Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
File: tUFVgYH3hjEZv0oVVMddqx9sUpI.mft (raw, json)
Hash identifier: nXFC53D9+aKPNe4oOB7RNxS09GS5QQBtXTQ/iz2RUMw=
Subject key identifier: 5D:DA:7A:CC:29:32:CD:3E:0F:37:DD:A2:94:BA:5E:C6:9B:24:9E:89
Authority key identifier: B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
Certificate issuer: /CN=b541558181f7863119bf4a1554c75dab1f6c5292
Certificate serial: 019A5150D79F4C9CA5EDFC573CF6351A2C05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
Manifest number: 052C
Signing time: Wed 05 Nov 2025 00:00:43 +0000
Manifest this update: Wed 05 Nov 2025 00:00:43 +0000
Manifest next update: Thu 06 Nov 2025 00:00:43 +0000
Files and hashes: 1: 1-HTDTTyHqsL8qWvl7tdyMvlROZo.roa (hash: rDjH3KjSESto7R5VRIkalhKhlHHWAhNK5nCorKVRQGY=)
2: 74rFfsVLB83xqrl230f69RyQMZo.roa (hash: uIHKdF0Md6VmRaPIQqLHKtiwEPhOEBVDe4Gopq3AYXw=)
3: UVLB6EC_S4cdufZlLeGb47V1ReM.roa (hash: +1SPWwuKyVjoCsUjj6tw92B1zG4mEC7h1VegEv3YxLE=)
4: kQsGPemVQTjeA88dAZ8pv0jsM5Y.roa (hash: +/+dI6sKhxOqMNJuHemXER1d+kDUpiEiqbk+G5uJ4KU=)
5: tUFVgYH3hjEZv0oVVMddqx9sUpI.crl (hash: rdYQ536x/O+gNZHWBzT0tiNVrlyMaydIPYCluFWjNmk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:50:d7:9f:4c:9c:a5:ed:fc:57:3c:f6:35:1a:2c:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b541558181f7863119bf4a1554c75dab1f6c5292
Validity
Not Before: Nov 5 00:00:43 2025 GMT
Not After : Nov 6 00:00:43 2025 GMT
Subject: CN=5dda7acc2932cd3e0f37dda294ba5ec69b249e89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:85:9b:f0:bc:c0:28:03:64:a3:3b:bc:39:41:
e3:b5:fd:44:4b:e3:9f:5e:9a:10:82:33:13:de:bb:
40:88:61:4c:fc:3a:bb:4d:f8:dc:07:83:b4:99:5a:
f9:78:fd:33:7a:15:f8:d5:f1:c6:d2:a3:f7:37:98:
53:3b:02:a1:02:65:8c:75:5a:a4:e5:a9:27:3b:a0:
be:10:0c:78:69:91:00:47:27:e3:4b:fa:a1:aa:41:
79:d3:01:8f:d8:67:bd:f6:f6:92:4e:7a:06:0d:dc:
2d:94:40:36:7d:bd:c1:94:87:9a:cb:50:d1:37:a2:
c5:04:84:d5:1e:4d:b5:3e:67:4d:cc:76:9e:f2:65:
42:83:66:8b:a5:60:f3:e1:ab:54:56:d8:c2:49:32:
81:b1:f9:c9:b8:8e:e3:41:1f:38:bd:68:40:a6:3f:
59:81:81:1b:11:54:23:94:64:4e:0d:fe:a8:66:5f:
44:e2:b7:c1:3a:6e:84:13:e7:58:7d:16:9b:e8:b4:
96:3f:f2:2c:ef:92:5b:46:1a:f7:2b:69:8a:ce:fe:
9f:c7:a2:8a:4f:df:34:fe:2b:3f:c2:ed:a1:de:79:
53:9d:79:f0:1e:11:c9:8e:65:0b:85:74:33:3e:35:
f2:0f:32:f6:e7:4f:71:59:ff:49:c4:8c:71:58:46:
d5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:DA:7A:CC:29:32:CD:3E:0F:37:DD:A2:94:BA:5E:C6:9B:24:9E:89
X509v3 Authority Key Identifier:
keyid:B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:ef:e7:54:71:5d:93:42:7e:15:ac:f4:9b:39:c5:68:68:4a:
d6:41:21:86:8c:d3:4d:d1:f9:54:34:f3:f7:e5:40:e4:ec:01:
e9:1d:96:7c:88:48:43:da:9e:d7:9e:34:3b:a6:74:54:a1:88:
cf:94:6d:9e:d6:bd:e0:be:05:dd:be:a6:39:fc:f3:53:77:bd:
03:5a:22:33:e1:c3:a1:a0:58:43:75:6c:ac:dc:d0:69:27:0d:
4c:f2:3c:40:96:77:37:59:2c:84:7e:0f:9a:ce:95:f2:ef:7e:
03:27:97:82:64:06:b2:b2:41:df:79:49:25:7d:53:66:a5:5c:
ee:ac:bf:81:7d:2c:df:98:8f:51:a6:02:97:22:fc:e1:e7:90:
86:1e:eb:9a:49:a1:47:b3:5e:38:17:3b:b6:b9:ce:d1:5f:0f:
c9:9c:d9:ab:3a:96:7e:ef:41:e7:9a:24:ec:fe:ce:76:d1:a9:
52:cf:3a:8f:23:75:9e:7f:b1:c2:24:fc:61:ef:df:4e:57:5c:
5d:0a:1f:af:3e:be:60:14:96:a5:53:c8:31:af:bb:74:e6:75:
a7:a2:18:ac:9a:bc:e7:d2:cd:56:7c:6b:0c:ee:0a:9d:2f:33:
8e:ca:26:16:88:38:b1:1e:6f:5a:f1:90:a4:90:75:d0:2f:d2:
45:ab:34:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 02:03:54 2025 by rpki-client