Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
File: tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft (raw, json)
Hash identifier: zfB3X9Mp6R55438V09tMC90iThZExZBq/vQfNTbiK2o=
Subject key identifier: 6F:C5:AF:3F:AB:0E:4B:46:F8:AD:A3:54:F0:F7:F5:AC:7B:63:58:A3
Authority key identifier: B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
Certificate issuer: /CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Certificate serial: 0199FC586E16F09C7807CA012DAA296490C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
Manifest number: 0D13
Signing time: Sun 19 Oct 2025 12:01:17 +0000
Manifest this update: Sun 19 Oct 2025 12:01:17 +0000
Manifest next update: Mon 20 Oct 2025 12:01:17 +0000
Files and hashes: 1: 6mSAzptlMtavroiRBEbzErufO08.roa (hash: lJ5Bp/WretmXqwZLM24/DP1Oy5iyysz4o7F+olg5yZQ=)
2: tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl (hash: lS8JFfgMSTsgG3RiUTBP9PXOThJRRvp5aZQMeC77fSI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:6e:16:f0:9c:78:07:ca:01:2d:aa:29:64:90:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Validity
Not Before: Oct 19 12:01:17 2025 GMT
Not After : Oct 20 12:01:17 2025 GMT
Subject: CN=6fc5af3fab0e4b46f8ada354f0f7f5ac7b6358a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fc:34:f1:d0:7b:2a:78:86:43:70:47:38:dd:
12:ea:91:c5:93:bd:05:c9:4d:c2:b3:38:e0:8e:59:
c4:e7:98:36:93:8b:ae:ed:9f:ea:44:4b:98:ac:85:
22:06:15:6f:53:90:71:33:0a:2e:6d:95:b0:21:aa:
45:61:c3:d3:fe:58:11:53:b3:cb:f0:dc:f7:c0:00:
9d:85:6a:c5:44:2f:7c:84:80:f4:b8:9a:dd:58:d9:
28:5d:2c:0f:bb:e8:01:90:de:59:43:d1:78:ae:4b:
7a:ce:5d:3c:36:f0:66:bb:e7:85:d3:2e:d5:5a:32:
b3:4d:aa:62:cb:16:0f:07:55:7f:84:28:4f:6e:77:
66:24:55:aa:c4:fb:a8:ad:7c:1b:74:fd:20:59:50:
b5:60:fa:5e:80:b7:db:66:49:c8:7f:bc:3f:e0:f4:
10:98:fd:8d:ff:a3:40:40:0b:51:6a:2c:a7:d6:56:
40:57:44:f2:a7:e1:66:63:2e:84:35:25:e1:78:6f:
16:73:b2:97:53:5c:d7:ce:69:bf:aa:34:33:1c:35:
bb:18:0a:61:f7:ba:d0:3c:43:42:54:37:ee:94:fe:
67:6f:f2:d9:fd:0c:b6:64:e8:6b:90:5c:81:eb:16:
b1:8a:e0:e6:9c:78:d2:b4:4a:88:74:8c:9e:38:12:
fd:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:C5:AF:3F:AB:0E:4B:46:F8:AD:A3:54:F0:F7:F5:AC:7B:63:58:A3
X509v3 Authority Key Identifier:
keyid:B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:38:2b:41:41:06:8b:b0:4d:4b:c3:f3:87:a2:f7:9d:d1:6d:
b7:1a:dd:4d:3f:9a:9d:da:64:85:94:18:c8:43:55:05:7c:10:
33:7c:03:5c:70:cd:bb:55:af:7b:46:e0:33:f5:20:89:90:7f:
ea:57:e0:6f:62:20:4d:4f:b6:aa:25:74:62:9f:cd:93:e6:89:
b0:7c:4b:56:60:60:fd:32:c7:cc:e1:a3:bb:b1:ef:98:c2:19:
f3:ff:10:c7:bb:3e:85:36:27:de:0a:ae:e3:ac:e4:c6:95:79:
96:7e:8f:08:ad:cc:04:b8:24:30:20:b2:3a:20:46:75:f5:a3:
54:69:28:05:73:6d:58:9f:4e:31:fa:c2:34:4f:aa:94:2a:3b:
24:bc:0e:72:03:f3:18:97:d1:cd:db:bf:da:5f:a0:9c:cc:71:
bf:67:cc:aa:c0:0d:59:45:ae:e5:58:db:6e:68:a9:4e:68:0c:
67:56:bc:65:df:bc:7c:d4:62:6a:08:a0:84:b0:ee:9c:f0:b3:
5a:97:21:8f:c2:29:b7:c4:4a:d6:6c:d2:d0:3a:01:37:ab:bf:
e1:32:9b:51:bc:63:ed:6b:47:51:1b:f0:46:9f:0e:3a:00:7f:
03:e9:5d:1e:6e:ca:63:43:ba:c6:08:f2:3a:76:18:b7:0a:20:
ae:4f:d4:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:51:02 2025 by rpki-client