Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
File: tF9VYNefBKktehUPPtjaQwir6jM.mft (raw, json)
Hash identifier: tdPm7ejWM85Ge1dPNjpHsHQQnh9AlSOHE5JZEhSZuVs=
Subject key identifier: 08:79:54:0B:C8:18:77:A9:D2:62:13:0D:F2:40:37:CE:5A:F5:45:A2
Authority key identifier: B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33
Certificate issuer: /CN=b45f5560d79f04a92d7a150f3ed8da4308abea33
Certificate serial: 0198D4A7EEE3D6D720959DF4E63042DA2312
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
Manifest number: 11D1
Signing time: Sat 23 Aug 2025 02:00:32 +0000
Manifest this update: Sat 23 Aug 2025 02:00:32 +0000
Manifest next update: Sun 24 Aug 2025 02:00:32 +0000
Files and hashes: 1: rFHksT2fJAQ7epdh-sMDgGR2SM4.roa (hash: Z/iFpAzmqAm2KrlQVqRFy4X3KTo7SXYWoBA5a7g2HG4=)
2: tF9VYNefBKktehUPPtjaQwir6jM.crl (hash: sPbnbWhDnUV1EhkRBsJ9OQLTi6C45nmnIGhoTx+6s20=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:ee:e3:d6:d7:20:95:9d:f4:e6:30:42:da:23:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45f5560d79f04a92d7a150f3ed8da4308abea33
Validity
Not Before: Aug 23 02:00:32 2025 GMT
Not After : Aug 24 02:00:32 2025 GMT
Subject: CN=0879540bc81877a9d262130df24037ce5af545a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:84:44:75:b6:36:01:87:2c:66:13:6a:32:74:
b8:3b:f9:ad:eb:77:ab:0a:df:33:d9:e8:b0:59:df:
fd:e5:58:07:15:e1:02:75:50:c8:30:62:17:ac:ef:
dc:ca:5f:43:50:7a:21:74:b5:96:d3:86:69:ab:2f:
cd:91:55:6f:78:02:ad:f9:f2:84:3a:50:83:20:3d:
50:fc:5a:99:d3:92:89:90:ee:fe:df:2d:e6:5f:8e:
db:01:b9:94:53:11:5e:c1:da:e9:0b:62:69:85:34:
f2:98:a1:eb:c3:84:1b:a4:59:3e:05:f0:ed:a9:fe:
b6:e4:6b:84:97:a0:2a:d3:53:73:d1:3e:37:19:10:
29:f3:bd:34:49:52:2a:6d:57:78:39:87:4a:15:56:
56:3e:51:60:b2:fe:ee:6a:d4:54:6c:73:d0:17:a8:
36:db:a9:03:8d:9e:cb:90:41:2f:82:23:df:62:d0:
ed:c9:db:e2:5f:03:4d:e6:7c:c6:e5:d8:44:ee:0c:
b3:4f:5b:aa:cd:53:6e:bc:3c:70:7a:7d:c9:5c:e8:
a6:03:3c:0c:15:4d:a8:f5:17:19:f0:11:f9:87:6e:
b5:e5:05:51:d9:c1:3b:c2:e4:49:55:06:1b:1d:f7:
ef:ce:e2:96:39:35:94:04:ac:87:84:f3:ff:e9:e6:
7d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:79:54:0B:C8:18:77:A9:D2:62:13:0D:F2:40:37:CE:5A:F5:45:A2
X509v3 Authority Key Identifier:
keyid:B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:14:9e:61:b1:e4:aa:4c:e5:0d:fc:69:2e:f7:a8:00:75:9c:
64:06:ff:b4:38:27:68:4b:a3:55:72:3e:4b:3b:a1:ef:9b:77:
1d:60:61:6a:9e:f3:39:f0:6d:95:17:00:82:90:c0:88:49:b6:
4e:c3:42:30:8a:c7:ce:38:61:f2:a0:8b:46:b0:26:8c:3f:39:
73:58:c5:52:8e:af:f8:01:e8:66:26:92:dc:bc:5e:4a:56:c6:
34:95:18:57:58:c7:de:79:97:6e:ff:2f:25:e1:f4:ea:88:b0:
fe:ba:04:e3:92:71:14:2e:ca:93:56:85:e5:46:e2:6d:83:6a:
6e:13:08:be:04:07:cc:92:b6:77:d1:3f:dc:93:d6:59:72:8f:
18:6f:22:05:ee:3c:04:3c:22:bc:95:fb:18:d8:66:02:09:65:
9f:c9:c4:62:75:3d:3f:8f:f1:a3:7c:eb:52:8e:8a:f4:16:46:
55:57:b7:ae:39:d8:7f:0b:07:5c:b1:d4:c1:db:de:75:47:81:
8b:18:3d:31:ba:01:d5:f2:0c:28:45:f7:8e:cf:50:20:57:b7:
c9:ed:05:48:3e:54:b5:be:97:c4:2f:2d:26:e5:6e:d8:56:c9:
81:82:c5:52:97:f0:da:13:1e:3a:cc:38:8b:27:60:e9:27:b5:
e9:17:26:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:08 2025 by rpki-client