Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.mft
File: tOiC9xca9tzczJzXn5jexnV_4Yk.mft (raw, json)
Hash identifier: acDnKykRbd0qnfYixzbWDc1RcncZpPAW03BFK5fXMv4=
Subject key identifier: 7A:84:5D:58:C2:89:E9:FE:68:A0:A0:9E:09:46:89:96:6E:EA:D8:B9
Authority key identifier: B4:E8:82:F7:17:1A:F6:DC:DC:CC:9C:D7:9F:98:DE:C6:75:7F:E1:89
Certificate issuer: /CN=b4e882f7171af6dcdccc9cd79f98dec6757fe189
Certificate serial: 0198A0F192FE414F1EB09D304D3C1A911841
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOiC9xca9tzczJzXn5jexnV_4Yk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.mft
Manifest number: 162C
Signing time: Wed 13 Aug 2025 01:00:42 +0000
Manifest this update: Wed 13 Aug 2025 01:00:42 +0000
Manifest next update: Thu 14 Aug 2025 01:00:42 +0000
Files and hashes: 1: WmxX7pBfpD5c2m2kHOUO4M_bBgA.roa (hash: q0DpW8XtR4IxHRwLJz0IGFkpb8cJ4HYo8d4HsEmNl8o=)
2: tOiC9xca9tzczJzXn5jexnV_4Yk.crl (hash: AjqV2G81uXmllHbubWY3llZ8zvYrGE6pGCmWUru8NoM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tOiC9xca9tzczJzXn5jexnV_4Yk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:f1:92:fe:41:4f:1e:b0:9d:30:4d:3c:1a:91:18:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e882f7171af6dcdccc9cd79f98dec6757fe189
Validity
Not Before: Aug 13 01:00:42 2025 GMT
Not After : Aug 14 01:00:42 2025 GMT
Subject: CN=7a845d58c289e9fe68a0a09e094689966eead8b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c2:03:84:80:63:66:5b:f5:c6:50:7e:94:a4:
27:54:eb:5b:80:2b:4e:bf:66:aa:98:db:50:f9:07:
e8:87:28:2b:2c:47:e2:1b:60:a9:16:3f:dc:b2:cf:
9b:f3:ac:01:e7:59:ac:68:46:30:55:f0:b0:ed:69:
da:5a:4d:71:c4:12:9e:f5:f6:26:67:8a:3d:12:9d:
9d:bb:39:5d:97:e7:36:37:c3:a5:3b:9b:9c:9c:fc:
7f:8f:70:49:cb:25:ae:d0:82:ea:6a:62:38:f3:39:
7b:64:09:71:60:48:a9:2d:ea:55:66:43:b8:94:c0:
df:ad:7e:a3:80:1b:1a:68:eb:63:b5:f6:71:f5:ec:
45:15:34:10:d4:48:2e:35:b7:94:bc:27:8a:53:e1:
06:77:74:9d:f6:bc:bb:df:2c:5b:6d:d8:f9:c6:98:
2e:dc:0c:b5:f9:e9:55:93:28:17:04:59:a5:7c:21:
9d:81:c3:b4:79:a4:a3:00:ac:dd:f1:8d:95:2e:7e:
2e:58:81:58:fa:fd:f6:6e:b0:46:44:d2:b2:c7:eb:
db:e7:bd:e4:e4:d1:51:f1:79:b9:f8:38:8a:ab:85:
61:4f:5b:78:4f:1d:dc:8b:38:90:8f:49:54:f3:20:
08:66:4d:d7:b0:bd:81:b6:7e:59:80:f0:03:f3:6c:
21:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:84:5D:58:C2:89:E9:FE:68:A0:A0:9E:09:46:89:96:6E:EA:D8:B9
X509v3 Authority Key Identifier:
keyid:B4:E8:82:F7:17:1A:F6:DC:DC:CC:9C:D7:9F:98:DE:C6:75:7F:E1:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOiC9xca9tzczJzXn5jexnV_4Yk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:38:ef:ec:df:7b:0e:eb:20:13:9d:ba:30:db:29:ba:28:a2:
7f:07:67:ae:23:78:3a:00:d5:21:78:a5:9a:5a:83:2f:57:5a:
14:85:1c:46:09:76:25:56:b1:c3:f0:47:a9:8a:96:2c:e8:0e:
61:dc:1e:df:b5:d6:6a:e5:fb:00:67:0e:bc:19:20:b3:5b:e5:
46:69:0e:72:30:46:84:dc:5e:21:37:5d:39:fe:d9:71:60:b4:
6f:8b:24:3c:4b:07:f4:29:24:9a:10:ab:0a:2c:2d:ce:90:12:
f4:c7:7f:46:47:5e:03:a1:41:b9:57:0e:c5:0b:d3:e9:da:93:
12:f3:f3:92:8b:ea:b1:34:bd:41:ee:04:31:2c:a1:91:3b:9e:
60:54:f9:c4:ac:be:16:02:05:d5:65:f4:77:e2:55:09:c9:45:
70:41:83:01:4c:d6:75:8a:54:c7:2e:f6:14:71:63:bc:3b:8b:
83:2d:c1:08:56:1a:18:dd:00:59:19:76:14:55:c4:b8:a1:db:
b7:78:36:0c:e9:48:6a:38:d5:26:7d:a1:b0:c8:58:71:68:df:
09:06:11:27:67:d8:f5:92:96:40:63:a4:27:7d:47:f7:42:e7:
46:91:3b:d9:f0:74:e8:19:ee:bb:22:52:a8:e1:22:7b:4b:08:
b4:ef:fe:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 04:24:23 2025 by rpki-client