Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
File: TzLUClO7YLhnWebsClIHMAtBr3A.mft (raw, json)
Hash identifier: cC5o74F1To3LOX/auKtnOu+4yUQ4oiqHPRQVvMLJO+c=
Subject key identifier: 82:8B:60:AA:FF:0B:27:0C:65:B7:15:50:C4:CF:C5:F2:FD:83:FE:9D
Authority key identifier: 4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70
Certificate issuer: /CN=4f32d40a53bb60b86759e6ec0a5207300b41af70
Certificate serial: 0198D7E178D06E626CDA830F7F7EE94CBBFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 17:02:14 +0000
Manifest this update: Sat 23 Aug 2025 17:02:14 +0000
Manifest next update: Sun 24 Aug 2025 17:02:14 +0000
Files and hashes: 1: 2j3kAJC1aDvfwJPuGUvb554m29Y.roa (hash: Hr+M1o8+SSmf7r+qXis6TOXIjRUjTFBSHGU0mpn3FN4=)
2: TzLUClO7YLhnWebsClIHMAtBr3A.crl (hash: BfIGKnbYffoAuT4Qa73uxCgkycW03XuFmmfrcrt/Btg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:e1:78:d0:6e:62:6c:da:83:0f:7f:7e:e9:4c:bb:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f32d40a53bb60b86759e6ec0a5207300b41af70
Validity
Not Before: Aug 23 17:02:14 2025 GMT
Not After : Aug 24 17:02:14 2025 GMT
Subject: CN=828b60aaff0b270c65b71550c4cfc5f2fd83fe9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:84:82:11:fb:4e:5b:a0:81:aa:a8:c1:e5:95:
39:fc:24:81:a4:bc:c0:a0:b4:31:9f:26:5a:4a:c9:
b5:3d:24:32:91:cb:35:9a:ec:3b:05:93:b9:e8:8d:
a3:5a:bd:96:3f:b8:1c:17:e8:1b:64:bf:a0:4a:0b:
4c:d9:09:d1:b0:c1:98:3d:18:10:e4:9c:a0:e5:52:
22:8f:02:83:3b:cc:d2:9a:c2:35:26:8c:97:28:2d:
94:4d:4c:1a:39:0b:e0:27:fb:2d:b1:65:ac:5f:99:
9c:35:cf:9d:49:5b:ce:1b:ee:05:c8:12:85:66:27:
e6:44:01:bc:37:8f:8a:1e:88:f9:cf:8a:d5:4d:9e:
8b:93:91:f8:ae:fe:1f:99:d5:fc:d3:9e:30:bd:59:
9e:65:a6:74:34:da:d2:f3:d5:e9:78:a7:3c:83:c1:
43:6e:42:0f:16:f0:41:00:0c:c0:f8:d9:01:57:40:
55:38:39:58:05:3e:2c:cd:d2:ba:ff:67:16:88:ed:
0c:26:94:0c:72:f6:7b:e5:0d:b1:d9:38:29:8a:b5:
dc:f2:9d:0f:48:c1:9d:3f:60:2d:9a:7d:72:69:06:
db:2e:35:2b:fa:f3:4c:7f:9b:26:cb:49:07:7c:93:
ad:1a:c5:9d:64:07:65:29:aa:d5:7d:d0:0e:80:11:
54:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:8B:60:AA:FF:0B:27:0C:65:B7:15:50:C4:CF:C5:F2:FD:83:FE:9D
X509v3 Authority Key Identifier:
keyid:4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:1c:33:87:d1:bb:73:9c:2a:d6:10:6f:17:83:f9:4b:d9:92:
db:c2:5d:1b:7b:58:ba:f4:c3:13:d6:0e:cb:08:54:75:97:43:
26:80:73:a3:da:6e:4c:51:7b:f2:b0:a3:a9:ab:f2:21:bc:64:
bb:58:3b:d7:d6:79:b8:8b:d5:93:eb:e5:c5:0c:bf:fc:13:5d:
22:2e:fa:0d:dd:02:03:3b:7b:a9:fc:d9:8b:60:45:9a:1b:6d:
db:4d:df:f3:09:fd:96:90:4b:85:79:32:58:b3:d6:05:0c:55:
a9:cd:04:03:f1:39:c4:39:e9:24:ef:0e:3a:d4:2e:a8:78:34:
28:74:b3:c5:93:61:59:eb:54:e4:c0:33:11:e1:6e:77:6f:f4:
a0:8e:80:ad:2d:24:c0:a8:1d:85:5d:b8:2e:20:7f:f0:84:d7:
e3:f6:52:7f:f1:a6:41:42:33:01:84:a6:73:d0:8d:d8:f1:c7:
2b:e9:99:f9:c4:de:0e:d8:03:b3:78:5f:8a:de:56:de:b3:81:
24:d0:f9:cf:f4:e5:89:24:21:f7:87:90:cf:ec:1c:94:b9:1e:
73:7c:fb:a8:5d:ac:b1:00:66:71:2a:d4:09:8b:da:7c:7d:1a:
6f:d9:36:05:46:0e:e7:ac:68:90:ca:8e:5f:91:3e:57:de:dc:
1e:17:77:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:30:31 2025 by rpki-client