Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
File: tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft (raw, json)
Hash identifier: i8uV48BbcF5XS0UHIBUwOIekhwHblJL3l76nplgc/io=
Subject key identifier: 5E:45:2F:4F:D5:2A:F2:23:F7:58:17:42:5B:53:2E:0B:37:01:8D:17
Authority key identifier: B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
Certificate issuer: /CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Certificate serial: 0198D6CD1726CD6BDEA9E3E42AF0A1EE059B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
Manifest number: 0C7B
Signing time: Sat 23 Aug 2025 12:00:21 +0000
Manifest this update: Sat 23 Aug 2025 12:00:21 +0000
Manifest next update: Sun 24 Aug 2025 12:00:21 +0000
Files and hashes: 1: 6mSAzptlMtavroiRBEbzErufO08.roa (hash: lJ5Bp/WretmXqwZLM24/DP1Oy5iyysz4o7F+olg5yZQ=)
2: tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl (hash: tE/TWLhFTOiwsASxcjVBDOq8mnkQjcVdaiV0fSiwXF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:17:26:cd:6b:de:a9:e3:e4:2a:f0:a1:ee:05:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Validity
Not Before: Aug 23 12:00:21 2025 GMT
Not After : Aug 24 12:00:21 2025 GMT
Subject: CN=5e452f4fd52af223f75817425b532e0b37018d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:81:b1:85:f7:69:06:19:e7:c8:1b:3d:84:4f:
d4:02:52:bf:bf:3a:2e:a0:3f:db:88:be:00:2d:a4:
29:c6:4a:8a:67:31:61:1e:b2:a8:b8:6b:35:a3:34:
5f:9d:bf:3d:34:fe:08:b1:a2:4b:cc:2d:01:1f:a5:
94:0a:96:ae:75:4b:d4:97:98:ba:da:67:b3:2f:86:
80:1d:e5:91:3a:66:47:80:fe:95:21:ee:2f:e8:a4:
92:35:6a:ef:f1:bb:5e:8b:e6:a5:07:a8:10:00:12:
c1:29:c0:87:b6:d1:32:5e:1a:4b:37:b6:b4:90:76:
d7:12:3b:84:95:95:f8:88:e5:95:3b:56:f1:33:a6:
36:ef:33:eb:af:b2:c2:9d:d6:c6:9f:49:fd:4b:9e:
28:95:cb:2f:6b:c8:48:f1:bb:bb:1d:76:80:ba:a3:
75:9f:91:55:21:54:3c:fa:54:5f:e7:61:db:5b:e4:
35:68:4a:f0:f6:c6:40:d8:6b:60:14:03:36:b7:10:
55:42:98:7c:73:3a:ae:6b:23:b1:61:bd:6b:09:b2:
3a:77:72:f9:26:e6:e1:f5:18:f4:8e:a0:62:a4:c0:
ee:cf:15:66:f2:48:8d:3b:07:25:42:f5:f3:ec:bc:
db:d9:8d:76:92:09:7a:85:ea:55:f1:70:36:ee:23:
54:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:45:2F:4F:D5:2A:F2:23:F7:58:17:42:5B:53:2E:0B:37:01:8D:17
X509v3 Authority Key Identifier:
keyid:B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:37:35:18:f8:ed:f5:ae:68:cb:8a:26:ea:1b:94:ef:bd:35:
35:75:6a:27:7d:36:d4:b0:10:ab:b8:21:c2:c9:3e:f9:7e:5d:
8f:2c:52:70:1f:86:66:b5:be:11:b1:78:ec:b7:20:f2:30:7e:
76:3d:83:06:ad:74:bd:9a:36:14:26:c5:a2:e4:b3:8c:d3:9d:
0e:d1:11:a3:c3:2b:59:1a:b7:10:75:9d:49:0d:13:1d:66:5e:
5b:1e:b7:6d:21:0a:cb:5c:92:b0:8c:8f:8b:e6:2a:5f:7f:af:
54:40:10:a5:ed:79:2e:3f:3e:1e:b9:21:df:ba:35:ca:5b:03:
55:71:ab:e8:d6:60:67:29:0f:66:81:38:5a:73:2f:fc:eb:e2:
22:98:df:9f:cf:62:9b:f4:3b:8a:a3:62:ae:40:32:91:5f:bb:
ba:f3:8d:2c:4d:2e:9c:76:60:c7:3d:9e:e9:c4:db:c5:d4:ab:
72:40:c0:1d:67:1d:05:45:d1:55:47:c6:7f:43:d0:7a:38:e2:
92:36:be:ef:ea:c7:90:44:de:fc:c2:9e:55:43:67:86:06:cb:
62:cc:19:9e:69:58:f4:cb:e2:3f:ca:3f:f2:e3:70:91:bf:7d:
f6:b4:17:56:8c:e1:ae:95:46:74:90:06:0d:28:24:2c:a8:4c:
20:0e:9b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:13:00 2025 by rpki-client