Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft
File: trcm8FkrUE5yMwX2e6tRR9TqaW0.mft (raw, json)
Hash identifier: UWGjdthXgaNH07MdV8p+T7Y8P15thbInS5lCx4BoUTM=
Subject key identifier: 9A:CD:43:AE:26:E5:34:BD:31:A0:6A:FC:46:4B:CA:E2:A4:20:EE:C6
Authority key identifier: B6:B7:26:F0:59:2B:50:4E:72:33:05:F6:7B:AB:51:47:D4:EA:69:6D
Certificate issuer: /CN=b6b726f0592b504e723305f67bab5147d4ea696d
Certificate serial: 0198D4A7BBFA1A62737D391E3DFC0A2FF948
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/trcm8FkrUE5yMwX2e6tRR9TqaW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft
Manifest number: 0989
Signing time: Sat 23 Aug 2025 02:00:19 +0000
Manifest this update: Sat 23 Aug 2025 02:00:19 +0000
Manifest next update: Sun 24 Aug 2025 02:00:19 +0000
Files and hashes: 1: _oI-Lkb0IuWy-UHIoAbDqvwfl1s.roa (hash: mRZXCcW1ghBXMTwSw7NYgVRMYeyGjl4gH8juqLCzVks=)
2: trcm8FkrUE5yMwX2e6tRR9TqaW0.crl (hash: GIUCx7XsvivVnbTlIxts3FfTLh5tdjucIpJ2uh3Pk+0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/trcm8FkrUE5yMwX2e6tRR9TqaW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:bb:fa:1a:62:73:7d:39:1e:3d:fc:0a:2f:f9:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6b726f0592b504e723305f67bab5147d4ea696d
Validity
Not Before: Aug 23 02:00:19 2025 GMT
Not After : Aug 24 02:00:19 2025 GMT
Subject: CN=9acd43ae26e534bd31a06afc464bcae2a420eec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:72:b4:28:03:79:12:99:f4:d1:51:d5:6e:7f:
4a:b1:22:3c:63:78:0e:a2:15:30:a7:cc:33:56:36:
83:e0:2d:8d:04:5a:f3:c4:53:a0:14:04:eb:b5:0f:
f0:10:9b:c4:ad:47:52:6c:40:c1:06:a2:d6:5a:c5:
e2:90:f8:b1:a4:61:23:05:ce:63:9f:ae:35:1c:ca:
6c:69:64:d8:50:6d:2f:41:1e:cf:37:01:a0:85:04:
fe:dd:11:8e:22:d8:17:6b:22:bc:7a:b9:00:f4:b8:
e9:46:4c:aa:b2:52:9f:6e:19:68:90:fc:f0:2a:f5:
94:fa:4f:b5:25:48:8d:e1:8c:85:85:73:05:a4:16:
ca:15:21:bb:28:a0:d8:9b:e0:6c:08:01:0b:8a:14:
c8:ae:4c:95:4e:68:13:34:cd:5e:6a:a6:07:a0:1b:
01:c7:17:f1:8a:4b:38:64:4f:83:01:22:1f:36:96:
62:43:78:18:3f:9e:16:be:c9:4f:0b:35:5d:6b:bd:
f3:77:fc:00:54:6a:8b:16:46:af:9d:ae:19:c5:a6:
83:a4:e3:b1:dd:e3:97:0f:af:a1:7c:ad:74:15:86:
78:64:83:14:63:87:07:27:41:b8:42:52:d6:12:5d:
94:b1:ff:66:b9:52:b4:ec:b9:fb:bb:51:89:d2:35:
74:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:CD:43:AE:26:E5:34:BD:31:A0:6A:FC:46:4B:CA:E2:A4:20:EE:C6
X509v3 Authority Key Identifier:
keyid:B6:B7:26:F0:59:2B:50:4E:72:33:05:F6:7B:AB:51:47:D4:EA:69:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/trcm8FkrUE5yMwX2e6tRR9TqaW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:ed:89:98:58:58:9e:b7:7f:20:0c:25:23:1e:e3:71:e9:4e:
e5:67:85:8a:24:57:c5:45:34:af:05:e0:23:3b:e6:16:b9:4e:
c8:20:36:ed:10:1a:14:b0:24:67:41:d5:17:4b:d2:02:38:d6:
e9:8d:a8:1d:ed:d2:3e:0b:05:1d:c9:75:89:46:72:5e:b6:ea:
19:32:1d:90:79:a2:4e:46:fc:5a:31:47:2d:8c:ce:1a:43:f6:
2e:cf:95:49:8d:59:e3:08:d0:1d:b1:4e:cb:5f:6d:f8:4d:c6:
9f:c7:1e:c9:d1:23:56:dc:21:e3:08:0e:49:c1:99:5d:3b:38:
83:27:c8:48:56:98:79:3b:81:42:87:70:35:f6:19:f5:af:35:
81:ff:d4:1c:62:e6:51:36:73:c8:68:f8:5c:96:db:82:5a:85:
f8:2a:3d:3b:c5:8c:2b:a6:73:5a:11:53:d4:be:1c:c3:a6:6d:
43:e2:18:d3:64:05:89:f4:ba:54:f2:b8:ad:48:13:31:2a:a9:
60:ad:81:81:e1:10:7a:cc:8d:34:b3:07:5d:4e:e7:e7:0e:8e:
ce:dd:94:62:41:87:78:94:f9:44:85:59:95:bf:2d:ef:ed:85:
23:6c:14:d5:61:4d:6d:02:37:0e:a1:f0:f1:c9:e5:c1:a2:38:
c8:45:6e:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:49:18 2025 by rpki-client