Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
File: 1TVDIcElQ2AUXq8l9pk4uN80ezE.mft (raw, json)
Hash identifier: 27awrCUxZpVtQ3//elMIp5GBCM29lfYccn+jKoQVoRs=
Subject key identifier: B8:B8:99:23:8F:16:A1:F6:97:1B:86:83:FD:2D:C1:2C:BF:2B:A9:AE
Authority key identifier: D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
Certificate issuer: /CN=d5354321c1254360145eaf25f69938b8df347b31
Certificate serial: 0198D705DCD7C250A587D6C2AAABCA7067CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
Manifest number: 0B4A
Signing time: Sat 23 Aug 2025 13:02:22 +0000
Manifest this update: Sat 23 Aug 2025 13:02:22 +0000
Manifest next update: Sun 24 Aug 2025 13:02:22 +0000
Files and hashes: 1: 1TVDIcElQ2AUXq8l9pk4uN80ezE.crl (hash: HPnB4POnc29ZgmlxSnQnPl9dr0Tez0CobdRLJa73rUc=)
2: YLggX1zVSuzWscKfrJDHnrsh8ls.roa (hash: 7Jlfup6Pw3zmGnZu3LgfRRcWJ28VWesMcyWjGhyh+m8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 13:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:dc:d7:c2:50:a5:87:d6:c2:aa:ab:ca:70:67:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5354321c1254360145eaf25f69938b8df347b31
Validity
Not Before: Aug 23 13:02:22 2025 GMT
Not After : Aug 24 13:02:22 2025 GMT
Subject: CN=b8b899238f16a1f6971b8683fd2dc12cbf2ba9ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:fc:b4:78:ed:99:6e:1c:5a:ff:34:7a:06:d3:
ae:bf:ef:3c:89:90:70:87:c9:7d:c7:49:ff:90:bc:
d7:88:b1:21:21:6d:4c:76:49:94:4c:f7:54:e1:02:
53:55:e8:fd:a3:0a:8c:ee:61:03:95:de:2e:f9:2d:
4a:10:33:b6:65:80:a3:9d:9e:c8:76:37:e0:53:6c:
35:02:e8:b4:20:25:ef:59:82:b8:ab:0b:d9:15:a2:
47:43:d3:da:6c:27:73:93:e6:17:a4:69:59:30:79:
70:e7:e5:c1:88:c2:63:11:f8:b3:d1:c4:9c:07:61:
0d:86:ea:99:3c:67:2b:d1:0c:39:46:02:d3:76:a5:
d1:68:7f:73:9f:15:97:dd:a4:11:38:3c:a2:ed:7b:
8a:00:2e:4c:cf:f7:97:c0:be:b6:55:dd:72:98:b6:
4d:c0:f9:43:5a:7c:79:f4:e7:a3:61:44:99:38:11:
b6:07:53:72:37:f9:b4:f2:e4:51:f5:ce:3c:2c:cb:
6e:a0:de:bb:54:fa:b6:93:df:40:06:d9:20:9b:43:
36:75:1a:5a:c1:74:66:a6:e7:9f:27:d8:f3:ec:21:
da:3c:b1:f6:a3:0c:6a:8f:47:52:42:8d:99:b9:b3:
85:be:91:df:9e:25:31:c4:fc:83:6c:5f:29:bc:2b:
f0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:B8:99:23:8F:16:A1:F6:97:1B:86:83:FD:2D:C1:2C:BF:2B:A9:AE
X509v3 Authority Key Identifier:
keyid:D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:2c:a7:fe:dd:00:19:3d:30:76:d0:82:dc:9c:ab:20:58:0d:
5a:6d:35:2e:38:d2:ca:a1:33:96:ad:c8:65:8e:29:8a:03:16:
4f:e8:8a:e0:63:a6:b2:bf:a7:82:02:54:2b:e2:46:65:fc:35:
97:ac:6d:37:b4:ad:2b:db:24:40:48:d9:0b:50:34:59:64:e3:
b4:c4:bd:6f:ee:d0:ae:87:4f:0d:5f:27:93:67:54:8f:3d:3f:
46:32:5d:7c:c3:20:cc:1a:45:36:7e:50:0d:71:9f:56:08:77:
fc:24:7b:55:98:bf:c6:5b:bd:6b:4b:c4:04:70:79:28:33:bd:
7d:a4:fd:53:61:21:85:94:6c:3e:63:4b:45:5c:c3:a8:74:b6:
6e:31:b8:48:c5:cc:7e:7e:df:a5:00:59:68:89:1b:cc:cc:4d:
25:ff:a9:64:95:e6:2b:f5:14:d2:a8:d7:04:d9:b4:f8:a3:18:
5e:27:46:26:d4:7e:96:bf:76:6d:7d:8b:80:ba:83:24:1d:79:
77:67:67:73:94:91:25:c9:77:b4:9f:31:83:e0:95:63:97:d4:
97:60:bc:f0:c0:70:5c:3d:0a:3c:81:b1:e7:8e:f4:df:7a:f0:
29:d1:f8:67:7a:1d:4e:d2:12:cc:67:c2:ef:2c:94:48:8d:87:
8c:08:14:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:10:30 2025 by rpki-client