Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json)
Hash identifier: XTSs6cXrMUPrrkh7xFlXDfzzUEd2vwS6cO2uldI3oNY=
Subject key identifier: AD:73:CD:AF:2D:96:D6:27:DB:68:86:F6:4B:F5:84:04:D0:05:97:45
Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Certificate serial: 01988A32AEEF5F12EF5AE4F398FE29CF150E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
Manifest number: 1623
Signing time: Fri 08 Aug 2025 15:00:34 +0000
Manifest this update: Fri 08 Aug 2025 15:00:34 +0000
Manifest next update: Sat 09 Aug 2025 15:00:34 +0000
Files and hashes: 1: DvRXNlTCR35yGxJPggKI6LQ1TXY.roa (hash: uCs5edSvBBj2KY6s6HL8wAMD7pMX49G3e3NvxavAQGo=)
2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: bIupCtdwLobGnf6rz4LTDvwZ+P4xXINMA5oPUAd2BJk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 15:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:32:ae:ef:5f:12:ef:5a:e4:f3:98:fe:29:cf:15:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Validity
Not Before: Aug 8 15:00:34 2025 GMT
Not After : Aug 9 15:00:34 2025 GMT
Subject: CN=ad73cdaf2d96d627db6886f64bf58404d0059745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c1:72:bb:0a:32:b8:6b:15:ce:df:05:c8:6e:
8f:94:ff:ff:54:02:30:3e:43:03:6e:9d:fc:7c:fd:
ed:38:2f:a2:b9:ee:e3:04:1a:3b:11:02:47:1d:7f:
fc:20:42:39:9a:21:05:dd:ca:31:c5:dd:8d:39:6d:
3f:d9:11:b7:45:e2:82:f2:a6:81:b9:3e:7d:fd:ea:
d0:06:6f:19:5c:c2:7d:1f:c4:14:11:da:33:ea:eb:
47:66:37:e3:df:0c:ce:7e:37:3f:99:28:bb:48:f9:
77:85:ea:3d:47:cf:27:7f:49:da:d0:d4:72:8c:02:
32:ea:3a:95:52:f4:8f:a8:89:4f:58:f7:ee:8d:7a:
74:a4:72:c0:4d:b8:28:19:0f:8d:72:d0:b6:c1:93:
61:bf:f8:7a:e0:f4:ca:10:d9:7c:c4:a2:42:dc:57:
99:98:62:23:00:58:9b:b5:a5:0c:aa:85:a2:9a:22:
c5:97:30:00:28:9a:ed:7f:ab:c6:69:ec:78:fd:6d:
d1:23:df:2b:e2:b3:76:65:3d:6c:ed:bc:8c:e5:9e:
1d:5d:b8:79:4c:55:a6:74:8d:7d:3a:e1:4f:b1:c6:
84:12:89:41:7a:5f:b2:f0:6c:fa:8e:14:a5:44:57:
25:18:33:b6:6d:e9:a1:95:13:a7:7a:23:77:84:60:
5e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:73:CD:AF:2D:96:D6:27:DB:68:86:F6:4B:F5:84:04:D0:05:97:45
X509v3 Authority Key Identifier:
keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:89:0b:b4:32:2a:78:95:e9:ac:0e:f2:d6:b8:34:d2:07:34:
60:eb:46:6d:98:e0:ac:8e:0f:be:24:38:08:90:16:25:78:7d:
55:6a:46:06:c7:d6:69:33:50:64:4f:f2:13:e7:dd:ae:30:44:
47:63:3e:03:fa:89:cd:cd:92:51:d0:39:77:78:fe:9a:c3:b3:
89:cb:02:4d:4a:21:c1:e1:70:f7:16:33:b0:d5:4b:bf:ae:9a:
0a:bc:f2:fb:32:39:cd:b2:24:6d:5f:2f:d2:1a:cc:f6:57:52:
e2:41:5d:b7:3b:9a:a8:65:2c:f4:02:4b:4f:8c:2f:98:d3:68:
2c:8c:f5:25:2e:56:df:ab:ab:df:fd:c9:63:b8:77:3c:44:51:
ec:76:3d:d0:2d:e2:c7:84:a8:40:47:f5:65:e4:a9:c1:29:47:
49:9e:4b:22:12:11:1a:1e:83:c9:8b:ab:17:84:b9:15:24:67:
ef:02:80:f1:76:91:9c:33:c1:8e:5b:4e:ac:82:81:cc:f4:d6:
4c:99:8c:14:b0:9d:8d:00:14:cd:33:91:e7:26:42:6c:24:9b:
93:44:48:4e:1a:28:8f:da:70:4d:d0:96:79:f7:ef:12:e7:47:
6e:83:f4:98:69:fc:f4:90:a7:97:38:6e:cf:02:84:ff:98:5b:
11:6b:2f:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:03:15 2025 by rpki-client