Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.mft
File: ta0JZ8oAAt2c5FvEO7cBtBc9eb0.mft (raw, json)
Hash identifier: pL3dPGEB9qrjP7+fgqXhFOcRxuvLGo0idnZXNQf1ZGE=
Subject key identifier: 9C:FD:89:CC:50:F2:B0:5A:28:05:57:31:50:A6:16:28:05:95:7E:C2
Authority key identifier: B5:AD:09:67:CA:00:02:DD:9C:E4:5B:C4:3B:B7:01:B4:17:3D:79:BD
Certificate issuer: /CN=b5ad0967ca0002dd9ce45bc43bb701b4173d79bd
Certificate serial: 019A4C6114D335F2ED859993C69BB625896C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.mft
Manifest number: 0D30
Signing time: Tue 04 Nov 2025 01:00:21 +0000
Manifest this update: Tue 04 Nov 2025 01:00:21 +0000
Manifest next update: Wed 05 Nov 2025 01:00:21 +0000
Files and hashes: 1: ta0JZ8oAAt2c5FvEO7cBtBc9eb0.crl (hash: krquFnK/i08Rfz6juDP2V9k260UVfi6LVvvlcG9TaQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 01:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:61:14:d3:35:f2:ed:85:99:93:c6:9b:b6:25:89:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5ad0967ca0002dd9ce45bc43bb701b4173d79bd
Validity
Not Before: Nov 4 01:00:21 2025 GMT
Not After : Nov 5 01:00:21 2025 GMT
Subject: CN=9cfd89cc50f2b05a2805573150a6162805957ec2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:93:e6:f6:51:fe:2b:ea:bb:50:6d:9e:af:4b:
75:ba:1c:97:ba:a8:9b:e1:02:31:f2:c7:bc:f6:02:
65:19:13:06:36:d3:10:fa:25:95:8f:43:a4:17:b3:
73:b6:3d:d3:55:c3:eb:a2:d4:8f:7f:14:0c:55:ea:
81:89:8a:c6:d1:2d:63:b4:aa:be:3e:31:43:78:5e:
49:43:db:99:7c:a5:09:c8:18:ab:0b:ef:c8:6a:42:
9a:10:44:c3:f7:db:6c:a8:90:37:ff:72:45:67:f6:
ef:86:75:c0:45:ef:d3:b8:a4:50:88:af:36:7b:fe:
99:8e:da:ef:f8:6d:78:af:63:56:64:30:32:c5:1c:
3a:23:52:b2:4b:ac:a2:0c:00:f2:ec:84:58:94:8c:
26:87:40:30:87:94:fe:1f:42:f7:e9:26:d4:f3:b8:
30:4d:d6:f0:dc:91:d5:a1:a7:43:77:ff:82:4a:dd:
0e:ce:93:62:87:41:35:d3:62:f8:43:5e:55:09:ca:
03:43:78:84:64:78:a8:cc:30:a2:29:85:3d:e2:07:
61:73:fa:b5:3b:a4:09:e7:ad:c7:61:a8:3b:1c:14:
43:24:f3:4f:86:72:c9:60:fa:9b:ec:7d:dc:62:02:
c4:c9:55:22:f4:92:53:0a:1e:d3:b2:1f:92:04:bb:
63:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:FD:89:CC:50:F2:B0:5A:28:05:57:31:50:A6:16:28:05:95:7E:C2
X509v3 Authority Key Identifier:
keyid:B5:AD:09:67:CA:00:02:DD:9C:E4:5B:C4:3B:B7:01:B4:17:3D:79:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:8b:da:b8:e2:25:ce:32:59:93:2a:ef:54:87:e6:b1:7f:02:
a0:5e:3e:9f:39:93:59:a2:5d:98:b5:d9:ab:e9:bc:ab:80:82:
2c:1f:02:42:bb:a9:28:c7:03:ce:f9:6c:a6:71:69:bd:38:8c:
53:9d:2a:ee:8a:ab:eb:3d:32:54:fb:13:5d:9a:e5:09:e8:01:
13:6d:4b:59:5b:12:a5:30:c2:ac:f1:1d:17:a9:f8:5b:f4:7b:
7e:18:54:74:20:dc:50:db:be:18:e9:e8:61:fc:0a:b5:a4:e5:
e2:bc:b0:1d:f2:5e:0b:7e:89:89:a1:55:a4:f0:e9:14:31:ee:
1a:1a:62:c3:8a:33:6c:5c:2e:b5:6d:05:42:4d:6e:c3:56:00:
50:d3:d6:ba:cc:1c:5b:19:65:c6:9c:15:00:19:0b:6e:0e:6a:
b7:45:90:64:55:d0:ea:b4:64:fb:82:73:c0:74:d7:9b:73:6c:
9f:5c:2e:e4:3f:75:e0:b3:74:80:8e:2b:1a:95:cd:6c:09:cf:
eb:cc:3d:f4:ab:12:ac:26:8f:3e:99:f3:06:e1:9e:0a:89:e8:
57:d4:40:16:3d:c9:20:d8:c2:c0:48:b8:9c:0e:04:a2:f7:24:
ed:be:bc:d8:8d:f4:6f:47:39:36:1f:93:77:57:1b:48:49:27:
89:4f:17:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:52:40 2025 by rpki-client