Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
File: tDuXodIfY3tUkTDwhXpoHMf2iEw.mft (raw, json)
Hash identifier: ljOyBwFUuW72M55Ay55/Kop78DYYLYEFuC3nPq/DOZA=
Subject key identifier: 09:29:E6:FE:A7:76:3F:C3:C5:30:2F:81:9D:B3:30:15:FC:21:EE:79
Authority key identifier: B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
Certificate issuer: /CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Certificate serial: 01988CFE2DF037A84AF33ED7DA7FB0E6F0C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
Manifest number: 1624
Signing time: Sat 09 Aug 2025 04:02:04 +0000
Manifest this update: Sat 09 Aug 2025 04:02:04 +0000
Manifest next update: Sun 10 Aug 2025 04:02:04 +0000
Files and hashes: 1: 3-CNHKGdJXMpTXntAh-s3qj--cM.roa (hash: 2BpPHYt1k/l10pBcIexz0ktK+xFvs5F87gVofFcEgls=)
2: tDuXodIfY3tUkTDwhXpoHMf2iEw.crl (hash: 8DnrayVw9CVIGdLj8Jo3qb/xDQmJ+hJOYSErbVT4+dQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 04:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:fe:2d:f0:37:a8:4a:f3:3e:d7:da:7f:b0:e6:f0:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Validity
Not Before: Aug 9 04:02:04 2025 GMT
Not After : Aug 10 04:02:04 2025 GMT
Subject: CN=0929e6fea7763fc3c5302f819db33015fc21ee79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:01:1f:2f:5b:44:f6:f6:09:cc:01:e4:b3:cf:
ca:b7:2d:ce:d2:02:4c:b5:e3:19:8a:f7:b0:11:50:
b9:76:07:0c:4b:c1:1e:49:aa:7c:5d:f1:30:57:c8:
68:05:cd:11:2c:5c:11:6b:71:7d:61:fb:71:9c:cd:
8c:5f:ba:bb:44:04:01:46:6f:10:2f:bc:f2:d2:aa:
09:92:0d:fa:b2:99:24:be:3f:29:15:2f:49:d6:45:
89:72:d5:f1:01:de:2e:20:a3:99:bf:ad:55:cc:09:
7c:b6:84:2b:df:11:00:b8:3c:5b:4d:1d:7a:71:ac:
69:89:03:bc:3e:d4:61:70:d4:61:71:ff:fa:11:26:
17:2f:10:61:58:f0:45:bd:9d:9a:61:d2:b6:27:06:
5e:ae:90:f3:a3:90:80:de:6b:3a:2f:57:c4:40:d1:
2e:45:b6:52:5e:ec:7d:1e:e6:38:07:c7:82:80:8c:
67:78:81:45:d8:89:e4:eb:54:30:90:81:fe:c3:7d:
0d:57:0d:22:44:79:76:45:fa:70:09:51:7d:5a:75:
06:fd:69:b1:9a:27:3d:2f:f2:1d:ca:da:45:e8:87:
c5:d9:0e:d8:98:f0:5a:bf:83:11:e5:c2:78:0f:89:
35:dd:60:1d:99:18:d5:df:92:46:db:68:a0:ad:4a:
95:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:29:E6:FE:A7:76:3F:C3:C5:30:2F:81:9D:B3:30:15:FC:21:EE:79
X509v3 Authority Key Identifier:
keyid:B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:66:7a:82:32:5f:4b:e0:ba:97:fa:9c:bb:62:b1:a8:ac:c5:
74:eb:e4:25:21:96:e5:73:78:82:11:21:33:fc:60:c7:55:99:
c1:70:82:b7:bb:d7:1f:38:94:94:62:36:c3:07:a7:99:07:98:
45:13:77:c5:be:a2:23:78:b1:7b:e4:f2:ad:86:69:6e:14:99:
82:3e:c2:0a:01:2b:ca:6c:0e:f4:71:d5:0e:10:87:e2:20:e0:
bd:b3:ad:a3:1a:77:f6:4f:e4:59:ea:6f:90:46:2c:93:4b:2b:
2a:52:b1:61:38:f5:bd:cc:fc:e9:cb:69:56:dc:02:c3:83:dc:
d5:c9:d9:e2:bb:c2:23:ff:cf:bb:26:68:86:49:f2:ba:66:fa:
20:d4:70:d4:47:77:c6:02:7c:68:ac:ff:9a:92:26:b7:aa:15:
5c:4a:a7:64:8d:f7:8e:86:ec:13:75:67:9d:af:ea:6a:b4:ef:
49:05:45:d0:ca:4e:f0:b4:eb:65:41:1b:b6:23:c9:99:fd:6e:
ce:f4:c9:e3:a4:33:89:f0:ff:b4:e9:6f:a8:08:66:49:c2:ba:
08:93:b2:6a:0a:e3:4b:33:9a:b9:19:12:d2:a4:b0:7d:d1:cd:
a5:17:70:71:3c:d7:d7:ef:05:8e:1b:82:f1:67:f8:05:99:08:
ce:38:38:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:34:49 2025 by rpki-client