Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.mft
File: tDycG90eFSiKuTDUAFGzZTywnno.mft (raw, json)
Hash identifier: ZiqDZCQ/rsCizPeHIFf6gsiQtVWpK7EU22RgIWzPQag=
Subject key identifier: 09:92:25:6D:A0:06:1E:B2:36:6B:09:DA:71:3A:0E:19:C7:20:1D:08
Authority key identifier: B4:3C:9C:1B:DD:1E:15:28:8A:B9:30:D4:00:51:B3:65:3C:B0:9E:7A
Certificate issuer: /CN=b43c9c1bdd1e15288ab930d40051b3653cb09e7a
Certificate serial: 01987DF7CC4B371AFED63C493BFE81F4030B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDycG90eFSiKuTDUAFGzZTywnno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.mft
Manifest number: 161C
Signing time: Wed 06 Aug 2025 06:00:48 +0000
Manifest this update: Wed 06 Aug 2025 06:00:48 +0000
Manifest next update: Thu 07 Aug 2025 06:00:48 +0000
Files and hashes: 1: tDycG90eFSiKuTDUAFGzZTywnno.crl (hash: dOBGL3ZahxdM4RpYj5vTKccBsIvy0prA42lBYBGiRYI=)
2: yUpCnFh46Tqx7sCXg4QHc_cNe3o.roa (hash: cp+PmQthE9hblxpquCO9Uz9at9P5Zu4kvGvMw6tU+Ug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDycG90eFSiKuTDUAFGzZTywnno.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 06:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f7:cc:4b:37:1a:fe:d6:3c:49:3b:fe:81:f4:03:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43c9c1bdd1e15288ab930d40051b3653cb09e7a
Validity
Not Before: Aug 6 06:00:48 2025 GMT
Not After : Aug 7 06:00:48 2025 GMT
Subject: CN=0992256da0061eb2366b09da713a0e19c7201d08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:8d:24:71:ec:9c:64:b3:ad:8b:20:bd:eb:e7:
da:68:5f:4f:2f:50:1b:93:3e:dd:bd:30:65:53:a2:
eb:ff:73:34:59:c7:e4:f0:72:f3:11:8a:32:26:fe:
58:70:0e:bf:dd:0c:e1:00:d2:e3:91:3a:75:58:d8:
7f:d0:ae:95:a0:f9:9d:39:da:7c:50:b7:d3:3f:3a:
2f:73:b0:db:c9:82:cd:fc:8f:56:e6:fe:c1:77:80:
f7:01:3a:0d:11:e9:21:97:52:aa:c7:e5:86:cb:56:
6e:30:07:51:f0:d1:7a:b8:ba:52:f6:6e:90:aa:96:
1c:bc:2f:54:89:4a:ca:74:76:98:b1:44:9f:c2:d8:
e8:2d:89:f6:b1:69:b0:41:58:1f:05:2a:b1:43:17:
6d:21:15:7a:25:52:87:37:29:9c:af:7a:b3:76:a1:
0a:ae:20:0d:62:04:6b:db:07:34:50:0e:33:6c:f9:
8a:a9:74:30:6d:3e:ea:ec:19:9a:10:cb:c2:5a:6c:
c5:7e:82:4d:4d:18:02:be:bb:63:62:a1:0e:01:d4:
4f:aa:01:5d:47:15:38:53:9c:19:19:1a:9a:b7:b4:
e0:0a:3d:02:81:e5:d0:8a:9d:fd:e4:35:5f:3c:3c:
1f:90:09:b0:2e:de:cc:79:ef:af:bb:fa:52:db:f2:
33:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:92:25:6D:A0:06:1E:B2:36:6B:09:DA:71:3A:0E:19:C7:20:1D:08
X509v3 Authority Key Identifier:
keyid:B4:3C:9C:1B:DD:1E:15:28:8A:B9:30:D4:00:51:B3:65:3C:B0:9E:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDycG90eFSiKuTDUAFGzZTywnno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:0d:e5:cd:81:2f:d0:15:6a:40:2b:83:67:7e:36:14:8e:cd:
13:3d:fd:2b:a3:72:39:6d:cc:ef:97:22:8b:01:fe:47:8c:05:
90:3d:22:3b:fa:d9:df:d6:7a:4e:e4:96:38:cc:ab:c6:5f:19:
4b:7d:b6:a5:5b:38:88:5a:18:25:3f:5d:76:f9:ec:b9:16:45:
f6:aa:f4:46:94:cf:41:6b:a8:7e:c3:3d:99:ea:d1:21:7e:53:
9b:12:b3:72:8a:44:c2:fb:35:b7:f9:f6:0a:af:42:2f:11:47:
00:27:2c:91:7c:d9:e8:b8:56:0d:74:62:83:0c:68:eb:c8:f0:
b5:5c:03:6d:85:70:5f:49:72:f3:b3:43:88:8e:fa:10:70:34:
57:63:84:0b:f8:a4:02:24:7a:f7:f0:24:4e:7b:57:59:83:e2:
d8:ec:6e:71:16:59:40:e7:4a:ea:03:16:f1:16:9c:48:08:d0:
8a:c9:4f:d2:e0:c9:fd:81:69:d8:1c:5f:e5:13:c4:08:19:a7:
29:3e:ff:7f:41:58:2e:3b:5a:cc:a8:b8:54:1d:10:91:b2:f7:
00:f2:cd:c6:62:e8:99:54:c5:1e:cd:e0:a8:71:f5:63:c4:4d:
a1:8c:cd:23:32:4a:4c:c9:b0:1f:62:f3:4e:52:ff:d9:64:92:
04:75:94:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 14:19:22 2025 by rpki-client