Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
File: tSU8JVLUQD9DuDwl52IjjfEtroE.mft (raw, json)
Hash identifier: WjkwZwdXxUFQXRoFKmm2iV/UlNhtsOKR9Q4SEt6dvxI=
Subject key identifier: AA:F1:4C:21:BC:87:13:0A:CA:2D:06:BD:79:47:12:28:DE:82:28:3C
Authority key identifier: B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
Certificate issuer: /CN=b5253c2552d4403f43b83c25e762238df12dae81
Certificate serial: 0199FE7D7E01884F78E476D2407099E65B46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
Manifest number: 07C7
Signing time: Sun 19 Oct 2025 22:01:01 +0000
Manifest this update: Sun 19 Oct 2025 22:01:01 +0000
Manifest next update: Mon 20 Oct 2025 22:01:01 +0000
Files and hashes: 1: 6BgZvuvQdTTnHkpFXfURizE8XGQ.roa (hash: 78Xx7tAnFjhWDtWYiSHC9JJs2O6w1we6/J46orAWVbc=)
2: tSU8JVLUQD9DuDwl52IjjfEtroE.crl (hash: vvKK56NK+2270DHYRwoOaMFCpgFbRei4Ui+2q1If91w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7d:7e:01:88:4f:78:e4:76:d2:40:70:99:e6:5b:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5253c2552d4403f43b83c25e762238df12dae81
Validity
Not Before: Oct 19 22:01:01 2025 GMT
Not After : Oct 20 22:01:01 2025 GMT
Subject: CN=aaf14c21bc87130aca2d06bd79471228de82283c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8c:29:42:5b:f8:09:66:9a:7b:ea:4c:fc:54:
07:9c:a5:f1:1c:df:dc:8a:17:14:9d:de:e3:ac:f9:
87:60:59:8b:c1:10:fc:20:19:64:2c:c4:0d:c0:38:
e5:b6:72:67:ae:fe:f8:4f:f6:f6:ba:e1:f4:0f:17:
f3:ca:3f:f9:39:c7:1d:22:59:b9:91:4d:63:e5:a1:
60:5d:40:75:52:f1:86:04:e2:70:b4:9c:3f:0c:9a:
7a:97:2c:22:8f:c2:8b:21:a1:4c:6b:9b:8d:54:7b:
9f:f3:f5:39:52:e3:93:1a:b5:35:cc:a5:a2:ab:13:
25:f0:03:e7:ee:28:5e:3d:4e:b8:08:a9:73:c9:ec:
ae:81:bc:99:38:59:a3:62:56:24:a9:e3:31:21:91:
a5:c7:8f:42:5f:cd:62:c1:f4:d6:62:cb:50:55:47:
26:e7:f6:a4:e3:b0:f4:21:45:a3:7b:8f:61:b9:3b:
b0:fd:f6:81:00:89:92:0f:10:f0:a6:14:2c:22:b8:
00:82:98:23:cb:98:e8:10:a3:c9:2c:a7:ee:3a:b2:
31:b0:30:ca:0c:74:04:80:6d:15:21:b3:92:20:4a:
f5:4b:1e:69:62:f8:60:8d:38:85:e9:e9:45:09:ff:
0b:0f:fa:14:d7:a8:1f:5a:e0:90:4e:8c:fb:93:17:
37:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:F1:4C:21:BC:87:13:0A:CA:2D:06:BD:79:47:12:28:DE:82:28:3C
X509v3 Authority Key Identifier:
keyid:B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:bb:fd:6e:66:40:e3:6f:57:44:cd:c5:c5:86:57:89:67:3f:
94:87:2c:8f:9b:b3:f5:6b:22:76:ce:8e:9a:5d:f8:b7:63:16:
67:31:64:d3:ae:7f:52:4b:f2:bf:f1:ae:76:f4:69:96:c2:e5:
c3:32:63:e5:8b:1c:3d:8c:0f:be:be:a7:de:79:19:7e:bd:47:
af:ba:69:2b:08:30:cc:f6:58:c6:ba:8c:bb:ba:f2:ce:d7:c8:
be:33:0f:e0:75:b2:34:dc:4e:13:0c:ed:75:81:bd:54:6c:dd:
37:26:2a:e9:f7:18:61:53:a0:f1:29:2e:3a:a1:e4:24:51:87:
96:b1:dc:01:c9:92:7c:41:9e:6a:41:e5:62:5a:e0:26:04:4b:
c4:cd:3c:49:08:e6:7c:f1:9c:b9:cf:45:71:bb:85:a1:fc:24:
a8:82:c7:f4:dd:b5:50:d1:42:3b:fa:d5:2b:8a:36:73:25:80:
76:1f:ee:e5:ae:ce:9d:30:a4:55:15:16:54:a5:5b:55:79:02:
5a:a8:3b:2a:50:09:9d:59:93:02:d8:35:91:1e:ee:06:2a:aa:
04:b3:03:07:32:0b:5a:4e:64:da:d6:6f:2f:38:5b:a6:9a:ba:
a7:b1:b4:db:1e:79:26:24:7c:74:75:d9:44:9b:32:c0:2a:f2:
18:77:37:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:11:31 2025 by rpki-client