Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json)
Hash identifier: mJiyp62Db5OZ2yt/m7LSVhsmXd4KXJlqlYHvxajqADw=
Subject key identifier: 21:83:56:9E:7E:21:4B:EC:64:E9:2D:6C:2A:03:84:7D:D0:0F:05:97
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 0199FBEAC1FBF6B8F275CFBA23377292576C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
Manifest number: 128B
Signing time: Sun 19 Oct 2025 10:01:30 +0000
Manifest this update: Sun 19 Oct 2025 10:01:30 +0000
Manifest next update: Mon 20 Oct 2025 10:01:30 +0000
Files and hashes: 1: M5OG91JsCAL60eSIC9Ad8J1tKCQ.roa (hash: 1YIYjfLNUonn/y5DvRwWqNtN3UGauHay3fPvlHRKB78=)
2: NLZJeEG7B459T5HRjzbaryRo4U4.roa (hash: D+Zc3p+KtPQCrkhD8NK/RsRz3Ozk8j3l3fx+in8YU8k=)
3: SX0Et8xCJ-oQPSZhA1vLwpgECss.roa (hash: GtBoUqmPl7+e01rEjLRBIu11uahmgFfyYOp4+G1ts2k=)
4: g3mWLx3QHER7jvUWO9_K86XjFvg.roa (hash: CQjC54kUHdxygPOZtU3D7Ni2Q4FQ2f8Z6SwCWy0D9f0=)
5: hvqfOijr6dDuZ5bH5DmTLJBSNC0.roa (hash: wnrweN82zW3L/i2kjShP1DGJ6lX6f745nj23KDLcERg=)
6: pkTSWC0kyyJmikpwefrKy0hYNBc.roa (hash: uJAe5aUPI71DUshehwa1+fSKLZdP9CODCdcESePQJgY=)
7: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: 7a1BIPdQHCs8aQoAmiGA7eSJjwMu00OLTuTvKtthosw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:c1:fb:f6:b8:f2:75:cf:ba:23:37:72:92:57:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: Oct 19 10:01:30 2025 GMT
Not After : Oct 20 10:01:30 2025 GMT
Subject: CN=2183569e7e214bec64e92d6c2a03847dd00f0597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:28:4f:09:f9:b5:64:61:ff:e4:99:92:9c:17:
b5:15:95:ef:2f:1d:b1:30:35:59:20:32:a8:4f:bc:
da:8e:40:f3:9b:20:34:c5:9e:c2:02:22:36:f7:b0:
34:03:09:4f:34:c7:d8:a8:13:75:b7:2d:01:d1:03:
ab:9b:bc:f4:50:43:4b:ba:75:fb:da:54:f7:c4:32:
45:61:2d:d3:37:5a:ba:45:a4:8c:f7:be:d7:2a:b2:
f9:2c:79:86:e6:ef:42:bf:4b:75:61:04:2d:a9:54:
d3:c8:27:13:cc:2f:fa:4b:b3:76:6f:1a:1e:33:74:
43:84:cb:41:77:7b:6c:7f:8b:37:16:24:a3:8f:01:
99:cc:e4:d9:ba:2a:07:7b:01:0e:76:ec:54:1c:78:
44:24:2b:9a:59:85:02:c9:8c:ef:f3:d2:ef:8d:53:
aa:52:88:bc:e7:60:d9:62:c9:a0:31:69:72:0e:12:
66:f2:ec:07:42:79:76:17:17:0a:f3:8f:2c:8a:55:
00:4b:2a:dc:07:9b:3d:0e:27:7d:9c:c4:96:35:db:
ca:63:bb:8c:90:c7:1a:d9:bc:27:be:e0:a6:b5:ed:
17:17:42:16:b6:ab:28:f1:a3:e6:1e:15:4e:0a:e2:
70:15:06:eb:5d:8f:de:a9:71:d0:3f:8c:ed:b5:ce:
b5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:83:56:9E:7E:21:4B:EC:64:E9:2D:6C:2A:03:84:7D:D0:0F:05:97
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:05:b4:62:b3:1d:bd:c8:0d:55:1d:1a:43:5a:a0:c8:f3:72:
5b:10:4e:02:94:56:d9:9e:64:76:fd:5c:0f:e5:64:6a:ce:8c:
5d:7e:ab:c2:7f:38:4c:ee:0f:e3:72:d0:88:0e:4a:34:3a:c8:
32:91:3b:92:64:5b:17:68:2f:8c:34:a7:c1:19:ec:0b:b9:c3:
7d:c1:70:18:62:82:ad:f2:dd:6e:c5:0a:4d:2b:40:95:76:cb:
4b:87:f5:f6:a5:fa:dc:7c:f3:b8:64:81:75:71:0c:2f:fd:06:
0b:58:9c:c7:22:2a:2c:de:3c:5c:72:66:10:59:8f:85:5a:40:
a4:d7:a0:9e:34:be:37:1a:a7:a2:01:c0:f7:0d:fb:2f:6b:05:
d7:f2:94:00:1b:69:b5:4e:aa:5d:c0:27:80:f3:65:6f:31:ef:
5f:be:29:41:02:4c:17:a0:c3:98:ec:57:69:18:00:de:5c:0f:
0f:f1:3d:0f:4d:40:4b:99:09:12:dc:ff:cc:c3:ca:d0:0e:44:
a5:9f:2c:e6:a9:63:65:4f:48:b5:ed:eb:73:be:46:74:05:f7:
9d:71:d9:cb:bc:a1:75:fb:97:22:53:b6:0b:40:13:2d:e6:01:
11:2f:62:39:7e:6a:1b:24:b1:cd:db:8b:ba:b4:e1:3f:40:5f:
87:6f:e6:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:10:31 2025 by rpki-client