Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
File: tU3fbwMzHNdzx-ersVQpuo0gvXg.mft (raw, json)
Hash identifier: mIn8J5eOC3pCV2GWfrZdp6jXwdbPb9v4QmUgFDNZik8=
Subject key identifier: 9A:76:60:BB:BE:29:25:2F:0A:3D:EB:F3:02:1F:16:A9:23:90:99:9A
Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Certificate serial: 0199FDD8CE3892B4D70DE1B0106E0DE5A1B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
Manifest number: 0826
Signing time: Sun 19 Oct 2025 19:01:08 +0000
Manifest this update: Sun 19 Oct 2025 19:01:08 +0000
Manifest next update: Mon 20 Oct 2025 19:01:08 +0000
Files and hashes: 1: 1SqAG3Japdqs2uBvGFHguJLvhqE.roa (hash: tRLIPOPh9GLi7wL54w2K0S63l5p5YYde2YPqeJx3wD8=)
2: tU3fbwMzHNdzx-ersVQpuo0gvXg.crl (hash: aU7f7JeArq6jvq5jHhPDFFJ59hV3zfIyVHby/bu6w0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d8:ce:38:92:b4:d7:0d:e1:b0:10:6e:0d:e5:a1:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Validity
Not Before: Oct 19 19:01:08 2025 GMT
Not After : Oct 20 19:01:08 2025 GMT
Subject: CN=9a7660bbbe29252f0a3debf3021f16a92390999a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:8c:91:7e:43:f7:6d:c6:da:a1:22:0f:cf:a1:
7f:5e:59:78:c0:63:78:e5:a9:7b:99:1f:27:ec:f9:
f2:b2:61:a5:1e:13:13:27:c6:fd:39:7c:c5:f1:92:
62:6e:10:70:24:28:e5:b8:0b:71:56:68:8a:e6:f2:
ee:d8:70:0b:f9:4b:06:86:ef:cc:82:0b:23:15:5d:
c6:11:ba:c0:5e:a0:54:cf:1f:fc:5d:55:85:24:22:
8d:d5:61:35:31:aa:11:0c:3c:22:df:27:cc:5b:4e:
54:35:ba:39:e5:fd:80:bd:99:55:37:cf:44:90:b0:
97:67:7c:3e:27:b0:56:da:f5:a5:27:5f:92:56:df:
70:29:be:30:ee:1f:fd:1a:e4:de:1f:ce:5d:59:74:
dd:cb:ad:19:cc:5f:d5:a8:bf:0b:66:b6:9a:61:06:
d4:42:1c:d6:8e:cc:37:f4:8b:c5:3f:ca:e0:fa:4c:
9b:b5:1c:c3:4d:8d:17:31:40:ae:21:0c:60:6b:13:
9c:ae:41:fd:2f:a6:37:a3:76:41:1b:02:44:9b:5f:
e4:58:61:43:37:e4:ed:ec:cb:ca:19:60:f2:d0:05:
a9:da:3d:4b:3b:46:52:bd:5a:aa:ae:75:ba:66:52:
b1:be:a9:45:8a:b1:d4:52:86:1d:5e:d8:64:7b:88:
54:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:76:60:BB:BE:29:25:2F:0A:3D:EB:F3:02:1F:16:A9:23:90:99:9A
X509v3 Authority Key Identifier:
keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:29:23:34:2d:3d:2d:74:eb:4e:50:d9:8f:36:51:86:2b:30:
b5:49:e3:c8:f2:c4:35:6c:e3:57:31:73:db:3f:c3:23:30:56:
4a:56:cd:cb:e0:62:97:6a:92:9f:28:f7:a3:95:77:18:3e:64:
12:b5:5d:54:3f:d4:cb:94:be:74:86:22:0e:0d:0d:55:2c:fe:
8e:4d:e7:5d:1e:c9:ee:19:b1:95:97:d6:73:24:da:e9:6b:a3:
59:6b:ac:f4:54:9c:4b:8b:3c:b7:27:4a:af:c7:1e:79:ce:e7:
0e:b7:1f:1a:e1:e1:7a:88:ee:bb:00:43:31:f0:b7:49:26:1a:
0a:7a:cf:49:7d:35:02:6f:8e:a1:47:3a:cd:dd:66:28:d1:f2:
e8:0b:4e:e3:95:57:03:a9:3c:ad:27:d3:01:59:3b:e1:9f:4c:
cc:8f:3e:0a:a6:99:9d:5b:91:c5:d4:90:f3:08:c6:e7:7c:ec:
71:4d:ff:2b:ce:56:25:fd:8d:1c:fa:26:e8:d4:a1:ba:5c:58:
5e:06:4b:57:fd:5f:5e:16:e1:f5:66:ad:04:e0:97:0c:c7:2c:
d2:09:a1:f0:3c:50:ec:92:c6:3f:98:a5:8e:a0:db:0e:dd:45:
db:37:5e:0a:ee:45:46:7e:e7:38:59:33:fd:69:6a:f9:32:f9:
6b:fc:08:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:36:09 2025 by rpki-client