Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
File: txRZXFDDUZIbDemldUChXlwcYYo.mft (raw, json)
Hash identifier: kLmimpDj8jPlWRAo2w81CKTXCZhOnRCNPWwKoHv7sho=
Subject key identifier: 77:33:6E:74:56:14:8B:62:2F:54:94:BA:0A:14:27:21:38:51:21:F1
Authority key identifier: B7:14:59:5C:50:C3:51:92:1B:0D:E9:A5:75:40:A1:5E:5C:1C:61:8A
Certificate issuer: /CN=b714595c50c351921b0de9a57540a15e5c1c618a
Certificate serial: 019872CF240E5B98897F9D6A146FB182E81F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/txRZXFDDUZIbDemldUChXlwcYYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
Manifest number: 1078
Signing time: Mon 04 Aug 2025 02:00:34 +0000
Manifest this update: Mon 04 Aug 2025 02:00:34 +0000
Manifest next update: Tue 05 Aug 2025 02:00:34 +0000
Files and hashes: 1: 2m5iIAK03n8_QUvPwXckjr2TMEU.roa (hash: ZU7+W8vWoLJfyvrECJJAIJpcDrdAhqoCYTZBjsh+l9c=)
2: txRZXFDDUZIbDemldUChXlwcYYo.crl (hash: b+qYNTy1oQidUsE8j55r2aSeGuwNKfEwGQZA1iFCsD4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/txRZXFDDUZIbDemldUChXlwcYYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:24:0e:5b:98:89:7f:9d:6a:14:6f:b1:82:e8:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b714595c50c351921b0de9a57540a15e5c1c618a
Validity
Not Before: Aug 4 02:00:34 2025 GMT
Not After : Aug 5 02:00:34 2025 GMT
Subject: CN=77336e7456148b622f5494ba0a142721385121f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:21:ee:5c:40:d3:5b:1a:98:83:7f:8f:9d:78:
3a:3d:8e:bb:7b:b8:91:9b:91:f5:4e:39:22:08:96:
df:ad:75:f5:cb:0e:ee:b1:5b:1f:b4:c6:4a:b4:33:
3b:65:9f:9d:61:91:a5:10:9f:c3:76:cb:37:aa:7e:
7f:d3:20:98:ed:c3:96:b2:90:ae:ff:46:23:33:26:
52:86:af:21:b4:ad:bc:62:ee:68:5c:e9:f3:ca:43:
86:f8:64:f1:03:cb:7e:11:3b:6c:08:10:5e:9d:59:
52:58:17:c0:04:09:57:83:92:03:f0:8a:04:d0:93:
c4:9f:5c:e2:86:c2:93:9b:a8:88:c3:ac:57:03:91:
3c:50:c5:3c:e7:5e:8c:e7:8f:fb:67:23:89:45:cd:
d8:03:0d:2a:fe:38:3a:d3:55:3c:43:b7:3a:9c:76:
3d:e4:f5:c7:a0:4f:34:bd:e4:bc:54:55:06:d3:47:
7c:4f:cb:16:24:98:f3:61:6e:ae:98:b2:5e:b4:ef:
2b:a8:1e:07:41:bf:c1:cd:22:e2:c4:68:a4:d8:10:
3e:82:ce:2a:1a:25:0d:46:de:45:96:ac:d2:e2:f9:
c4:8b:fe:ec:37:0d:62:45:83:53:df:87:8b:dd:19:
d2:14:c6:00:31:c8:da:2c:34:29:bf:df:a5:2d:db:
87:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:33:6E:74:56:14:8B:62:2F:54:94:BA:0A:14:27:21:38:51:21:F1
X509v3 Authority Key Identifier:
keyid:B7:14:59:5C:50:C3:51:92:1B:0D:E9:A5:75:40:A1:5E:5C:1C:61:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/txRZXFDDUZIbDemldUChXlwcYYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:b4:a4:44:20:de:89:85:81:e4:7a:2d:4a:07:b3:2a:c8:9b:
2d:2c:84:61:80:9d:e4:e1:c8:a7:97:73:5b:4b:7b:cc:5b:a9:
94:76:3b:9b:9e:0a:31:1e:d4:28:44:76:ab:2c:ee:ef:20:04:
c9:ec:2d:99:15:d0:1b:47:49:d6:ce:a0:ff:a9:58:c8:e7:d3:
12:91:96:18:fd:fe:61:54:42:84:3d:c2:b3:26:1b:cd:ac:ce:
10:1d:88:5d:d9:46:18:5d:ad:7c:b0:66:d1:a6:40:34:08:c5:
d0:9b:bc:75:5d:cb:1c:3e:1e:40:05:52:9b:62:87:c8:c6:7a:
b3:28:21:3d:b8:51:19:6b:57:f5:6f:27:22:4f:e9:2f:02:ac:
13:81:3d:72:fe:67:f1:fb:35:11:c5:8f:50:56:f9:09:0e:4a:
26:3b:1a:0d:d3:cc:3e:56:f6:e7:01:fc:66:65:d6:36:bb:89:
15:5a:a2:5c:92:8e:fa:dd:2b:15:0e:b2:9a:29:ab:a2:66:0f:
7a:70:7d:e9:89:bc:7f:a1:bb:1a:49:dc:0a:a4:b7:b9:cf:3c:
f6:50:c1:9b:a6:71:b8:ee:f2:a8:39:3d:34:b5:e9:4c:c0:53:
8b:c7:df:0b:fb:4e:de:d2:69:9d:8c:58:ea:d5:db:65:ec:bc:
f9:eb:e6:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:17:38 2025 by rpki-client