Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
File: tSU8JVLUQD9DuDwl52IjjfEtroE.mft (raw, json)
Hash identifier: m3KjuC2ldbkUvIGClsvQtkWYOv4caeUb39eFKUU3Amk=
Subject key identifier: D9:73:3E:6E:0B:F3:04:C6:97:3F:96:B1:AB:EF:7C:24:03:B1:76:27
Authority key identifier: B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
Certificate issuer: /CN=b5253c2552d4403f43b83c25e762238df12dae81
Certificate serial: 01987486FDBA305127D7025EFE0FEF5E4CD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
Manifest number: 06FB
Signing time: Mon 04 Aug 2025 10:01:00 +0000
Manifest this update: Mon 04 Aug 2025 10:01:00 +0000
Manifest next update: Tue 05 Aug 2025 10:01:00 +0000
Files and hashes: 1: 6BgZvuvQdTTnHkpFXfURizE8XGQ.roa (hash: 78Xx7tAnFjhWDtWYiSHC9JJs2O6w1we6/J46orAWVbc=)
2: tSU8JVLUQD9DuDwl52IjjfEtroE.crl (hash: g2tIRDWDnUDOcXZl6sSzs9Jvga1gYC8KhW7/yJ6Lb1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 10:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:86:fd:ba:30:51:27:d7:02:5e:fe:0f:ef:5e:4c:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5253c2552d4403f43b83c25e762238df12dae81
Validity
Not Before: Aug 4 10:01:00 2025 GMT
Not After : Aug 5 10:01:00 2025 GMT
Subject: CN=d9733e6e0bf304c6973f96b1abef7c2403b17627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8a:ac:f2:f7:42:76:01:c1:32:4c:b6:6c:e1:
f5:1e:5a:e6:24:cc:40:fd:d5:0f:39:5f:b5:cc:aa:
1a:e2:c4:0d:e6:3b:32:fa:87:1e:be:3f:8f:e0:0d:
a2:76:df:14:d8:27:0d:e6:3d:67:1b:68:9a:eb:a2:
c3:af:05:ea:7d:fe:da:10:d5:cb:92:b6:76:8a:97:
b3:b1:bc:a6:e6:87:80:d5:75:79:98:9b:7c:c7:a5:
77:45:cd:8d:d9:4a:c1:e2:71:80:1b:4a:cb:80:b8:
ca:cb:32:71:77:65:38:f6:94:65:72:b7:7e:b1:7d:
2f:97:c4:43:5a:7d:7a:1b:f6:25:69:84:32:ca:ff:
0d:80:83:49:34:42:ef:79:1f:94:ad:17:b0:dd:54:
92:a2:fb:25:9d:fb:5b:9a:46:b9:e1:34:85:a3:de:
ac:9c:17:2c:b6:48:f6:8b:6e:22:6b:fc:b8:c3:d3:
b1:24:7f:94:ff:6e:b3:8c:de:fc:36:b9:41:ba:8d:
15:fc:c3:d9:0d:95:9c:44:ca:ec:95:b1:77:8c:a2:
04:36:40:79:7d:76:36:8c:70:92:e2:68:93:0d:fd:
8b:af:2a:d9:1b:8e:03:b5:90:38:f0:10:16:de:d6:
81:7f:77:a9:b4:80:46:1f:87:30:ea:fd:7c:21:3a:
1e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:73:3E:6E:0B:F3:04:C6:97:3F:96:B1:AB:EF:7C:24:03:B1:76:27
X509v3 Authority Key Identifier:
keyid:B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:d7:0d:a3:97:58:4b:c1:c3:02:fb:c0:b7:5c:7a:fb:8c:dd:
5b:2e:43:a8:b6:67:cc:05:ef:05:90:a8:15:5a:ce:40:f1:d8:
30:87:32:4e:5f:89:6d:76:44:2f:c9:20:d0:65:0d:bd:9d:66:
da:74:65:95:ad:d6:1a:65:a4:58:05:10:20:e7:ea:ca:6a:59:
29:e3:59:2f:36:81:f8:95:1f:97:3d:29:ec:01:b3:d9:f9:23:
d1:21:a3:f3:32:c8:81:4f:43:df:33:f9:93:bb:95:64:58:7e:
fe:97:09:80:42:87:b4:f7:f0:c8:f3:03:cc:fd:cb:ac:cb:20:
1e:45:e2:4c:0c:b9:08:f9:6d:01:ed:08:cb:7d:a6:91:6f:d1:
92:25:42:9f:c1:6f:1b:c8:7a:a1:2c:5b:7a:7c:27:bd:54:5a:
91:95:a5:8c:85:a3:88:7e:d0:4f:cc:62:2c:7e:e5:a8:35:f9:
4c:28:d1:2e:d5:a4:f0:e3:e6:26:a1:56:a5:83:da:e6:05:54:
14:ab:0c:d0:4c:23:3a:38:48:82:e2:45:7b:01:05:ab:9a:29:
f1:91:94:84:01:a8:00:3a:a4:ff:7f:41:5a:00:93:aa:12:54:
e2:78:69:80:17:47:ec:67:fa:5c:0b:2c:ca:7f:b5:66:c6:28:
8e:6a:3a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:34:28 2025 by rpki-client