Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
File: tDJYoYz00SKOXHkHDfpjMRaDIMU.mft (raw, json)
Hash identifier: eQGBMhdRXcuGqpZNHkDoOJqfC9MDYJTYT3hyFzqTzQc=
Subject key identifier: C5:F0:62:E6:5F:6C:0E:CA:C3:3D:57:E0:FE:06:44:BB:28:5B:06:F1
Authority key identifier: B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
Certificate issuer: /CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Certificate serial: 0198D51582FC9BF99AD3EED1C0E21162B724
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
Manifest number: 148C
Signing time: Sat 23 Aug 2025 04:00:13 +0000
Manifest this update: Sat 23 Aug 2025 04:00:13 +0000
Manifest next update: Sun 24 Aug 2025 04:00:13 +0000
Files and hashes: 1: 28g4Blr7nuSyJeVmwy4cGLK9eb8.roa (hash: Q3uRjW4ymMVkt8l5TduM8mGnhXb4GzyvEHZ5j93is8c=)
2: psNnDsOb3MJQFpyT8HfsVNSnwog.roa (hash: KJkUgz1VxvV5lZj00xJ9seKTuebHbMbR6MJlSYq/h5Q=)
3: tDJYoYz00SKOXHkHDfpjMRaDIMU.crl (hash: pWJD01AMroR3xDSp9ioWDBsHHlvF2w7EeHNtic764yY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:82:fc:9b:f9:9a:d3:ee:d1:c0:e2:11:62:b7:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Validity
Not Before: Aug 23 04:00:13 2025 GMT
Not After : Aug 24 04:00:13 2025 GMT
Subject: CN=c5f062e65f6c0ecac33d57e0fe0644bb285b06f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:31:33:e1:d6:54:f8:e0:31:50:9b:cd:98:4a:
35:ef:cd:47:b0:34:9d:74:27:e8:18:5c:76:51:92:
08:b6:d1:ef:e1:09:02:10:24:2f:4c:3b:ce:1f:a6:
28:78:3a:93:7f:12:f1:10:48:64:60:4e:76:a3:68:
c4:f7:dd:89:09:38:a8:23:f0:b9:7c:80:e5:42:73:
85:fe:e9:bd:8b:98:37:06:e0:29:8b:08:d1:c9:23:
79:bd:54:5f:7c:89:38:ad:dd:b3:72:dc:60:dd:69:
08:85:69:ba:71:d1:35:32:f9:bf:08:0c:54:1a:46:
5e:c7:a3:46:11:68:b7:0d:7b:46:5b:c3:31:bd:ad:
f7:42:f0:83:8e:a5:0e:f3:b0:2b:a3:de:01:85:48:
71:d1:ab:d3:c7:f0:7f:db:42:3f:cf:21:1d:a0:be:
94:03:9a:41:26:81:54:4c:0a:34:61:34:23:50:10:
86:71:88:5d:56:a1:4b:0b:12:1a:48:09:26:a2:27:
c6:be:1f:25:ac:d8:e7:74:47:76:fc:28:2e:1f:25:
fa:7e:d6:52:fa:d8:43:6e:1b:ad:69:7a:a4:6e:6a:
e9:10:be:76:05:0c:d4:b4:f6:ac:bf:d8:9e:eb:f1:
d5:8b:70:19:4f:00:c0:48:18:e8:fc:79:4d:3c:e6:
a8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:F0:62:E6:5F:6C:0E:CA:C3:3D:57:E0:FE:06:44:BB:28:5B:06:F1
X509v3 Authority Key Identifier:
keyid:B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:97:fa:29:39:8b:97:9b:bd:11:00:e6:37:f5:dd:a3:45:4c:
e9:4f:93:1b:eb:35:19:53:d5:29:1b:ca:e5:72:23:e7:c0:b6:
c0:08:c8:7b:ab:9d:47:ce:ea:5e:d9:95:64:e4:22:4c:1f:a7:
d9:c7:a6:a1:c3:fb:3b:1a:87:96:c2:80:ff:fa:03:76:e2:44:
64:4b:2e:43:5f:de:45:94:92:f4:0b:7a:61:b3:64:34:8a:18:
76:f2:00:c5:24:9c:ba:2b:a3:b4:7c:d5:d5:fa:e3:02:43:37:
1e:57:df:79:16:0b:05:45:28:51:8a:d7:58:b6:7c:a1:39:bc:
fe:de:de:84:c8:6f:1a:81:a1:e0:4f:bb:ca:05:0a:2e:88:f4:
b7:6b:61:9c:e9:6e:1e:1e:1c:29:0f:bf:69:60:3f:12:6b:5b:
13:5a:a9:db:52:54:f6:bd:fe:d6:66:e3:14:46:cb:5e:e6:65:
a5:b8:f7:0f:d8:c9:4c:ba:7a:12:3c:eb:45:ba:b3:b7:89:a2:
af:c8:46:3e:49:ea:ca:61:4a:02:82:93:a1:7a:13:95:ca:e5:
b3:29:e8:39:ef:a2:36:3f:14:e8:bd:7b:6c:6c:d3:37:17:01:
0f:84:e0:a2:95:8d:c2:83:3c:9a:f8:66:8a:f8:04:04:92:21:
f9:53:d8:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:28:22 2025 by rpki-client