Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
File: TBdAzvl0ncKw9fiM3xA02oHWBtw.mft (raw, json)
Hash identifier: j3XVuPg3BKnh2e28vK4blFWADC3ZUiV3Z3VYFNPDO5I=
Subject key identifier: 57:68:CD:9C:4C:5C:72:98:EA:92:4B:42:3E:41:92:F2:8A:99:1A:7F
Authority key identifier: 4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC
Certificate issuer: /CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc
Certificate serial: 019A4E18CF32EFDAC4B62217BA4C75AD6263
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
Manifest number: 108B
Signing time: Tue 04 Nov 2025 09:00:39 +0000
Manifest this update: Tue 04 Nov 2025 09:00:39 +0000
Manifest next update: Wed 05 Nov 2025 09:00:39 +0000
Files and hashes: 1: 9UfG7ZfqsnxXdNjOVBB4EufGuiU.roa (hash: nBGGqWZhxqHLJh+Oq/1SCIlZ0ENh9e+rLU6y/LQvQNA=)
2: TBdAzvl0ncKw9fiM3xA02oHWBtw.crl (hash: lKVHJpeKWscmYfM13u9/I3zlcMOc3jz8eY3xhBu1Pnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:cf:32:ef:da:c4:b6:22:17:ba:4c:75:ad:62:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc
Validity
Not Before: Nov 4 09:00:39 2025 GMT
Not After : Nov 5 09:00:39 2025 GMT
Subject: CN=5768cd9c4c5c7298ea924b423e4192f28a991a7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b5:cb:80:c7:16:16:b1:15:86:4b:7a:09:25:
00:4c:44:df:3e:e2:e5:df:b2:60:f8:0f:7c:d7:eb:
e8:d7:20:26:f0:c4:d5:a8:c5:36:dd:72:e1:73:45:
7b:82:44:af:8c:70:ed:4d:3b:1e:4b:66:7e:a4:35:
ad:e9:cc:eb:46:bc:a2:06:bb:3c:d9:c7:d2:ac:d2:
24:10:a9:89:a6:f0:14:12:8e:e7:59:09:d6:9e:79:
ef:9a:05:3e:db:34:42:ef:be:13:22:81:fd:f5:e5:
a9:0e:9e:86:dc:e7:c9:50:14:f6:30:43:ba:6f:bc:
75:f1:1e:42:27:7b:f1:d5:fa:a6:0f:08:07:04:ad:
19:e5:42:20:e6:18:e2:18:a8:dd:16:89:1a:57:d0:
91:ce:01:d9:a9:e9:56:38:36:53:89:31:37:c7:4c:
cd:f5:bc:2d:aa:c0:60:18:c7:d9:2d:52:bf:03:fa:
df:46:49:e5:d6:ed:1a:b0:1e:bc:a6:a2:da:50:54:
51:ff:a8:7f:40:2a:a8:f1:65:7e:1e:1b:db:5b:34:
17:ff:65:6f:99:8d:05:69:4e:ee:73:77:67:ce:7b:
ff:42:87:6c:f3:4a:11:86:c2:74:88:27:9b:ba:7c:
e5:bf:43:08:e0:6c:5b:1f:9a:67:4c:91:5f:40:8c:
ca:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:68:CD:9C:4C:5C:72:98:EA:92:4B:42:3E:41:92:F2:8A:99:1A:7F
X509v3 Authority Key Identifier:
keyid:4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:c4:0b:9e:2e:6b:c8:07:ed:03:38:e0:42:1b:81:bf:99:ab:
7e:96:b0:5f:8b:bf:c6:dc:80:9a:6a:d5:a0:e6:09:82:c5:25:
b8:e0:f0:49:9f:a5:2b:52:d0:48:64:92:14:c1:d4:0c:86:69:
7f:95:2f:7a:c8:17:80:36:5c:6c:08:79:d9:c2:44:ef:d1:d7:
b0:6b:9e:63:a5:7f:b4:27:ce:e1:f7:b2:b2:ca:81:3b:5d:04:
c3:30:74:39:06:04:ef:31:ab:a7:26:3e:d5:d9:f6:5b:a5:4c:
b0:d9:3c:44:e1:58:55:36:b6:78:06:7f:8f:61:bf:d2:f5:03:
f8:cf:6b:3e:3e:c9:e6:c9:1e:d4:3e:4f:0b:80:67:3c:30:9e:
ea:26:8a:3e:1b:36:02:c5:96:d5:ce:4c:b5:92:56:3d:bd:2a:
38:4d:8a:05:4a:a4:f9:78:69:10:80:17:3b:92:ac:06:63:91:
a9:a9:a3:50:5b:ab:c6:44:b5:40:c9:f6:6d:3b:f9:7c:da:b0:
f3:36:b9:60:15:a1:90:78:a1:74:8b:23:cd:39:d9:ca:db:7a:
1b:07:1f:15:af:b4:e1:09:24:e8:6c:ef:c2:9b:9d:72:ad:fd:
1c:6d:87:d2:ab:85:5d:51:d0:7d:72:b1:7d:d5:1d:b3:a7:64:
31:10:67:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:40:43 2025 by rpki-client