Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
File: tDlfbOqaAYpMyEgY5qo1INMiIYs.mft (raw, json)
Hash identifier: CICgkN41PYlQ4GuLz/7i30tLrJiwp7jTWC2loEFltT8=
Subject key identifier: 94:E1:60:E5:19:EC:DC:F8:6F:D5:B4:F5:8D:23:53:31:77:64:16:35
Authority key identifier: B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
Certificate issuer: /CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Certificate serial: 0199FBEAE9C7A45918090066EB999974B97B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
Manifest number: 0D64
Signing time: Sun 19 Oct 2025 10:01:40 +0000
Manifest this update: Sun 19 Oct 2025 10:01:40 +0000
Manifest next update: Mon 20 Oct 2025 10:01:40 +0000
Files and hashes: 1: UoFhfe1D4fv5504pD16hAMtOHqM.roa (hash: f5OjLqYpJfmM6P+Sc+etueFJmxpiBV6zei8gZZWeXpE=)
2: tDlfbOqaAYpMyEgY5qo1INMiIYs.crl (hash: W8fPK3UGfCT1Ds2Na7ZGuyA9qdbz8Pdl+WWknOxXzDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:e9:c7:a4:59:18:09:00:66:eb:99:99:74:b9:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Validity
Not Before: Oct 19 10:01:40 2025 GMT
Not After : Oct 20 10:01:40 2025 GMT
Subject: CN=94e160e519ecdcf86fd5b4f58d23533177641635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:97:a0:65:5d:c7:4e:9c:7c:95:74:27:a0:d7:
1d:74:93:84:be:30:ef:6f:31:59:70:54:a7:a6:6a:
cb:80:95:78:22:81:79:38:a9:93:fb:73:c7:3f:86:
6c:4c:10:23:15:ea:5f:cf:15:ef:44:ab:f5:75:ee:
a2:3d:65:50:95:e6:9e:98:50:78:9c:91:de:a9:1c:
cc:6c:5f:65:82:03:e7:66:46:73:a2:98:28:e9:a1:
92:eb:e3:36:82:0e:b8:d4:fd:ef:04:a7:12:b0:5d:
0a:d8:3c:b4:30:85:b9:66:f8:55:6e:23:fb:c6:89:
86:6a:41:4d:27:fe:8e:26:fe:78:26:a4:76:5c:f4:
01:77:ba:a7:74:4d:74:0a:24:3e:34:2c:6f:c4:82:
e3:cb:ba:42:86:a8:a0:e7:3b:b7:2b:42:9a:bd:a4:
e5:b8:29:6c:0c:99:df:17:96:ad:06:4f:de:03:89:
23:f2:8e:a3:ce:e0:c4:45:09:0b:d0:60:75:cd:92:
02:e2:7f:3c:af:c5:4f:26:b8:e9:59:7c:fe:fc:1a:
53:66:8b:48:a2:89:70:03:cf:6c:9b:fd:d3:56:14:
bd:af:46:f5:66:f3:fa:bd:63:39:71:a6:87:bb:51:
57:be:eb:db:95:58:16:1e:58:bf:ad:a9:1f:04:45:
b5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:E1:60:E5:19:EC:DC:F8:6F:D5:B4:F5:8D:23:53:31:77:64:16:35
X509v3 Authority Key Identifier:
keyid:B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:90:66:f1:05:a2:78:7a:2f:9c:bc:b0:43:ae:22:5a:88:4f:
f0:3c:e3:d5:b4:9b:38:e9:9b:a1:8e:5e:ee:b1:7a:b1:b9:42:
1e:92:82:e6:a6:7d:7d:c0:c1:2b:d5:88:5e:f0:ae:b1:45:a9:
df:6b:e5:7b:1d:a2:b2:79:76:c5:db:d6:a7:69:b1:6e:09:f4:
29:7f:1a:f8:67:6b:e4:61:02:2b:17:d5:b1:29:0b:9d:5d:49:
92:a2:cd:a5:72:69:f7:12:c2:2e:1f:01:91:52:84:6d:3d:08:
e7:d7:c1:94:72:e6:25:b5:f3:3a:1e:8a:e0:d6:d9:9e:d9:d9:
63:3f:e6:5c:83:60:25:a2:44:3f:21:e0:69:e5:05:fb:9e:9f:
a4:b4:1a:bb:d5:e8:71:42:cb:d5:35:ea:d0:b5:29:6a:d1:2b:
8d:21:af:e4:ec:b5:34:ea:7d:6b:b1:4a:1c:94:2b:95:d4:d3:
2b:b1:18:5c:c9:b3:63:91:e1:ef:ee:7d:4b:7c:0f:c6:bf:2e:
56:87:80:a2:6c:88:b3:78:56:07:d4:3f:69:57:04:73:58:6b:
44:71:bf:6c:ac:48:e4:52:34:e0:53:b9:46:8a:ab:0f:08:dd:
35:21:b4:ae:0b:9e:ed:f9:75:62:37:72:1a:9b:2d:96:11:ac:
29:8f:5b:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:26:45 2025 by rpki-client