Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
File: tU3fbwMzHNdzx-ersVQpuo0gvXg.mft (raw, json)
Hash identifier: mxzvZfSFfeFSHJ753sA0MaGOW1nVnQqBeKjfslmAbBg=
Subject key identifier: D8:86:2C:11:D7:55:5C:95:55:FD:02:56:34:9C:E1:41:F4:C7:8F:58
Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Certificate serial: 0198D66051D21565736FC862100FCFBBED2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
Manifest number: 078D
Signing time: Sat 23 Aug 2025 10:01:33 +0000
Manifest this update: Sat 23 Aug 2025 10:01:33 +0000
Manifest next update: Sun 24 Aug 2025 10:01:33 +0000
Files and hashes: 1: 1SqAG3Japdqs2uBvGFHguJLvhqE.roa (hash: tRLIPOPh9GLi7wL54w2K0S63l5p5YYde2YPqeJx3wD8=)
2: tU3fbwMzHNdzx-ersVQpuo0gvXg.crl (hash: Gv7MuQGtdgHYMQdMvfs2CfPnZRA9xC7U4cMwxncYKlw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:51:d2:15:65:73:6f:c8:62:10:0f:cf:bb:ed:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Validity
Not Before: Aug 23 10:01:33 2025 GMT
Not After : Aug 24 10:01:33 2025 GMT
Subject: CN=d8862c11d7555c9555fd0256349ce141f4c78f58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3b:30:dd:56:44:8b:14:c0:47:08:6f:af:1b:
a4:9f:0c:f7:79:6e:e9:4e:a7:0f:6a:e3:24:2c:a4:
5a:9c:10:85:ba:c6:b0:a9:0d:9a:19:00:99:4f:8e:
67:43:76:2a:93:b5:4e:a7:8a:85:83:b4:ec:ff:8b:
3d:7b:d8:8c:98:b5:ba:39:b3:e6:3f:9c:71:1d:d5:
14:2d:5e:4d:13:5f:eb:10:1c:3b:de:34:59:fb:df:
13:c0:b5:ea:57:5c:ce:27:a9:bb:75:ab:e1:34:50:
cc:48:d7:f9:95:ca:e1:d9:bc:5e:5a:74:cc:10:77:
05:d2:0e:1a:db:cf:ad:12:18:81:3e:f4:5b:b6:b3:
41:0d:0c:b2:c8:b5:31:b0:a2:2f:27:0b:b3:fc:6d:
01:a7:3a:a7:fb:bb:bb:d5:ff:61:2d:f3:a1:84:af:
f4:fd:f7:f1:c3:34:0d:18:f4:d6:ed:92:4c:b5:f0:
e9:32:22:38:44:28:8c:22:f1:12:66:2c:b0:7f:6f:
db:b1:fc:c3:a7:fd:f5:ab:1a:a9:8a:d3:a8:b5:9a:
03:22:bf:4d:87:e3:74:d1:62:41:60:85:07:91:c8:
1d:5a:da:d7:37:c6:42:08:86:c9:11:2e:45:e4:2f:
67:f3:0e:09:ea:9b:44:ba:3e:a5:64:06:b7:23:d4:
ea:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:86:2C:11:D7:55:5C:95:55:FD:02:56:34:9C:E1:41:F4:C7:8F:58
X509v3 Authority Key Identifier:
keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:4d:c4:04:b4:13:fc:0d:78:58:18:73:7e:00:f3:c9:72:26:
46:27:9b:71:06:0c:9e:22:8e:e5:97:b2:49:ae:85:f3:18:36:
b2:d8:a6:ab:a7:49:31:9b:cb:ab:84:84:8d:a2:f2:ba:ce:ae:
ce:32:07:15:3f:60:ae:90:06:9e:92:de:73:c0:80:d3:3d:4d:
52:46:b2:1a:8a:95:06:a7:9e:ab:67:f1:66:74:8f:ed:41:d3:
17:92:20:66:44:9c:a4:18:d0:14:61:24:5f:a1:3d:ba:4f:74:
4f:94:b2:04:99:27:27:63:35:85:46:c1:ff:ca:82:8d:ec:30:
46:bd:f7:b8:cd:76:3d:50:cc:74:d3:cc:77:7f:a6:04:b0:ac:
b8:5d:52:c1:f1:e1:85:d5:49:a2:d3:83:40:48:eb:15:7f:d8:
7b:fe:67:fd:33:bb:89:71:27:02:75:0f:a0:81:45:7f:aa:e6:
70:e6:8c:35:66:d8:2b:a5:fa:d1:1e:0e:1c:0a:74:65:06:41:
f8:bc:29:ce:38:52:e6:22:77:bb:94:15:3c:a3:c8:2d:2a:b5:
10:eb:b6:1f:5c:f7:c6:56:dd:7b:28:d7:8e:6b:d7:d8:7f:4d:
f2:82:b9:c0:d0:16:9a:82:4f:25:1c:8d:0c:9d:cd:e0:45:46:
42:fb:a1:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:08 2025 by rpki-client