Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
File: tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft (raw, json)
Hash identifier: OoprLsv7AE2OI44NBeq6yepi46MmJ+7e0wyIsWaq2Z8=
Subject key identifier: 87:9B:A3:B6:1E:C7:DE:C4:A6:CC:59:50:67:74:51:5B:59:29:63:62
Authority key identifier: B4:DD:6D:65:8E:14:57:1E:83:9F:78:13:DA:31:F2:21:74:22:81:8E
Certificate issuer: /CN=b4dd6d658e14571e839f7813da31f2217422818e
Certificate serial: 01989412061FD9099DCEA89A7661267E01B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
Manifest number: 1628
Signing time: Sun 10 Aug 2025 13:01:05 +0000
Manifest this update: Sun 10 Aug 2025 13:01:05 +0000
Manifest next update: Mon 11 Aug 2025 13:01:05 +0000
Files and hashes: 1: i7TTR0PMX6DAq8x2EEX7tvYEy2w.roa (hash: iWmz0ZT2uDCkIA/K5JDubPnWXPlf7zxHizjmswntW2Y=)
2: tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl (hash: 4mxDeayNu5W2x2DUpLraONbKfW0kbVEdniLDgQyN0Pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 13:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:12:06:1f:d9:09:9d:ce:a8:9a:76:61:26:7e:01:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4dd6d658e14571e839f7813da31f2217422818e
Validity
Not Before: Aug 10 13:01:05 2025 GMT
Not After : Aug 11 13:01:05 2025 GMT
Subject: CN=879ba3b61ec7dec4a6cc59506774515b59296362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e3:7d:0b:de:9c:c1:c6:c1:18:23:5d:f6:63:
f4:6d:49:a7:53:bd:d9:7b:3a:fd:2c:2b:52:f7:0f:
5d:9e:e5:13:96:ab:55:9e:8d:ab:24:74:a9:7e:8e:
1b:0d:58:bd:49:46:82:a1:30:95:48:1a:f6:b3:e0:
0e:b5:0c:3e:c0:d6:d8:a0:cd:20:96:73:fb:fc:cb:
e3:8a:33:b7:fc:d3:ed:01:f1:b1:80:5e:7d:db:82:
a0:8c:aa:be:88:97:ab:77:c6:27:22:69:b1:ce:a9:
da:59:22:65:fa:9a:46:64:aa:80:98:4b:d6:51:05:
3b:c6:ad:f7:1d:32:51:9f:cd:c6:a3:f8:5e:ce:ae:
ab:f0:3c:c0:10:00:68:48:7c:76:3c:98:7b:07:2e:
55:c1:15:ba:82:f5:9a:4f:15:dc:be:c8:d2:44:4a:
e3:5e:b7:c3:05:4f:b5:40:72:fe:cf:55:95:b6:dc:
9d:3b:2b:70:8b:b8:e2:20:bd:47:08:fc:44:68:e2:
1b:04:fb:ae:45:19:39:d0:e2:70:78:de:71:e1:74:
aa:4b:7c:74:01:13:3b:0f:b1:a8:9d:96:f0:84:f9:
1a:11:87:24:06:24:3f:8e:b5:e7:4f:1d:54:b3:0f:
7b:06:30:bf:ff:b8:95:c6:ff:f6:85:e5:f5:6b:5f:
86:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:9B:A3:B6:1E:C7:DE:C4:A6:CC:59:50:67:74:51:5B:59:29:63:62
X509v3 Authority Key Identifier:
keyid:B4:DD:6D:65:8E:14:57:1E:83:9F:78:13:DA:31:F2:21:74:22:81:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:46:80:56:e1:90:09:1f:e3:92:32:88:2d:53:ac:ec:68:90:
59:98:de:da:f9:c2:2c:05:1c:75:ed:5e:ea:5d:28:30:8d:c4:
0e:46:bf:3a:eb:dd:c8:cc:2f:8c:18:ee:0f:1b:51:72:b2:f3:
73:de:17:64:e8:49:fb:79:4a:42:6b:1f:91:35:8a:f1:14:2c:
6a:a3:1d:16:93:42:bd:f9:f3:ab:b9:ce:52:6a:79:f7:01:26:
32:d2:41:39:00:b4:d3:31:72:cd:52:a7:ae:77:fa:70:5c:00:
d3:32:4c:ac:c7:8e:f5:92:77:46:0d:cc:48:62:0f:c9:34:5a:
8a:db:e4:f5:f7:08:64:e0:2f:3f:97:45:05:62:23:47:b8:ac:
14:d8:26:31:95:41:43:0b:3b:35:fd:a1:fb:60:02:a3:8b:86:
bb:94:a0:fd:b5:35:99:94:71:0a:1f:d4:bc:11:e7:81:cf:a0:
0a:6a:b7:81:47:8e:9f:3d:8c:93:8e:90:70:5a:7f:6c:90:87:
0c:9c:2a:5e:f6:08:c2:2f:fb:f3:71:52:90:bf:50:51:1a:a4:
a7:a9:7e:54:c7:18:7a:84:34:4d:65:b0:4d:60:b4:e1:dc:26:
c8:0a:ad:50:8d:03:26:8b:36:14:14:4a:aa:ba:9c:a6:d2:9c:
49:1e:7a:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 21:00:47 2025 by rpki-client