Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
File: tDuXodIfY3tUkTDwhXpoHMf2iEw.mft (raw, json)
Hash identifier: ngrnsLx1alnN/df/Zf40DeLbN+3HkTEFtDwDC/a4fPU=
Subject key identifier: B7:A8:87:BF:21:E9:B4:03:51:9B:E8:91:1F:E1:1E:4E:81:7E:52:6E
Authority key identifier: B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
Certificate issuer: /CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Certificate serial: 019A52D25EDE1C739276F4F35CB48E8A3B86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
Manifest number: 170F
Signing time: Wed 05 Nov 2025 07:01:49 +0000
Manifest this update: Wed 05 Nov 2025 07:01:49 +0000
Manifest next update: Thu 06 Nov 2025 07:01:49 +0000
Files and hashes: 1: 3-CNHKGdJXMpTXntAh-s3qj--cM.roa (hash: 2BpPHYt1k/l10pBcIexz0ktK+xFvs5F87gVofFcEgls=)
2: tDuXodIfY3tUkTDwhXpoHMf2iEw.crl (hash: 3S6LGR5HnNb9lVdOVbgQyr+I3eddzuwfqgCctegqS5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 07:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d2:5e:de:1c:73:92:76:f4:f3:5c:b4:8e:8a:3b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Validity
Not Before: Nov 5 07:01:49 2025 GMT
Not After : Nov 6 07:01:49 2025 GMT
Subject: CN=b7a887bf21e9b403519be8911fe11e4e817e526e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:00:f1:d5:1e:b7:1e:65:d5:cb:da:6b:24:38:
3a:54:b1:17:55:2a:d3:ef:6d:74:a1:c7:3f:c8:10:
08:8c:bc:7f:f7:26:82:1a:c4:c2:2e:cd:ca:4d:ed:
a5:f0:4a:07:84:8c:f3:09:39:d4:4f:37:e1:4e:75:
5c:3e:fb:dd:1e:34:d7:16:26:48:81:97:4e:d6:7e:
94:8c:a4:4c:da:4a:ae:50:f4:20:55:67:e6:fb:f3:
d1:52:be:51:6c:d6:f4:d9:ee:e7:da:e5:3d:f3:3a:
c4:11:23:ef:71:20:62:0a:b3:8c:72:c0:ff:33:6d:
e4:94:89:00:1c:fb:92:b6:a1:e2:70:fe:1b:ac:61:
4b:48:a3:00:cc:1f:a5:8b:a8:02:a3:73:d8:39:d9:
a4:7c:37:d8:1b:af:db:67:82:84:48:49:7f:33:87:
2a:bb:36:6e:f3:c7:51:21:db:6d:8b:0e:7f:da:70:
82:b4:8d:57:ff:c8:c9:6f:e9:b3:10:14:8e:20:16:
53:d3:fb:ac:39:b3:c5:47:80:48:bf:cd:85:ab:91:
af:a7:92:ba:f9:10:49:8e:8e:c2:94:c2:05:7a:7c:
2f:c8:6a:a8:cb:c2:89:72:b5:13:4b:31:31:a5:a5:
2f:25:4d:0b:e0:e3:e9:e7:07:85:8c:c7:23:1c:b0:
53:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A8:87:BF:21:E9:B4:03:51:9B:E8:91:1F:E1:1E:4E:81:7E:52:6E
X509v3 Authority Key Identifier:
keyid:B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:ce:eb:ad:27:76:76:93:64:46:ef:99:f0:8d:23:8d:98:06:
cb:2d:28:44:b8:bc:bc:6d:d6:e7:68:9b:a8:0d:15:93:db:df:
4a:91:7e:e7:c4:f1:5b:47:16:32:12:7f:32:f9:01:2d:ef:ce:
1a:08:68:e1:ab:f7:37:ad:d0:37:57:98:a1:2b:db:53:4b:0d:
f1:1c:e9:39:81:62:3c:33:88:15:be:13:94:bd:c7:08:d3:b9:
71:53:16:f6:f2:e2:82:27:07:dc:7d:3e:06:81:fa:03:f1:85:
6f:be:89:78:d0:ee:d4:2b:29:46:db:28:0e:8d:f0:82:e0:37:
f4:3c:1f:d6:d6:3d:92:ee:73:63:f3:04:c7:c3:bd:41:11:40:
26:aa:55:f6:9f:bc:a8:05:2a:5a:fe:51:9e:74:b2:c1:4a:ef:
a9:49:c5:c3:63:ae:ca:24:9e:40:d1:be:36:b5:2d:96:21:c0:
9d:ee:c0:d9:97:5a:16:82:aa:34:fb:1d:bb:11:61:51:19:84:
de:5a:36:b1:75:f9:1b:6e:16:cf:e0:a3:3a:ca:cb:7d:50:55:
b5:bb:a6:ba:3a:af:08:cd:8a:5f:7b:e3:2d:02:b5:6c:da:4f:
76:1a:fe:3a:92:85:60:52:d8:a6:39:dc:5d:20:00:5c:31:c3:
bf:1d:46:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:48:06 2025 by rpki-client