Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
File: tDJYoYz00SKOXHkHDfpjMRaDIMU.mft (raw, json)
Hash identifier: yypW+8v5iBDPmjikdZeaoEnrtIQskBYygx3qMnB4Un4=
Subject key identifier: CE:45:01:52:94:79:39:79:8F:BE:11:0B:56:8D:2F:C9:95:AC:3A:C6
Authority key identifier: B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
Certificate issuer: /CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Certificate serial: 0199FE7D7689C302EF77025197D631DE385A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
Manifest number: 1526
Signing time: Sun 19 Oct 2025 22:00:59 +0000
Manifest this update: Sun 19 Oct 2025 22:00:59 +0000
Manifest next update: Mon 20 Oct 2025 22:00:59 +0000
Files and hashes: 1: 28g4Blr7nuSyJeVmwy4cGLK9eb8.roa (hash: Q3uRjW4ymMVkt8l5TduM8mGnhXb4GzyvEHZ5j93is8c=)
2: psNnDsOb3MJQFpyT8HfsVNSnwog.roa (hash: KJkUgz1VxvV5lZj00xJ9seKTuebHbMbR6MJlSYq/h5Q=)
3: tDJYoYz00SKOXHkHDfpjMRaDIMU.crl (hash: +sDm4km9oTDv/QS5Vn8BaIaoBgmRX4reUX/Wgh7Aux8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7d:76:89:c3:02:ef:77:02:51:97:d6:31:de:38:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Validity
Not Before: Oct 19 22:00:59 2025 GMT
Not After : Oct 20 22:00:59 2025 GMT
Subject: CN=ce450152947939798fbe110b568d2fc995ac3ac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:31:5c:8f:33:e1:6d:c7:ed:c0:dc:6c:8f:6f:
e6:e5:d0:0f:a2:6b:49:8e:a0:88:32:9d:00:27:77:
4b:12:de:54:a1:97:57:55:bc:dc:ac:6d:ba:9d:31:
37:a2:a8:a3:95:95:c2:c1:65:5e:29:64:69:8b:9f:
0c:13:54:cd:9b:d1:8e:be:d0:4e:4a:84:37:64:81:
c3:c1:58:b1:e8:4f:70:66:1d:96:80:d7:60:ef:63:
5c:41:29:7f:b7:13:7e:68:9a:b9:aa:29:da:db:42:
66:4b:7d:c2:e8:74:cf:76:3e:99:6e:2d:cc:44:05:
d4:ad:87:1f:09:f2:3b:19:9b:fd:15:1a:81:f7:e1:
64:00:2a:b9:ba:6c:dd:56:10:29:0d:7b:fb:ed:84:
a2:4a:16:34:cc:9d:2c:a1:8d:3d:7e:05:9a:2c:bf:
89:28:04:7b:11:4d:c4:de:51:87:33:ff:ff:28:f5:
ff:d7:ff:36:62:6c:d2:68:bd:97:01:d3:b1:a4:39:
87:a7:bb:77:56:d4:56:06:8f:a3:26:4f:42:30:03:
3a:e1:52:23:31:1a:c7:91:a9:96:86:ca:fa:65:27:
39:5a:65:24:11:7f:fd:8c:d7:a9:c5:5d:8d:65:35:
b9:20:0f:5e:79:29:28:ea:ad:7e:9a:44:22:00:06:
9c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:45:01:52:94:79:39:79:8F:BE:11:0B:56:8D:2F:C9:95:AC:3A:C6
X509v3 Authority Key Identifier:
keyid:B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:5c:82:74:d0:a5:44:99:0a:10:4e:67:fb:7d:4c:19:76:82:
b4:76:47:22:70:fa:c5:1b:61:d1:8f:48:ef:62:7c:dc:98:04:
91:77:9e:b4:c0:d3:66:bc:77:21:f5:07:e1:ee:08:a5:04:0f:
4c:89:ed:8f:dd:0d:ab:b1:73:5a:fb:85:4c:53:f8:1f:7c:5b:
a0:34:15:23:a0:5b:b7:9e:ad:19:f4:72:60:77:2b:48:4a:f6:
f7:f1:00:42:dd:4c:a1:25:6c:5a:88:bc:39:aa:b4:89:e3:c8:
dd:bd:29:ae:e9:14:91:71:79:0b:ca:63:ca:59:8f:bf:35:14:
f6:c5:c9:30:51:53:a9:f7:19:2b:6c:c3:0d:0c:0b:81:00:60:
11:a6:1f:82:0b:0d:bb:96:3a:dc:c6:09:72:db:48:93:4a:9e:
af:9e:2c:71:9a:d3:5d:db:82:24:2f:49:dd:6c:f7:02:b2:c6:
83:f7:54:54:ae:6f:f3:92:7f:1e:9f:d2:47:66:d2:f1:42:19:
2d:26:69:5d:36:36:dc:b3:c2:1f:55:da:f3:0d:1c:0f:90:be:
05:f1:16:b5:97:bb:32:d3:1f:3a:00:78:40:61:54:11:cb:f8:
a9:de:35:31:08:2b:d9:46:bd:a8:cf:e0:dc:5a:36:f0:ce:dd:
7f:07:84:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:38:41 2025 by rpki-client