Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
File: tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft (raw, json)
Hash identifier: OBvPwg/ruP8vVFqBCsKPGC2lhkwxR+lPblNLXYQg6/o=
Subject key identifier: 1E:C5:B3:91:4D:2B:9E:48:BB:9D:02:71:9B:FA:AB:D6:C8:1F:2F:07
Authority key identifier: B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97
Certificate issuer: /CN=b414b09beeab905ff41e6813256054b182294297
Certificate serial: 019A50E3B7BCAB25BD08B2441C334D1E6B8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
Manifest number: 0C6F
Signing time: Tue 04 Nov 2025 22:01:32 +0000
Manifest this update: Tue 04 Nov 2025 22:01:32 +0000
Manifest next update: Wed 05 Nov 2025 22:01:32 +0000
Files and hashes: 1: 9ie56jozGctsQMPeP2PnRQlQSUc.roa (hash: 5kDUdIA6jw7l4e4ssTIC7py/rMtiw/D++uBoc2CI0Qo=)
2: mT-8_dVnmXbsJKgoN35LXNaAywM.roa (hash: o5cN5KMUIwn/VQVHMV9OAvcCU4Z7KPV9dR9Yvh1kUlg=)
3: tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl (hash: ryEObNDDimA0idMhrBI98lO0xCk+UE/ICrOwXCj9RBk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e3:b7:bc:ab:25:bd:08:b2:44:1c:33:4d:1e:6b:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b414b09beeab905ff41e6813256054b182294297
Validity
Not Before: Nov 4 22:01:32 2025 GMT
Not After : Nov 5 22:01:32 2025 GMT
Subject: CN=1ec5b3914d2b9e48bb9d02719bfaabd6c81f2f07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d7:62:9f:bf:c4:6b:db:5c:3d:05:1a:3a:20:
f4:35:4f:64:96:5e:a2:d2:62:07:dc:e9:97:35:d0:
c1:b6:8c:aa:38:00:26:61:11:1b:9c:a6:13:7d:68:
21:cd:0c:4f:3f:d4:bf:72:41:87:60:9f:90:11:04:
ce:af:7e:20:52:6a:26:1d:62:45:bb:85:2b:21:32:
3e:eb:b4:1a:e5:3c:6d:c0:5f:a2:11:ae:79:f5:e2:
f4:63:d3:87:f4:ca:83:aa:75:bd:05:ca:6b:f0:70:
14:87:04:1a:0f:c8:56:1a:38:21:d2:8c:9a:5d:5d:
d5:4d:bf:64:28:b4:79:87:1c:69:86:e6:db:2d:50:
d6:8d:c6:f2:0c:7f:48:60:b7:dd:a2:19:25:ec:ba:
09:92:00:f3:d4:e3:9c:66:58:e0:8a:ec:99:1a:0d:
64:77:83:44:ed:7e:de:2c:e3:94:7d:05:37:56:7f:
3b:1f:64:e4:6b:8e:74:65:4b:b3:88:d7:8e:b5:76:
d1:70:d2:81:04:be:24:28:43:0f:6f:6a:f9:a0:84:
7b:3a:17:83:b2:bb:89:55:51:b1:73:50:4e:ff:a0:
33:e5:e4:f8:14:d4:c8:0e:29:87:73:e8:1a:a2:4c:
99:41:54:9a:76:59:54:16:94:bd:f5:ae:83:fd:96:
a7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:C5:B3:91:4D:2B:9E:48:BB:9D:02:71:9B:FA:AB:D6:C8:1F:2F:07
X509v3 Authority Key Identifier:
keyid:B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:8c:f3:ee:da:74:00:32:25:8f:9e:4e:d1:8b:b5:f5:0f:6f:
38:e7:02:76:aa:ae:6d:78:23:e1:4f:9b:ca:84:3b:67:8f:21:
1e:3f:cd:7d:64:31:b0:3f:0b:cc:01:d8:58:90:fc:92:cb:47:
d7:64:bf:bc:c0:84:13:d1:c8:ec:53:34:41:97:da:68:47:b1:
5b:d1:1e:1d:39:71:a3:00:94:46:a3:3f:e0:2a:3a:89:14:e3:
2a:9e:b4:3b:65:34:61:ef:c6:b5:85:2a:50:e2:a3:32:8f:67:
87:cc:c3:78:3f:d0:09:10:e0:a8:22:13:7b:ad:c0:5e:1a:77:
0a:0f:c9:88:4b:93:07:7f:de:63:bd:4b:c4:7e:c5:78:02:74:
15:5a:e1:44:9f:b3:6d:68:11:65:2a:e3:96:11:98:e9:e3:92:
59:5c:e2:9d:75:0e:d1:f9:42:30:c6:0f:17:11:8a:ba:93:ad:
0e:8c:a0:a4:7f:98:68:c9:bd:36:da:db:d7:40:cc:37:74:ce:
e9:d6:8d:a4:7d:19:4c:ba:2e:27:df:a1:8b:7f:b5:93:63:17:
52:9d:d8:2b:36:26:6a:90:d1:9d:c6:81:56:8d:4d:43:11:68:
39:4c:7e:8f:50:52:cd:8d:2c:a4:cc:55:a2:a6:0a:5d:d1:83:
35:1d:b0:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:20:47 2025 by rpki-client