Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
File: tpHQC9tiauVzB9XNTord2UdWgLM.mft (raw, json)
Hash identifier: aG2hfVhtyV77ywnyHHaaS59GZLYYC5CXb3SzCXLuAIQ=
Subject key identifier: 88:EE:56:C4:07:DF:99:32:C1:18:06:46:AD:B4:F6:D5:2F:75:C9:D3
Authority key identifier: B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
Certificate issuer: /CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Certificate serial: 01988DD8D541271B9D911B5AD555C3F36829
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
Manifest number: 0EF8
Signing time: Sat 09 Aug 2025 08:00:54 +0000
Manifest this update: Sat 09 Aug 2025 08:00:54 +0000
Manifest next update: Sun 10 Aug 2025 08:00:54 +0000
Files and hashes: 1: AQvnwjdpCCJVGghqg0nwe9L0mVk.roa (hash: lmMkrxQHgFH9/tCkdiNxxBNSfZZ+AeKUjyZG6YnOW/4=)
2: tpHQC9tiauVzB9XNTord2UdWgLM.crl (hash: zIUpWVNc2Wy4P4qVojmUMufaHRU38GZFqbY9lFxtxKg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:d8:d5:41:27:1b:9d:91:1b:5a:d5:55:c3:f3:68:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Validity
Not Before: Aug 9 08:00:54 2025 GMT
Not After : Aug 10 08:00:54 2025 GMT
Subject: CN=88ee56c407df9932c1180646adb4f6d52f75c9d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a7:6a:b0:25:31:a5:05:c7:90:68:71:9a:50:
0e:f9:39:54:78:37:f4:ea:db:bc:5d:a9:95:a0:79:
43:bc:43:8a:b0:05:71:fd:fa:2c:fd:4a:a2:8f:48:
a9:d5:01:a7:5b:4e:2c:b1:ef:32:81:3e:50:02:42:
45:2a:a7:40:8e:55:b0:bb:54:ec:a4:51:a1:ba:b2:
d4:fa:3d:63:3a:54:bc:49:da:ca:b8:79:dc:54:54:
b0:45:f2:aa:99:b8:ff:9d:15:f3:dd:f8:02:d7:9b:
03:80:24:5c:44:17:ef:51:fd:66:4d:2e:8c:46:71:
08:e0:44:b2:b3:3f:bf:dd:28:72:1f:2b:bf:84:c8:
4a:ed:77:9b:05:67:99:0d:6a:35:4c:c0:e2:60:96:
87:20:29:17:be:03:79:be:9e:cf:49:f3:5c:ab:8e:
8f:f1:1b:b7:1e:45:0c:0a:60:93:0c:06:8c:66:2e:
1b:62:da:19:6c:a6:af:8c:7f:55:78:cf:ed:9a:3c:
4a:07:10:0c:9b:ae:60:ff:0e:80:bb:60:6e:59:59:
a7:48:c7:80:f7:97:7e:a2:98:01:36:55:c1:59:f3:
86:d3:45:9a:05:c6:2d:90:45:7d:31:83:25:02:91:
c7:c3:81:7f:11:13:94:99:d3:45:93:b7:55:c2:30:
2d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:EE:56:C4:07:DF:99:32:C1:18:06:46:AD:B4:F6:D5:2F:75:C9:D3
X509v3 Authority Key Identifier:
keyid:B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:1d:b3:6c:91:99:1f:7e:aa:de:b6:2a:7e:eb:5c:9a:77:af:
d2:95:77:ca:bb:38:8e:0c:4e:85:96:c4:37:4b:e9:50:21:55:
0d:fd:af:f1:aa:f2:85:82:91:1e:b8:27:2e:65:83:a2:7d:a6:
bb:59:77:94:ce:12:de:82:51:59:36:30:d1:0c:fb:4e:b7:95:
6d:7a:e8:d7:4a:4c:e7:1b:20:59:97:0f:8b:17:dd:cb:04:2e:
7b:af:52:3d:2d:1d:fc:f6:29:0a:92:64:36:5e:d3:c3:60:44:
89:ac:ee:92:be:81:66:f1:17:3b:22:06:9b:d6:53:b9:01:c5:
0b:fb:ec:37:f2:75:cd:dd:d8:a7:81:0a:b1:74:48:09:58:96:
fe:2b:52:5a:94:b3:69:c4:2a:9e:5f:46:5a:b6:ec:c9:eb:b0:
71:25:33:b7:b8:3d:a1:43:dc:5a:16:be:21:28:ce:d8:3b:87:
a0:2e:aa:b8:46:6c:30:01:74:58:e2:b4:2d:04:69:49:a7:f3:
5f:64:80:0e:b1:33:dc:97:fc:f3:b4:22:de:cc:1d:c2:e2:1f:
dc:4d:56:a4:38:56:e3:fb:14:c9:8b:2a:2c:17:b4:98:74:41:
34:cc:23:01:a6:f9:d3:31:8b:40:84:e3:05:8f:53:38:2f:11:
35:e4:1e:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:32:56 2025 by rpki-client