Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
File: tSU8JVLUQD9DuDwl52IjjfEtroE.mft (raw, json)
Hash identifier: MYcqGR3MRYcqb+J0fNiEQAJyipYLngYTjNV04Zw3pqo=
Subject key identifier: 41:E7:55:D8:D6:B8:3D:18:C3:BD:34:F0:2F:5F:85:47:27:03:D3:A1
Authority key identifier: B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
Certificate issuer: /CN=b5253c2552d4403f43b83c25e762238df12dae81
Certificate serial: 019A5187902C6D91CE773DF7A56948355E79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
Manifest number: 07F2
Signing time: Wed 05 Nov 2025 01:00:29 +0000
Manifest this update: Wed 05 Nov 2025 01:00:29 +0000
Manifest next update: Thu 06 Nov 2025 01:00:29 +0000
Files and hashes: 1: 6BgZvuvQdTTnHkpFXfURizE8XGQ.roa (hash: 78Xx7tAnFjhWDtWYiSHC9JJs2O6w1we6/J46orAWVbc=)
2: tSU8JVLUQD9DuDwl52IjjfEtroE.crl (hash: I0c/OQpR+ZHAgeJFyoL6N3yc7cUaUbyW0Ma1aMx2zDE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:90:2c:6d:91:ce:77:3d:f7:a5:69:48:35:5e:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5253c2552d4403f43b83c25e762238df12dae81
Validity
Not Before: Nov 5 01:00:29 2025 GMT
Not After : Nov 6 01:00:29 2025 GMT
Subject: CN=41e755d8d6b83d18c3bd34f02f5f85472703d3a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6e:b6:96:69:8b:f8:a5:da:f9:2d:7e:89:96:
99:6f:67:5a:e8:04:cf:a5:16:71:3e:98:77:a2:0b:
2c:46:7a:da:17:62:dd:84:42:1c:c8:04:1a:ce:86:
24:1f:bf:ba:b4:d2:d4:71:67:35:55:79:5e:a5:d8:
ea:12:19:7f:10:a5:a5:e2:46:8d:7b:cc:08:cc:eb:
37:8a:53:9b:ca:d4:b8:c5:b7:86:0a:f9:6f:da:6a:
05:34:98:46:57:6a:0c:7e:be:d6:80:25:e8:92:6f:
b7:95:6f:b5:c0:af:55:b5:bf:1f:a1:16:6d:17:6c:
d8:7c:93:18:24:91:91:a7:96:38:6d:77:c0:6f:77:
0d:ed:29:58:95:1b:0e:6c:f8:1a:6e:15:c4:21:95:
ff:69:19:4d:59:3e:ac:30:c0:3d:93:8f:60:7e:5e:
d9:74:ae:ad:43:14:65:8b:a1:cd:09:ca:fb:07:88:
64:36:6d:83:5e:8a:39:74:2c:62:5f:ca:63:b1:62:
90:aa:fc:85:5b:c7:84:83:fd:79:07:ce:6e:0f:59:
b6:9f:be:60:b1:ad:f9:31:24:0a:6f:67:13:dd:6b:
46:84:e6:a8:8d:5f:52:f9:1e:bd:4c:7d:38:b0:33:
8e:73:66:cd:b3:3c:20:de:7c:30:bc:a5:2c:80:77:
c0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E7:55:D8:D6:B8:3D:18:C3:BD:34:F0:2F:5F:85:47:27:03:D3:A1
X509v3 Authority Key Identifier:
keyid:B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:24:5f:2d:78:ee:8e:4b:a8:f3:a9:ef:e7:04:17:86:3d:bb:
4e:03:27:a6:92:c4:ed:12:a4:8f:2d:5d:c5:93:9e:e3:8e:e3:
d3:d8:37:9e:6b:59:98:a7:dc:31:a2:07:de:89:4c:f4:a5:a4:
bd:65:b3:a9:15:01:49:78:b7:1c:17:ab:5b:6f:c7:31:53:95:
d5:4c:65:83:82:ff:72:a1:5c:14:0a:17:3c:c4:56:42:a7:bd:
af:c1:e8:e8:bf:67:f0:36:00:d7:4b:2c:61:a1:49:04:c3:98:
7e:47:74:95:45:50:f0:09:d7:4c:79:a2:60:cf:67:75:37:1d:
ad:1b:ce:da:8e:81:fa:65:ba:e1:de:65:e5:c0:7f:aa:be:24:
c5:86:d3:cc:81:93:b2:82:05:34:1c:5a:b1:3f:3f:f5:7c:22:
b9:98:69:5f:7c:ef:1a:01:06:b1:58:1c:6e:f6:66:00:55:ef:
49:98:d9:c2:be:90:33:57:56:24:d3:b1:62:07:40:95:bd:47:
c5:16:e4:99:7e:dd:90:6c:f1:c5:43:a7:bf:b8:4b:fe:d3:43:
ca:1f:db:c0:89:3d:8a:11:1c:90:a9:bf:81:0b:8d:2b:42:c4:
82:89:d4:8e:89:be:f2:79:d3:ef:a5:22:96:f2:61:b6:81:81:
ff:79:38:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:52:42 2025 by rpki-client