Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
File: tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft (raw, json)
Hash identifier: 0h0V7UrMeuHEch0iAkcaz9U1vqDwRQgxGz5Hcig8xuk=
Subject key identifier: 90:5F:B4:81:37:CE:C1:6B:A4:C2:E5:29:90:3E:0B:00:DB:52:1F:F2
Authority key identifier: B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97
Certificate issuer: /CN=b414b09beeab905ff41e6813256054b182294297
Certificate serial: 019873E2CF29797464A5E3A19EA090768908
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
Manifest number: 0B78
Signing time: Mon 04 Aug 2025 07:01:40 +0000
Manifest this update: Mon 04 Aug 2025 07:01:40 +0000
Manifest next update: Tue 05 Aug 2025 07:01:40 +0000
Files and hashes: 1: 9ie56jozGctsQMPeP2PnRQlQSUc.roa (hash: 5kDUdIA6jw7l4e4ssTIC7py/rMtiw/D++uBoc2CI0Qo=)
2: mT-8_dVnmXbsJKgoN35LXNaAywM.roa (hash: o5cN5KMUIwn/VQVHMV9OAvcCU4Z7KPV9dR9Yvh1kUlg=)
3: tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl (hash: Q7GSyQPim5NtoIW8IvBRgG4lbbsaRwedYaSpRcfplKg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:cf:29:79:74:64:a5:e3:a1:9e:a0:90:76:89:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b414b09beeab905ff41e6813256054b182294297
Validity
Not Before: Aug 4 07:01:40 2025 GMT
Not After : Aug 5 07:01:40 2025 GMT
Subject: CN=905fb48137cec16ba4c2e529903e0b00db521ff2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a1:84:00:86:c6:3e:d6:6a:4b:64:02:78:da:
86:ba:9e:21:74:b5:4f:a5:1e:92:bb:f8:ef:00:62:
ff:77:20:56:cc:82:d0:4c:62:54:3b:2a:35:21:db:
7d:c4:77:35:6b:73:4c:5e:55:2d:b8:37:da:d5:fd:
d0:17:db:b5:81:69:78:4a:2b:4f:ee:b9:10:64:bd:
c4:96:1a:75:93:3a:3e:5e:0d:7c:e4:2f:c6:ba:a3:
25:86:3f:c8:9b:b5:ce:16:87:74:ed:57:03:93:0e:
93:d3:54:ee:70:55:f0:0e:44:f2:2d:25:c9:ff:29:
0e:7d:cc:8c:69:80:05:58:c9:15:e0:fe:80:17:7a:
2f:37:95:9c:3b:47:f0:a7:07:71:c3:18:6b:b9:e3:
19:dc:46:0d:ca:30:77:44:ea:5f:0f:ef:af:08:c7:
40:f8:59:4b:8c:7e:49:2c:e9:02:b1:71:3c:17:45:
7a:4f:71:83:72:1a:69:8c:6c:6b:4e:ce:2b:7b:5f:
bf:f3:e3:5c:a7:9e:e7:d9:8a:35:82:a3:49:f3:bb:
fd:e1:c4:22:fd:3e:1a:92:49:fd:fc:e8:4e:5e:86:
27:5c:be:43:a1:d6:ad:99:92:b5:d5:1f:8c:13:1f:
d6:22:e8:ee:1d:c9:05:8a:9c:a5:82:26:17:4f:cb:
8f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:5F:B4:81:37:CE:C1:6B:A4:C2:E5:29:90:3E:0B:00:DB:52:1F:F2
X509v3 Authority Key Identifier:
keyid:B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:f3:2d:d4:b9:ae:6d:f2:d5:30:5d:a5:1b:e3:cc:5c:68:30:
40:14:fc:e7:f2:82:d1:15:63:20:e9:90:c1:ff:cc:f6:45:41:
d0:c5:d2:30:20:d9:27:df:a0:9c:d3:0c:47:7e:ae:09:e0:b9:
c7:f6:47:c5:02:99:2b:11:98:90:65:f0:92:24:c3:a2:a8:98:
06:2d:81:19:a3:3c:a0:c8:ab:fb:2a:cc:47:86:7b:ed:42:36:
36:52:4a:a6:cb:30:db:bd:b4:b1:c7:55:5e:16:5f:f0:fa:06:
e1:fe:95:29:e0:bd:90:0a:f7:cb:01:cc:5b:e3:af:7c:84:b0:
56:b9:51:ce:27:a0:c4:65:17:f0:f5:cd:ba:67:23:1b:65:61:
c6:64:89:88:ad:7c:66:b8:77:b9:41:93:ed:a8:f4:5f:df:0d:
9a:63:32:7a:03:38:03:4c:24:50:ed:4f:72:28:64:9b:f5:ef:
4a:4b:46:13:36:e9:b0:77:b0:7f:c7:73:9b:ac:8b:f8:2d:3f:
cf:3d:5f:9f:b1:1b:c5:ce:c0:58:7a:a2:2e:99:a0:81:72:8e:
08:6a:28:e6:6c:9e:97:8c:a0:45:64:33:0e:85:ef:a4:e9:9f:
70:7c:6c:1e:4e:02:f1:1a:26:8b:7e:5a:c3:3b:43:c1:14:4e:
e9:cd:46:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz4s8peXRkpeOhnqCQdokIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MTRiMDliZWVhYjkwNWZmNDFlNjgxMzI1NjA1NGIxODIy
OTQyOTcwHhcNMjUwODA0MDcwMTQwWhcNMjUwODA1MDcwMTQwWjAzMTEwLwYDVQQD
Eyg5MDVmYjQ4MTM3Y2VjMTZiYTRjMmU1Mjk5MDNlMGIwMGRiNTIxZmYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqqGEAIbGPtZqS2QCeNqGup4hdLVP
pR6Su/jvAGL/dyBWzILQTGJUOyo1Idt9xHc1a3NMXlUtuDfa1f3QF9u1gWl4SitP
7rkQZL3Elhp1kzo+Xg185C/GuqMlhj/Im7XOFod07VcDkw6T01TucFXwDkTyLSXJ
/ykOfcyMaYAFWMkV4P6AF3ovN5WcO0fwpwdxwxhrueMZ3EYNyjB3ROpfD++vCMdA
+FlLjH5JLOkCsXE8F0V6T3GDchppjGxrTs4re1+/8+Ncp57n2Yo1gqNJ87v94cQi
/T4akkn9/OhOXoYnXL5DodatmZK11R+MEx/WIujuHckFipylgiYXT8uPmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJBftIE3zsFrpMLlKZA+CwDbUh/yMB8GA1UdIwQY
MBaAFLQUsJvuq5Bf9B5oEyVgVLGCKUKXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEJTd20tNnJrRl8wSG1nVEpXQlVzWUlwUXBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84MDBlYjYtODY4Yi00YTMwLWI0MDIt
NGJjZTQyNDcyM2Q5LzEvdEJTd20tNnJrRl8wSG1nVEpXQlVzWUlwUXBjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS84MDBlYjYtODY4Yi00YTMwLWI0MDItNGJjZTQyNDcyM2Q5
LzEvdEJTd20tNnJrRl8wSG1nVEpXQlVzWUlwUXBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq/Mt1Lmu
bfLVMF2lG+PMXGgwQBT85/KC0RVjIOmQwf/M9kVB0MXSMCDZJ9+gnNMMR36uCeC5
x/ZHxQKZKxGYkGXwkiTDoqiYBi2BGaM8oMir+yrMR4Z77UI2NlJKpssw2720scdV
XhZf8PoG4f6VKeC9kAr3ywHMW+OvfISwVrlRziegxGUX8PXNumcjG2VhxmSJiK18
Zrh3uUGT7aj0X98NmmMyegM4A0wkUO1Pcihkm/XvSktGEzbpsHewf8dzm6yL+C0/
zz1fn7Ebxc7AWHqiLpmggXKOCGoo5myel4ygRWQzDoXvpOmfcHxsHk4C8Romi35a
wztDwRRO6c1Glg==
-----END CERTIFICATE-----
Generated at Mon Aug 4 14:10:25 2025 by rpki-client