Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.mft
File: TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.mft (raw, json)
Hash identifier: SDUyZBRIAKsXF5ppaCyev8SqL14at37HyblzPJjhQ+4=
Subject key identifier: B0:EB:09:C0:C2:F2:1E:41:C7:3A:F4:CB:81:29:69:8F:06:B1:41:D4
Authority key identifier: 4D:0F:2E:E7:76:21:EA:25:C2:81:9D:4E:AC:95:C5:81:87:7E:30:CD
Certificate issuer: /CN=4d0f2ee77621ea25c2819d4eac95c581877e30cd
Certificate serial: 019A4EF5713F1A97B150A3EF14E883B09E7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.mft
Manifest number: 0E69
Signing time: Tue 04 Nov 2025 13:01:39 +0000
Manifest this update: Tue 04 Nov 2025 13:01:39 +0000
Manifest next update: Wed 05 Nov 2025 13:01:39 +0000
Files and hashes: 1: PVatpozxq2iSr5EjDz4p95PO1D8.roa (hash: jnj6J4YwXSNpdZA8cx57mMPaW12cBZG8T42Zb5JhBQ4=)
2: TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.crl (hash: J3I42lb/xzW+MKTbcmm87GKEy6Y51thOVAth9+ECoko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.mft
rsync://rpki.ripe.net/repository/DEFAULT/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:71:3f:1a:97:b1:50:a3:ef:14:e8:83:b0:9e:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d0f2ee77621ea25c2819d4eac95c581877e30cd
Validity
Not Before: Nov 4 13:01:39 2025 GMT
Not After : Nov 5 13:01:39 2025 GMT
Subject: CN=b0eb09c0c2f21e41c73af4cb8129698f06b141d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:08:14:c1:34:c4:3a:a0:68:0d:46:bc:ef:de:
28:8a:e5:c6:46:11:7e:f7:5d:2f:f4:27:a0:c9:ed:
f5:d4:fa:59:13:bc:b7:54:ec:2d:ec:6a:e2:01:1e:
c4:4f:05:55:47:9c:56:81:09:c1:0a:be:86:8b:eb:
8f:ce:d4:ca:ba:86:38:45:a3:b2:1e:46:34:e9:e6:
72:03:13:4f:17:6b:5b:9c:4a:1e:ad:af:9f:a0:7b:
62:d9:92:5a:99:1e:d0:9f:0a:ae:94:b9:e8:1d:36:
40:ae:fb:bc:17:40:9e:d2:65:60:4e:9b:00:da:4b:
f7:05:6c:a5:ec:ce:dd:55:65:a5:18:9c:88:f0:26:
72:42:c5:76:ad:c3:cf:32:91:fd:43:8d:d8:e8:a6:
56:68:11:2c:ed:82:8b:fc:b2:5a:ec:70:13:fe:fa:
ef:39:a6:78:2f:4f:d2:88:2f:49:5b:34:0b:25:ec:
c3:46:48:5b:4e:b4:a3:80:82:00:c7:e5:67:87:bb:
c8:82:16:55:07:60:13:9c:4e:6e:10:f3:50:ab:2c:
bc:b4:b5:da:8b:6c:a1:65:0d:f9:60:8a:28:37:dd:
68:4f:4c:11:08:ec:75:ba:f8:69:c1:63:84:d3:bd:
9a:20:72:88:e5:66:ec:2e:d2:d3:b2:ff:5b:31:f8:
a9:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:EB:09:C0:C2:F2:1E:41:C7:3A:F4:CB:81:29:69:8F:06:B1:41:D4
X509v3 Authority Key Identifier:
keyid:4D:0F:2E:E7:76:21:EA:25:C2:81:9D:4E:AC:95:C5:81:87:7E:30:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:04:9d:f5:8b:7c:f8:d1:fd:19:6c:85:48:18:0b:45:07:a3:
18:4c:44:f5:13:55:6d:6b:07:12:34:7c:79:58:9b:b6:aa:e6:
2c:e9:88:db:b3:ae:34:95:5e:e7:78:ba:75:e3:f0:9a:6d:25:
11:b6:20:07:24:0c:b6:bf:c5:5a:e6:35:45:87:90:a0:f3:a6:
5c:a3:d9:12:2b:95:20:e6:2e:d3:89:12:d3:8a:e4:66:ac:33:
a5:a7:20:71:60:dc:e6:ba:bd:cf:f7:1b:79:b0:0e:53:2f:42:
b7:0d:78:61:25:a6:51:0b:34:8e:57:45:15:db:5d:1b:a8:4d:
13:3b:15:91:e9:fd:3a:b4:a6:b4:b3:84:a2:0a:37:c7:46:07:
7e:89:f0:25:62:83:77:a4:ae:b7:ed:25:c6:ee:42:df:51:52:
6b:ca:f4:a0:16:1d:b2:9b:31:e0:36:f7:4b:9d:37:c6:71:ad:
4a:9b:43:9a:a4:d7:f9:01:53:ce:96:85:b9:36:46:3a:cd:ab:
60:83:b1:54:7c:28:63:ba:53:d3:cf:4b:4f:32:74:24:1b:dc:
83:e2:85:a6:d2:96:e9:74:93:c3:3a:3e:2e:d4:f8:bb:e3:5f:
8d:6b:a0:d4:6e:0d:9b:36:2f:60:89:57:75:2a:20:93:0b:4c:
c7:22:ed:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:01:00 2025 by rpki-client