Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
File: tRhBzcn2NZTd3CulmkATMYK1efo.mft (raw, json)
Hash identifier: zr6c9lHHIc+bF5CAJP7RnECM6yuKarmTw4umiOEegIY=
Subject key identifier: 7C:3C:3D:9C:A4:37:C3:16:2F:F2:5C:D8:01:F5:89:08:A9:5F:3E:8C
Authority key identifier: B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
Certificate issuer: /CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Certificate serial: 0198744FB4D2D54E8543239678E563230559
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
Manifest number: 161A
Signing time: Mon 04 Aug 2025 09:00:37 +0000
Manifest this update: Mon 04 Aug 2025 09:00:37 +0000
Manifest next update: Tue 05 Aug 2025 09:00:37 +0000
Files and hashes: 1: iQxCTqJc23IztH0qMtXGhii78xc.roa (hash: b/32KuHdgss/tEEpqliyL9nGxIGy3IsYTip4QREYlPc=)
2: tRhBzcn2NZTd3CulmkATMYK1efo.crl (hash: 1D/cTA7utn9cr9cqfeAtzrN8ah93p71ZXqOnwLCe2Q8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:4f:b4:d2:d5:4e:85:43:23:96:78:e5:63:23:05:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Validity
Not Before: Aug 4 09:00:37 2025 GMT
Not After : Aug 5 09:00:37 2025 GMT
Subject: CN=7c3c3d9ca437c3162ff25cd801f58908a95f3e8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ad:a7:08:3a:78:9f:33:f7:16:d4:7b:a7:85:
75:b3:2f:b4:98:65:0e:99:a1:8f:8a:73:44:06:00:
67:03:6c:e2:9b:bf:c8:3e:69:31:35:d1:ef:e2:38:
ab:55:32:c4:a4:c7:c9:14:ec:14:96:f5:00:24:be:
7d:f5:6d:46:8f:e0:13:f3:b6:16:36:ad:1e:b8:1f:
d6:fe:e2:63:5c:dd:93:f6:60:d3:8a:93:7b:9d:71:
8e:86:b8:e3:ad:1f:f9:99:21:69:de:a3:0d:f3:1e:
9e:8e:f0:7e:a0:f7:53:bf:18:02:80:e1:0a:32:d5:
66:f7:87:c6:e8:8e:64:1c:45:31:f5:3e:a2:ab:d7:
0d:e5:e5:fb:b3:db:68:04:98:92:67:b6:34:25:2f:
b8:e7:73:23:26:ac:df:35:f5:f6:cc:ea:92:55:3a:
93:a0:26:8e:99:17:e4:bd:aa:e3:2d:00:9c:d4:06:
73:33:24:45:be:03:22:ff:e1:24:33:f5:0d:42:90:
51:7e:28:ee:c5:15:bd:45:20:89:83:46:44:08:3e:
b7:7d:ff:d1:c5:2b:8a:56:f9:ad:f0:28:fd:d5:08:
64:84:00:fa:ee:3c:b7:10:db:c2:cf:a9:42:87:1f:
fb:c7:c5:a7:08:e8:3b:39:a6:da:7c:87:da:14:90:
dc:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:3C:3D:9C:A4:37:C3:16:2F:F2:5C:D8:01:F5:89:08:A9:5F:3E:8C
X509v3 Authority Key Identifier:
keyid:B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:0d:46:d7:41:e4:5c:8e:5a:d3:55:07:24:26:a7:f5:a5:85:
8b:8d:64:8b:fd:1c:46:c5:8b:ee:48:e2:78:bf:3a:99:f7:74:
19:ca:a3:81:f5:99:03:52:aa:4b:33:d2:5c:29:a0:a9:f8:94:
83:c8:06:35:81:5e:b3:29:21:b4:72:50:4b:3f:02:c6:49:4c:
f9:0a:21:df:90:11:9b:5c:8b:45:82:cf:e0:3e:ee:ed:d9:d8:
e0:b8:dc:30:74:2e:7c:c8:dd:3c:a1:52:77:4e:50:35:2a:cb:
93:a2:56:76:96:b7:f2:c4:46:d0:68:d9:45:ee:13:d2:df:9b:
46:c9:4d:a9:d2:00:51:27:27:d4:68:9f:6e:6d:b2:cc:cf:8d:
ed:7e:35:a6:8d:bc:87:e7:9e:32:97:d9:4e:c8:98:31:08:ce:
4a:a4:ee:30:84:5a:b6:8a:0b:d4:2b:e7:51:dc:a2:5f:82:86:
5b:83:d1:e6:b0:d3:dc:c5:9b:14:87:5e:23:4a:92:09:fe:a8:
d6:99:e3:2a:45:56:20:f4:b0:c7:3d:6b:ea:58:9b:b7:c7:91:
95:cf:68:8f:26:67:11:c7:5e:4a:d5:24:1d:01:30:f2:55:b1:
fa:ca:19:41:12:cd:fa:50:f9:72:c3:48:64:55:ee:5c:bf:6b:
82:73:de:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:07:57 2025 by rpki-client