Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json)
Hash identifier: Is+HKHWmp8dIHp0Yyw7g3KZnHaEfpaf6PlIZLikaarw=
Subject key identifier: 8E:67:34:E4:B5:62:19:0F:89:7C:F1:16:0C:04:44:48:A7:A3:14:2B
Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Certificate serial: 019874BD7ACFF180E797D515A36A42C3B19D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
Manifest number: 0CF9
Signing time: Mon 04 Aug 2025 11:00:31 +0000
Manifest this update: Mon 04 Aug 2025 11:00:31 +0000
Manifest next update: Tue 05 Aug 2025 11:00:31 +0000
Files and hashes: 1: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: xqMIMz4vXpyVZSGNtEM6J3vGiDhQ+N9r/xesiL6Jb7A=)
2: ehQIMYmYwJQIMwezxzrnCxQWXrQ.roa (hash: K5j8O7wSUuuth3uj2946HM7L4q3WosF43ObE+K/eL8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:bd:7a:cf:f1:80:e7:97:d5:15:a3:6a:42:c3:b1:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Validity
Not Before: Aug 4 11:00:31 2025 GMT
Not After : Aug 5 11:00:31 2025 GMT
Subject: CN=8e6734e4b562190f897cf1160c044448a7a3142b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:92:c5:e4:91:d6:51:8f:e4:68:a6:6f:11:bd:
21:28:18:be:30:fc:5f:36:c6:f8:fa:81:9c:21:62:
c1:74:d4:34:e6:07:3d:f8:21:fc:19:40:80:28:c5:
94:54:53:c7:98:4a:49:89:01:93:21:50:50:f1:5b:
01:c1:0c:36:83:83:20:f0:2d:10:f9:9d:77:bb:69:
b4:4b:8c:8f:0f:de:20:73:ff:39:cb:18:80:fe:52:
3f:c2:0a:e8:35:48:9e:b4:f2:16:5d:f1:6d:55:aa:
a0:cd:fc:ef:d3:99:86:11:64:37:38:a6:ee:7c:17:
a3:79:62:1d:11:d4:a4:bd:64:cc:ec:74:91:cf:1c:
2b:a9:ba:60:b1:f7:74:17:4a:b0:f1:2f:1e:29:fa:
29:dc:42:db:41:63:e3:54:9d:26:24:d1:54:58:1e:
89:f7:8d:10:31:4c:6f:dc:7b:56:0d:ff:37:65:7d:
dd:57:57:f2:16:4d:80:17:59:d9:23:7d:dc:41:90:
59:38:b6:f0:e3:c0:18:1e:90:10:90:8d:08:34:21:
45:ba:d5:11:c7:08:60:7a:56:c6:d3:f9:94:af:76:
2a:1d:1e:04:c2:06:a8:cc:ef:bf:f5:77:2a:9c:1a:
08:71:37:78:ae:d5:cd:8e:83:8c:9f:12:49:f2:69:
51:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:67:34:E4:B5:62:19:0F:89:7C:F1:16:0C:04:44:48:A7:A3:14:2B
X509v3 Authority Key Identifier:
keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:84:e1:ec:2e:7b:1d:f6:77:9c:95:19:5a:f0:c2:ba:1a:4b:
70:80:f7:c5:8d:69:8c:2a:32:64:c4:96:5f:b7:9c:49:cd:57:
66:c9:92:06:40:2f:f6:45:ed:80:60:bd:5f:4a:5c:d5:fd:10:
57:e1:a6:96:43:50:fc:10:4a:3c:54:40:3c:e7:52:74:42:cb:
a2:3a:8c:51:c2:f4:02:96:c0:77:c7:a0:3a:95:9c:95:e7:ae:
71:6f:46:34:37:ce:e0:86:df:0c:e8:96:78:ce:94:11:37:6d:
88:2b:4e:84:3f:6d:2c:cd:67:22:36:ba:50:4d:f6:41:e7:54:
76:df:b8:8a:3c:7a:95:e0:89:37:fe:ae:56:35:29:51:77:dc:
31:36:3a:59:55:5f:c5:a7:1a:c0:85:a3:5b:14:b5:2c:3b:d8:
ed:72:fd:70:c2:f5:f9:75:25:9f:53:fb:77:47:63:d2:b4:6c:
b4:b8:75:80:d8:b7:7f:52:15:85:6f:52:79:da:95:25:98:60:
d5:6d:fd:90:70:b7:3b:e1:6d:61:70:4a:99:0b:40:3b:e9:92:
e2:fd:1c:1e:89:72:92:ff:43:91:94:f9:d3:f9:2a:de:ec:7a:
39:ae:ae:93:3c:57:05:29:88:64:0a:a0:e8:9f:e3:8f:c6:58:
9e:69:0a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:14:04 2025 by rpki-client