Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
File: TBdAzvl0ncKw9fiM3xA02oHWBtw.mft (raw, json)
Hash identifier: Vxtnc4U961cqHqJW3W2Bg+VHk+baruJCjOnJMbuohdE=
Subject key identifier: E0:5C:15:FC:DB:52:73:46:37:3F:66:29:7B:34:EB:AB:57:39:4B:FB
Authority key identifier: 4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC
Certificate issuer: /CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc
Certificate serial: 01988E0FF9FB75B76C56883235CA291A2A52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
Manifest number: 0FA3
Signing time: Sat 09 Aug 2025 09:01:08 +0000
Manifest this update: Sat 09 Aug 2025 09:01:08 +0000
Manifest next update: Sun 10 Aug 2025 09:01:08 +0000
Files and hashes: 1: 9UfG7ZfqsnxXdNjOVBB4EufGuiU.roa (hash: nBGGqWZhxqHLJh+Oq/1SCIlZ0ENh9e+rLU6y/LQvQNA=)
2: TBdAzvl0ncKw9fiM3xA02oHWBtw.crl (hash: +XdvCfnB1fbZ/1rHf+eAecOLOYsHmMkc1tzRNTsH0Ls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:0f:f9:fb:75:b7:6c:56:88:32:35:ca:29:1a:2a:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc
Validity
Not Before: Aug 9 09:01:08 2025 GMT
Not After : Aug 10 09:01:08 2025 GMT
Subject: CN=e05c15fcdb527346373f66297b34ebab57394bfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0d:45:65:4a:3c:cc:26:de:c3:17:06:eb:98:
b7:e0:c4:58:03:23:63:20:4c:39:6f:bf:1e:c0:76:
65:de:73:df:cc:a8:62:3b:c0:0d:af:9e:6c:e6:1b:
29:5a:5c:6c:6d:76:75:74:86:92:7c:63:72:cf:8e:
33:5c:2e:d7:ab:45:a8:90:35:3a:dc:61:2e:b6:cb:
0f:2d:99:ce:1a:92:f6:a2:22:52:80:84:64:f8:cd:
2a:d5:d9:ea:5d:ed:57:9a:85:f3:42:1f:64:7c:74:
41:4e:e5:65:24:46:e2:aa:79:cd:50:d7:43:16:79:
6b:39:82:23:22:c3:2f:2c:fe:85:b7:f6:67:ca:a7:
76:ba:a6:7b:3f:4a:ff:b9:fe:f8:63:bb:33:05:f8:
f5:65:2e:d2:41:b2:f4:72:a4:ce:33:05:60:eb:bc:
76:cc:68:0b:be:4e:b6:fb:8f:16:51:18:68:df:96:
ce:93:38:97:31:18:a7:7f:87:95:7a:e6:25:1b:1b:
eb:47:f6:ac:b5:15:69:66:62:d9:c5:88:d5:5f:23:
e7:7f:69:ce:6b:31:89:da:6a:12:80:bc:ef:58:8d:
75:fc:4b:49:86:05:20:0c:c1:d7:7b:09:af:4a:2e:
ed:42:3c:21:c6:93:7e:5a:77:28:e8:52:ff:af:e3:
a0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:5C:15:FC:DB:52:73:46:37:3F:66:29:7B:34:EB:AB:57:39:4B:FB
X509v3 Authority Key Identifier:
keyid:4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:81:98:50:b9:84:12:e7:ef:ee:70:79:e9:22:72:53:21:85:
57:46:5f:35:7f:41:36:74:62:ee:15:a4:c8:3e:23:e6:d0:85:
8d:98:44:be:22:e7:3b:49:76:f6:a2:45:5e:1d:12:fe:1f:08:
e3:85:ae:f2:4d:9d:e9:fc:48:66:3d:4f:4c:5f:fc:b9:35:86:
10:a3:e1:46:5f:19:f5:a2:6c:42:e6:a3:18:e2:76:79:31:31:
6a:73:23:47:a7:cd:43:5b:c3:31:cc:30:ac:5a:a8:f2:17:ca:
30:e8:e0:8a:38:9c:86:ea:40:65:4a:03:3d:36:3e:59:f6:36:
d6:7e:23:f4:01:af:9f:57:1b:ff:24:24:0f:c0:c0:7c:ba:13:
7e:02:08:95:38:17:9c:e3:e7:a1:7a:ee:ef:e5:de:13:34:58:
83:65:65:47:78:44:e6:ac:ff:55:95:3f:f1:16:28:06:c6:32:
56:8c:fb:23:e4:af:1d:a6:bc:7b:00:cd:74:e1:77:19:1b:a0:
ab:3f:be:9b:29:94:21:f4:0f:70:90:bc:a2:01:c8:58:39:33:
f1:6e:1a:e4:e0:e0:3d:71:29:13:34:3b:df:59:e0:a7:29:57:
00:73:4a:8b:7e:df:ce:38:11:5e:38:33:f2:f9:7c:17:77:cf:
61:c9:ac:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:16:00 2025 by rpki-client