Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
File: TZRvTfIjdJGmjfpAe-QfroS72mY.mft (raw, json)
Hash identifier: wAoq7G5hoi1LuIAxqD8yryTYUfc34r8bJCVSHkoaegY=
Subject key identifier: 35:6B:65:13:08:54:1A:A2:27:CD:B2:5E:88:D2:85:B4:04:A5:E4:4C
Authority key identifier: 4D:94:6F:4D:F2:23:74:91:A6:8D:FA:40:7B:E4:1F:AE:84:BB:DA:66
Certificate issuer: /CN=4d946f4df2237491a68dfa407be41fae84bbda66
Certificate serial: 0198D4A7DA5496AA4C442E42DDCBB18ECADF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TZRvTfIjdJGmjfpAe-QfroS72mY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
Manifest number: 0FAB
Signing time: Sat 23 Aug 2025 02:00:26 +0000
Manifest this update: Sat 23 Aug 2025 02:00:26 +0000
Manifest next update: Sun 24 Aug 2025 02:00:26 +0000
Files and hashes: 1: C8PR4XXWsjpP8PHYuoN78zoE9nY.roa (hash: uu2Jn3Slz9u+yGZ22j4LqOkp9lCOWyyfMINckydLJ3E=)
2: TZRvTfIjdJGmjfpAe-QfroS72mY.crl (hash: 4uokxBEUbksClk+SkC2fe6pMCtOge75mWFSGp2b0+LM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
rsync://rpki.ripe.net/repository/DEFAULT/TZRvTfIjdJGmjfpAe-QfroS72mY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:da:54:96:aa:4c:44:2e:42:dd:cb:b1:8e:ca:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d946f4df2237491a68dfa407be41fae84bbda66
Validity
Not Before: Aug 23 02:00:26 2025 GMT
Not After : Aug 24 02:00:26 2025 GMT
Subject: CN=356b651308541aa227cdb25e88d285b404a5e44c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ef:e4:c6:b1:e9:f3:84:56:9d:73:f6:be:ac:
63:1b:cd:eb:c0:b2:4d:0b:14:da:bf:02:a2:e0:7e:
e2:ff:87:82:9f:06:80:11:68:cf:b8:7b:ef:60:9a:
ef:e9:2a:ca:dd:a5:0e:d8:3e:f9:eb:94:a0:20:4b:
65:09:2f:94:40:fc:96:0e:3a:b5:74:d2:a8:ec:a6:
cb:f1:95:31:64:4c:93:4d:2b:02:35:56:2e:36:87:
0a:38:68:3b:af:5c:fc:b8:c6:cd:fb:63:b3:37:96:
6b:dd:aa:b5:9a:be:d2:f7:c6:72:27:66:81:26:c7:
df:70:36:56:2a:73:e2:87:64:96:70:23:30:ab:24:
57:f5:fb:ba:f5:30:62:55:a3:43:8b:2f:42:98:24:
c3:9e:13:a4:a5:28:1e:73:f7:c3:ee:81:cb:b6:ac:
21:32:4a:d2:b1:76:b5:40:4c:04:18:3d:2c:0c:64:
75:66:1e:b6:f7:bb:fd:54:fb:da:d8:18:f8:2e:e0:
53:43:ec:7d:d2:51:f6:0b:ba:58:a3:21:74:39:cc:
b0:30:87:19:fd:c4:99:ae:f6:2d:36:35:5f:45:04:
60:ae:a3:74:6b:99:1a:6e:b4:83:08:38:82:a0:ae:
b4:38:28:36:5d:94:33:03:2a:11:19:2d:7a:a0:41:
14:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:6B:65:13:08:54:1A:A2:27:CD:B2:5E:88:D2:85:B4:04:A5:E4:4C
X509v3 Authority Key Identifier:
keyid:4D:94:6F:4D:F2:23:74:91:A6:8D:FA:40:7B:E4:1F:AE:84:BB:DA:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TZRvTfIjdJGmjfpAe-QfroS72mY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:dd:06:b2:74:e1:fc:de:a8:d0:26:1d:84:5d:b1:66:37:03:
a9:65:5c:6f:03:e6:20:83:17:34:1b:77:63:c6:4b:d4:b9:b9:
38:c8:de:fb:bf:66:1b:58:19:49:89:4c:46:0a:32:32:d5:de:
47:ca:a6:3e:ed:a8:ed:0f:5d:b2:cc:bb:b6:79:64:d7:be:ed:
ff:ed:cf:e3:58:99:f4:43:7d:6c:54:f8:f9:9c:db:07:fc:3f:
dc:7c:54:59:61:93:c8:4a:79:d7:1c:2a:25:f0:65:88:47:9c:
76:c1:95:c1:c7:10:d1:f5:7c:ef:d9:cc:aa:95:60:e7:79:09:
c4:d4:a8:fb:64:16:50:ab:8f:3c:dd:90:ed:dd:b9:bd:39:f9:
22:86:c9:a0:27:6f:b7:36:9c:f7:f1:eb:48:9b:a1:a9:bd:5c:
18:99:6d:5a:72:36:51:d6:58:c2:5d:32:5c:06:31:ad:41:21:
87:fd:93:74:aa:c3:f8:a9:81:22:9e:35:26:8e:5a:7f:7d:74:
9a:f1:f2:d6:a2:c4:b4:b4:43:d1:35:9c:56:14:93:c2:3b:01:
b0:84:77:b4:4a:eb:09:af:c9:ca:65:ab:36:b2:fe:4b:b5:25:
6d:50:18:31:fc:26:db:cc:bc:c8:20:42:1a:04:37:c1:cd:c7:
92:37:5e:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:23:35 2025 by rpki-client