f4:bd:40:77:d5:b1:d3:47:43:bc:35:8a:a2:04:e3:9b:09:
74:43:90:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:26 2025 by rpki-client