Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft
File: TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft (raw, json)
Hash identifier: wGKwHKR1BSQTSGP6r9XahSQruoyYv9otts82vgwRR1I=
Subject key identifier: AB:82:F5:69:BE:B3:39:A5:1C:86:21:AB:E6:65:0F:64:5D:36:F1:F6
Authority key identifier: 4C:3C:66:5E:51:CC:4C:B5:CA:F0:5B:82:94:84:3E:27:33:A1:3D:EE
Certificate issuer: /CN=4c3c665e51cc4cb5caf05b8294843e2733a13dee
Certificate serial: 01989290E084889A6C0FEDEF8D9A2CA42B4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDxmXlHMTLXK8FuClIQ-JzOhPe4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft
Manifest number: 67
Signing time: Sun 10 Aug 2025 06:00:24 +0000
Manifest this update: Sun 10 Aug 2025 06:00:24 +0000
Manifest next update: Mon 11 Aug 2025 06:00:24 +0000
Files and hashes: 1: TDxmXlHMTLXK8FuClIQ-JzOhPe4.crl (hash: EmATdG+0y2TaFNgiVGjRUtxDpMW+U94nc7Y+28NB+XU=)
2: uIJozNFoP5XfidjBCM0P31eTvUk.roa (hash: 82dJmEh9Xee5pf4NlP3/OL/7fNmKhnVpCwcSGBoqspI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TDxmXlHMTLXK8FuClIQ-JzOhPe4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 06:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:92:90:e0:84:88:9a:6c:0f:ed:ef:8d:9a:2c:a4:2b:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c3c665e51cc4cb5caf05b8294843e2733a13dee
Validity
Not Before: Aug 10 06:00:24 2025 GMT
Not After : Aug 11 06:00:24 2025 GMT
Subject: CN=ab82f569beb339a51c8621abe6650f645d36f1f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0b:75:b9:18:d2:6a:c5:89:9f:be:da:c1:2e:
20:75:f3:15:2c:45:30:d0:05:4b:d7:2b:20:40:ec:
54:cf:2c:f4:25:09:d8:57:6a:ec:39:93:fa:65:d3:
d9:4d:33:d7:94:cd:73:40:da:ac:38:83:75:76:6f:
c6:c5:e9:ed:b9:43:68:c4:19:11:9d:9b:36:8c:34:
ad:d0:dd:45:c5:b1:5f:93:85:ea:43:22:d1:76:4e:
7f:d1:44:66:66:d9:3d:1b:ba:78:be:0c:70:1a:36:
04:1d:11:12:e6:0a:da:e5:9e:34:6e:d9:ce:f8:30:
89:e1:b8:bb:75:84:b4:ef:f3:87:be:ea:65:d2:e8:
81:e2:f2:fd:c0:02:9a:bf:e0:40:02:b3:c0:e0:8f:
eb:5a:81:c4:bc:8e:55:76:e3:bc:bc:2c:bb:5f:62:
38:99:d5:ee:9f:36:01:d7:a8:5e:47:02:4e:7a:b0:
75:17:20:30:ac:67:85:bd:44:d7:ea:ab:2a:a8:ff:
c4:0d:b5:c8:37:e5:3c:65:7c:14:73:bf:34:9f:c8:
45:96:9d:3f:38:01:a9:7b:d9:70:9e:ac:dd:bb:46:
18:16:6c:f0:5f:15:c9:c9:96:8a:c6:71:1d:95:1e:
9e:ce:da:20:f6:ce:5e:de:32:c9:b2:61:2d:28:ac:
60:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:82:F5:69:BE:B3:39:A5:1C:86:21:AB:E6:65:0F:64:5D:36:F1:F6
X509v3 Authority Key Identifier:
keyid:4C:3C:66:5E:51:CC:4C:B5:CA:F0:5B:82:94:84:3E:27:33:A1:3D:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDxmXlHMTLXK8FuClIQ-JzOhPe4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:11:00:df:67:c5:ca:75:69:12:85:1e:50:ca:d8:a8:83:db:
f9:96:18:b0:f9:e1:ce:13:28:32:98:f2:77:9d:27:4e:9e:9e:
75:6b:5e:96:57:ff:07:de:0f:b8:e9:3c:0a:fd:81:82:fb:fb:
0a:59:13:51:23:35:f3:98:fa:c6:46:7e:b4:d9:10:2a:c0:fa:
87:44:9e:2c:08:d5:91:93:0c:ce:1a:bb:20:92:71:7e:70:d4:
97:ea:82:c2:8d:b1:3c:c8:09:48:43:0b:3b:ee:d9:a2:18:32:
06:ba:cd:6d:0f:4c:0a:7a:5f:85:f8:bb:13:3f:86:e0:27:b0:
5c:c4:32:78:31:d5:dd:bd:a3:91:da:c9:f2:b6:4a:59:a1:09:
0a:0d:16:e0:0f:f2:fb:10:3d:41:d4:d6:f1:11:95:c0:1b:85:
df:eb:47:46:ef:a3:4d:9d:58:88:46:38:9a:57:12:37:2e:70:
85:1a:7d:a9:4b:5e:b3:7f:75:ad:fa:93:bc:44:75:db:dd:e6:
bf:59:ee:a1:85:49:90:6c:00:94:b3:b7:b4:c1:62:fe:69:67:
44:18:8b:1b:96:53:5c:b8:62:59:bc:5b:0a:30:6d:dd:d0:50:
33:77:3d:a4:32:05:e0:c5:4e:d1:97:55:b4:38:7c:8a:8a:7d:
c8:5c:8a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 15:56:48 2025 by rpki-client