Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json)
Hash identifier: QHrvPGmj5/f3n0MwTnoBruo9DQtCabCmymZxh6hcl6E=
Subject key identifier: FB:50:A9:EB:A4:14:02:DC:76:0D:1B:1E:B8:39:ED:DE:3A:A1:33:9B
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 0198D65F7F796D3EEDEF84E747D3B7001425
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
Manifest number: 11F3
Signing time: Sat 23 Aug 2025 10:00:39 +0000
Manifest this update: Sat 23 Aug 2025 10:00:39 +0000
Manifest next update: Sun 24 Aug 2025 10:00:39 +0000
Files and hashes: 1: M5OG91JsCAL60eSIC9Ad8J1tKCQ.roa (hash: 1YIYjfLNUonn/y5DvRwWqNtN3UGauHay3fPvlHRKB78=)
2: NLZJeEG7B459T5HRjzbaryRo4U4.roa (hash: D+Zc3p+KtPQCrkhD8NK/RsRz3Ozk8j3l3fx+in8YU8k=)
3: SX0Et8xCJ-oQPSZhA1vLwpgECss.roa (hash: GtBoUqmPl7+e01rEjLRBIu11uahmgFfyYOp4+G1ts2k=)
4: g3mWLx3QHER7jvUWO9_K86XjFvg.roa (hash: CQjC54kUHdxygPOZtU3D7Ni2Q4FQ2f8Z6SwCWy0D9f0=)
5: hvqfOijr6dDuZ5bH5DmTLJBSNC0.roa (hash: wnrweN82zW3L/i2kjShP1DGJ6lX6f745nj23KDLcERg=)
6: pkTSWC0kyyJmikpwefrKy0hYNBc.roa (hash: uJAe5aUPI71DUshehwa1+fSKLZdP9CODCdcESePQJgY=)
7: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: gqr5lP24ngTFIzQQwdVt3soigsdbeETyH70nYpP9txY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:7f:79:6d:3e:ed:ef:84:e7:47:d3:b7:00:14:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: Aug 23 10:00:39 2025 GMT
Not After : Aug 24 10:00:39 2025 GMT
Subject: CN=fb50a9eba41402dc760d1b1eb839edde3aa1339b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:eb:65:75:68:0f:94:1e:e4:53:c0:77:c6:fb:
15:a6:0b:59:c2:9d:94:e5:e3:72:a7:6f:81:30:3a:
d7:cf:19:89:50:33:33:8a:fa:fd:33:37:90:a4:6a:
19:a1:73:1d:ff:5d:57:50:3c:16:96:e0:69:74:57:
4c:67:cf:d8:49:80:26:10:fe:6b:35:f1:30:c5:1a:
7c:45:6e:61:e9:55:35:ce:ea:fa:9c:4b:0e:70:81:
d8:c3:97:ca:c1:81:ea:6b:b2:91:e1:e3:2f:ab:bf:
08:2c:be:33:99:4a:c1:d2:ec:e9:83:58:40:63:e1:
68:b9:7b:d1:35:56:c2:c8:4a:38:5b:27:23:08:94:
aa:a2:41:1c:64:df:c1:28:c6:5b:9e:3f:fa:45:25:
4c:3e:79:79:fe:61:72:ca:a7:b9:c8:44:8f:67:b0:
87:d9:08:1a:0a:a0:2a:3a:2a:2b:2d:f0:d2:d0:88:
7b:21:9a:42:8b:1c:aa:0e:c3:60:47:46:98:b8:07:
8c:de:cf:da:00:ed:fa:88:0e:04:2e:09:49:50:1d:
08:c0:0a:59:2f:4f:bd:b4:5f:fc:26:a2:59:56:13:
9b:15:4c:bf:93:83:33:f8:3a:96:b7:55:a6:bd:23:
d2:64:03:af:52:91:54:1f:40:3c:ab:5a:03:48:c6:
a7:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:50:A9:EB:A4:14:02:DC:76:0D:1B:1E:B8:39:ED:DE:3A:A1:33:9B
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:26:cb:4a:30:9b:d4:60:ba:70:d9:94:37:ca:d3:56:9e:01:
5b:dc:7b:da:32:52:ab:fd:ba:9f:d8:f2:46:93:46:6c:34:4b:
4f:ae:e1:30:00:5e:d1:94:a5:15:a8:c8:ae:3a:b1:e0:e8:94:
49:e3:1c:70:c5:8b:aa:7e:78:88:f3:de:c6:80:6a:1f:9d:7e:
5f:24:27:18:41:cc:09:f3:90:a3:c2:c4:ba:88:ae:74:f9:df:
c7:54:a8:2c:0c:d7:d5:7c:f9:7c:eb:4d:c5:83:77:4b:77:69:
8e:73:24:ab:51:ae:ae:07:fb:d5:4d:01:a8:98:ae:68:9e:e4:
27:bc:f0:d7:65:ca:ba:f7:2f:1c:fb:90:fa:06:ce:c6:71:9b:
0f:cd:0d:99:c4:ec:e3:9b:72:c8:bb:72:b4:67:26:80:40:32:
f3:ae:b2:ce:08:92:64:c5:f9:6a:39:76:f2:14:38:3b:32:34:
47:0a:d0:a1:ac:42:d9:4d:28:58:79:0c:4b:ed:13:bd:4a:dd:
2a:d3:d9:11:39:c4:0e:0e:29:37:fc:99:c4:14:97:78:b0:38:
e1:bb:fd:db:5b:ba:b0:76:e2:d2:48:27:75:8e:10:ee:c2:7c:
f0:59:1b:26:43:e9:74:78:82:2c:a0:0b:40:9b:0f:66:0c:27:
82:26:34:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:02:53 2025 by rpki-client