Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
File: tpHQC9tiauVzB9XNTord2UdWgLM.mft (raw, json)
Hash identifier: fLV15YYAwi6tcmfc/xtLLIIo8fuxh6uQimfatpyMQdw=
Subject key identifier: 47:3E:56:56:20:8E:F9:DC:62:B3:60:1A:47:F4:6A:2E:BE:BF:53:90
Authority key identifier: B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
Certificate issuer: /CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Certificate serial: 019A4DE1D851CF82C5EDF6922DC2F24E0914
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
Manifest number: 0FE0
Signing time: Tue 04 Nov 2025 08:00:37 +0000
Manifest this update: Tue 04 Nov 2025 08:00:37 +0000
Manifest next update: Wed 05 Nov 2025 08:00:37 +0000
Files and hashes: 1: AQvnwjdpCCJVGghqg0nwe9L0mVk.roa (hash: lmMkrxQHgFH9/tCkdiNxxBNSfZZ+AeKUjyZG6YnOW/4=)
2: tpHQC9tiauVzB9XNTord2UdWgLM.crl (hash: zhFo0lVSaDFLz2UFkEMObiVz1OMYzCZzkS42jW5Wetw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:d8:51:cf:82:c5:ed:f6:92:2d:c2:f2:4e:09:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Validity
Not Before: Nov 4 08:00:37 2025 GMT
Not After : Nov 5 08:00:37 2025 GMT
Subject: CN=473e5656208ef9dc62b3601a47f46a2ebebf5390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9d:88:1a:79:24:26:b6:3b:24:09:27:41:10:
df:af:f3:6e:c3:11:31:7b:3d:59:1a:03:34:44:14:
13:26:9b:54:84:4a:24:3c:e5:59:6e:3e:5d:a0:11:
28:be:4b:15:b7:08:52:15:90:78:52:ad:b8:f3:ff:
8d:89:1e:ab:37:b1:01:66:91:1d:bd:30:e5:51:df:
84:f2:d4:6b:1f:04:e3:60:64:01:5e:1e:b6:06:6c:
da:bb:f1:3d:c5:9e:c0:7e:e0:98:ab:86:6c:5e:d5:
46:d9:4d:45:ec:f6:72:4f:d7:7d:38:87:64:c7:f4:
61:5a:b2:fa:ec:3f:a6:43:f0:3b:d4:0f:d2:5d:77:
e2:21:fe:09:87:1e:ee:7a:8c:bf:4f:b7:52:c7:e3:
1e:2f:5a:64:5c:2c:d1:71:9c:af:1f:45:a1:b6:3b:
13:05:28:69:89:d7:d9:78:c6:10:ea:af:79:24:35:
95:10:39:52:6c:7c:fa:34:a7:45:86:ef:d5:cb:eb:
d4:8e:be:bf:d4:b7:f3:be:90:64:4b:b1:0f:97:e7:
ad:08:69:a0:2b:66:ac:29:96:ba:57:7a:a8:a4:0e:
db:5a:b4:cc:a6:68:da:eb:f0:3f:2b:60:24:e6:68:
a8:90:04:30:44:bb:f0:fc:09:35:f7:a7:0a:f3:d9:
b5:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:3E:56:56:20:8E:F9:DC:62:B3:60:1A:47:F4:6A:2E:BE:BF:53:90
X509v3 Authority Key Identifier:
keyid:B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:cc:a0:74:8b:d4:1a:8f:9e:9c:9a:73:5c:ec:5c:16:ca:01:
a3:1f:83:5a:08:df:54:d4:2d:dc:29:c2:08:73:e0:87:af:6f:
59:5d:2f:99:7b:13:b3:32:25:74:de:17:8e:b9:b2:d1:b0:a0:
2f:bd:0d:d7:6f:b1:fe:dc:a2:c8:d2:51:bb:3f:5f:7c:26:67:
02:97:b6:e6:48:d2:12:06:9e:22:ba:95:85:a7:d5:bd:30:bb:
6b:a7:01:21:58:b9:a1:61:19:c2:fd:9e:c5:87:a1:58:30:4e:
c9:d7:52:84:16:d3:f7:f7:ad:8a:10:8d:b4:c5:82:0f:e8:92:
c9:83:cf:10:7f:01:81:b8:da:ce:86:8a:78:e6:85:c3:ac:ec:
fa:bf:77:ff:f8:35:fb:74:68:3d:96:86:64:ae:8a:38:8f:28:
bd:ea:c7:c3:41:9b:6d:67:30:90:83:03:d3:aa:ff:98:25:a5:
40:00:d0:b1:d2:77:94:b7:24:75:7d:6b:f0:2c:84:2a:9b:fd:
19:cc:da:6b:06:8f:bf:a2:ab:d7:4b:14:23:bc:77:7a:85:0f:
98:85:56:29:c9:4b:8b:4d:a5:25:05:bf:4c:df:20:cd:60:54:
ce:20:7a:1c:9d:6a:07:0b:b4:56:fa:34:72:08:33:3e:f5:62:
00:b4:63:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:35:56 2025 by rpki-client