Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
File: tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft (raw, json)
Hash identifier: tbtuU/qiwPka+1xVmOriE6HGzuskK0zwKomfXICV9cE=
Subject key identifier: 09:57:C0:C4:31:7B:44:5E:89:35:8D:D2:83:F2:69:3C:CE:81:2C:41
Authority key identifier: B4:DD:6D:65:8E:14:57:1E:83:9F:78:13:DA:31:F2:21:74:22:81:8E
Certificate issuer: /CN=b4dd6d658e14571e839f7813da31f2217422818e
Certificate serial: 019A4E4F746307D49C386C40369775DACF63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 10:00:21 +0000
Manifest this update: Tue 04 Nov 2025 10:00:21 +0000
Manifest next update: Wed 05 Nov 2025 10:00:21 +0000
Files and hashes: 1: i7TTR0PMX6DAq8x2EEX7tvYEy2w.roa (hash: iWmz0ZT2uDCkIA/K5JDubPnWXPlf7zxHizjmswntW2Y=)
2: tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl (hash: 3VChdOo1z1infQVRcrLAgIBGTOSxOaVP7Y+1d7lg78U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:74:63:07:d4:9c:38:6c:40:36:97:75:da:cf:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4dd6d658e14571e839f7813da31f2217422818e
Validity
Not Before: Nov 4 10:00:21 2025 GMT
Not After : Nov 5 10:00:21 2025 GMT
Subject: CN=0957c0c4317b445e89358dd283f2693cce812c41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c9:8f:12:36:db:eb:2d:34:a5:89:01:bc:2d:
f2:54:03:0f:fd:3b:9d:2f:aa:82:f4:ce:f0:b1:7a:
76:24:8f:f2:7e:5c:06:7d:2f:4e:55:84:47:94:b2:
5a:ba:b8:f1:5c:8d:a2:69:26:c6:0a:da:b8:11:ea:
ca:a2:a1:16:a1:49:95:1b:c2:ae:06:da:4e:16:2c:
90:6d:b3:b0:05:e7:de:e0:19:1c:10:32:96:d6:8b:
42:b2:7f:d8:9a:25:fc:4c:96:06:d5:38:8d:94:53:
58:02:36:01:f7:a9:ae:60:9f:bd:5b:1d:84:c1:84:
37:89:9e:93:37:44:83:84:a8:5d:37:18:0a:f1:af:
97:64:ef:8d:4e:ea:db:8f:4d:08:25:7c:f9:ec:56:
68:8c:bd:3f:48:8f:a0:94:b4:7d:1d:3f:80:b5:3f:
d0:21:0a:76:aa:c9:4c:15:2b:03:7c:77:b6:af:e0:
84:a0:0b:e2:a3:17:e3:07:e1:f4:ef:39:11:b5:16:
91:4c:db:c1:85:70:0c:7c:19:e8:f6:be:91:1d:f9:
09:30:9c:7d:96:fd:9e:31:fb:1e:ae:75:d4:71:90:
69:09:cd:63:99:11:9a:ff:ad:23:ff:6b:10:8c:06:
1c:d0:72:c3:57:e7:bc:82:15:40:a5:2d:38:f7:f3:
00:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:57:C0:C4:31:7B:44:5E:89:35:8D:D2:83:F2:69:3C:CE:81:2C:41
X509v3 Authority Key Identifier:
keyid:B4:DD:6D:65:8E:14:57:1E:83:9F:78:13:DA:31:F2:21:74:22:81:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:ee:10:5d:90:bd:75:f1:38:cf:b5:bc:08:47:39:79:f4:7e:
80:64:2e:48:ff:7e:bd:b8:0f:29:f8:6c:a2:f4:58:3f:0a:22:
78:83:00:8e:67:c3:f3:ba:17:96:e1:51:3a:2f:47:af:5b:34:
5a:85:25:36:9a:bc:26:df:08:29:8c:36:69:3c:cf:3e:05:eb:
38:fe:35:a9:71:48:b9:42:da:f5:85:d0:49:01:e2:1b:ae:1c:
ab:81:44:46:22:9a:53:d8:4a:c9:b6:f4:09:cf:e8:cb:79:4c:
8c:4d:37:d8:5b:5f:df:76:67:f4:42:05:7e:ef:14:c0:31:ba:
36:af:04:da:d7:82:bc:bc:3a:37:47:50:41:cc:28:56:b5:56:
ee:e0:6e:a5:c3:18:72:c1:b9:01:75:4c:b8:8b:70:69:de:ab:
91:49:ca:56:b8:19:19:8f:a2:b9:d2:4f:55:17:01:19:ff:2c:
2a:87:16:21:70:49:a2:cf:c7:e3:6e:cb:c2:ec:4b:e2:74:99:
0f:92:5b:fd:f4:53:2a:8f:3d:85:95:a8:17:f7:fc:e6:b3:42:
32:cf:6d:e2:eb:4e:dd:ac:22:55:07:0f:43:b7:ee:2a:ee:37:
08:69:43:ab:80:cd:33:0f:d4:31:65:ed:fe:e5:17:f1:79:ec:
03:61:25:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:15:24 2025 by rpki-client