Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
File: tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft (raw, json)
Hash identifier: WEgvoge8x4ilkzgpzQ3+z2+P7ELrD1MgmlYf1XWlg30=
Subject key identifier: 82:A4:DB:DF:B6:CA:4C:C5:2F:8B:45:0C:F6:24:B4:4C:A4:FA:CE:0C
Authority key identifier: B5:D8:7F:DC:27:2A:E0:58:61:87:86:E7:41:70:75:57:BF:4E:1A:33
Certificate issuer: /CN=b5d87fdc272ae058618786e741707557bf4e1a33
Certificate serial: 019A5074A5FAAF17647C403AF4155B1892EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
Manifest number: 04A9
Signing time: Tue 04 Nov 2025 20:00:13 +0000
Manifest this update: Tue 04 Nov 2025 20:00:13 +0000
Manifest next update: Wed 05 Nov 2025 20:00:13 +0000
Files and hashes: 1: qQy9nbutIB840i93Gc6Vw1Yt6lA.roa (hash: 65g5a8+QhFyUXfSxWzLsMCFvk+W/xMxKhOR8kW2aeMw=)
2: tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl (hash: 3cJzFffHj/vqcDhLCX6bWcoGOFy1QBjbyiq2rLBigj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:74:a5:fa:af:17:64:7c:40:3a:f4:15:5b:18:92:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5d87fdc272ae058618786e741707557bf4e1a33
Validity
Not Before: Nov 4 20:00:13 2025 GMT
Not After : Nov 5 20:00:13 2025 GMT
Subject: CN=82a4dbdfb6ca4cc52f8b450cf624b44ca4face0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c5:15:ea:06:e1:de:9c:bc:4f:0d:24:85:e9:
ce:f3:ea:ea:93:55:9c:53:f6:15:2e:9d:63:b9:81:
80:84:9c:c1:17:04:c0:28:6d:b9:75:08:27:83:6e:
5a:da:01:3c:6b:0d:be:50:8e:1a:91:ea:d2:9d:b2:
b0:82:94:67:67:82:10:bc:1c:bc:5a:06:05:a7:6f:
d6:47:00:cc:a5:15:19:02:8a:50:05:fc:a4:b6:9d:
f5:d0:9e:a4:54:ea:ce:26:23:7f:49:7d:ab:e7:71:
5c:7b:87:dc:c3:01:f8:d8:3a:63:8a:21:bb:1e:49:
df:e1:3c:c9:66:08:02:ef:26:ae:18:d6:51:79:b5:
4a:2f:29:ce:3e:f7:ec:65:22:e9:d5:bc:2b:21:4f:
48:ab:32:a9:e4:3d:28:ab:94:2f:3b:83:4c:97:07:
85:ab:7e:37:ef:38:3b:81:7c:3b:cc:59:95:84:ef:
de:23:a7:20:67:eb:06:9d:c6:7f:99:1b:80:58:d7:
81:2b:0c:d5:1a:73:ca:bb:63:e4:d0:7a:0a:02:7b:
a3:25:c9:6c:14:2d:52:e2:d9:23:d0:2b:d8:03:73:
f8:b3:9b:4e:1c:ae:55:0b:26:32:f1:c4:7f:40:a3:
1d:dd:8a:e8:57:30:81:20:6e:24:39:e0:66:7f:a5:
5f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A4:DB:DF:B6:CA:4C:C5:2F:8B:45:0C:F6:24:B4:4C:A4:FA:CE:0C
X509v3 Authority Key Identifier:
keyid:B5:D8:7F:DC:27:2A:E0:58:61:87:86:E7:41:70:75:57:BF:4E:1A:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:6a:cf:6f:26:c2:fc:65:bf:cf:c4:ee:79:2d:7e:04:80:c0:
8e:e7:f3:42:90:f7:1f:09:48:05:bc:9d:33:e6:b6:4f:99:75:
c1:34:9f:47:9b:b3:e7:dc:19:1b:59:dc:c3:5d:e5:33:b3:05:
8e:e3:14:43:26:8d:e6:9a:7b:7c:88:09:b2:eb:ca:54:07:43:
58:1e:29:30:7a:f8:f8:2b:d3:83:4a:2e:d1:52:3b:8e:18:9b:
02:d5:9f:9d:29:30:ff:5d:dc:43:c4:20:4f:22:6a:56:b2:73:
da:89:5a:d3:60:ae:60:9f:82:6b:f0:c1:27:cd:56:36:22:d8:
ba:33:ea:99:e6:dd:7b:b4:7b:49:b7:69:dd:5d:d4:5e:89:8c:
4f:53:bb:c7:d0:b7:c3:ee:c1:72:32:66:b7:37:cc:82:5d:6f:
8b:f2:c3:cd:b9:a4:4c:fa:46:2b:7b:d3:ee:87:7a:4a:6a:8c:
fe:35:2e:ed:d6:be:9b:ea:4a:2d:57:86:cf:f5:53:8a:49:9d:
29:63:85:12:01:d8:10:6b:f1:a7:69:33:da:64:cd:fc:90:8d:
74:f2:4f:0b:fc:86:d4:db:d6:c3:47:36:41:98:b0:6c:eb:20:
ad:5a:54:78:c6:30:e6:f8:4a:56:03:62:51:88:b9:8e:9d:6c:
e0:e7:34:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQdKX6rxdkfEA69BVbGJLrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1ZDg3ZmRjMjcyYWUwNTg2MTg3ODZlNzQxNzA3NTU3YmY0
ZTFhMzMwHhcNMjUxMTA0MjAwMDEzWhcNMjUxMTA1MjAwMDEzWjAzMTEwLwYDVQQD
Eyg4MmE0ZGJkZmI2Y2E0Y2M1MmY4YjQ1MGNmNjI0YjQ0Y2E0ZmFjZTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8UV6gbh3py8Tw0khenO8+rqk1Wc
U/YVLp1juYGAhJzBFwTAKG25dQgng25a2gE8aw2+UI4akerSnbKwgpRnZ4IQvBy8
WgYFp2/WRwDMpRUZAopQBfyktp310J6kVOrOJiN/SX2r53Fce4fcwwH42DpjiiG7
Hknf4TzJZggC7yauGNZRebVKLynOPvfsZSLp1bwrIU9IqzKp5D0oq5QvO4NMlweF
q3437zg7gXw7zFmVhO/eI6cgZ+sGncZ/mRuAWNeBKwzVGnPKu2Pk0HoKAnujJcls
FC1S4tkj0CvYA3P4s5tOHK5VCyYy8cR/QKMd3YroVzCBIG4kOeBmf6VfdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIKk29+2ykzFL4tFDPYktEyk+s4MMB8GA1UdIwQY
MBaAFLXYf9wnKuBYYYeG50FwdVe/ThozMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGRoXzNDY3E0RmhoaDRiblFYQjFWNzlPR2pNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC82NzBiMTAtMTBlYi00NzZmLTg0ZWYt
MTU2ZWRhMmI1NWI2LzEvdGRoXzNDY3E0RmhoaDRiblFYQjFWNzlPR2pNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC82NzBiMTAtMTBlYi00NzZmLTg0ZWYtMTU2ZWRhMmI1NWI2
LzEvdGRoXzNDY3E0RmhoaDRiblFYQjFWNzlPR2pNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs2rPbybC
/GW/z8TueS1+BIDAjufzQpD3HwlIBbydM+a2T5l1wTSfR5uz59wZG1ncw13lM7MF
juMUQyaN5pp7fIgJsuvKVAdDWB4pMHr4+CvTg0ou0VI7jhibAtWfnSkw/13cQ8Qg
TyJqVrJz2ola02CuYJ+Ca/DBJ81WNiLYujPqmebde7R7Sbdp3V3UXomMT1O7x9C3
w+7BcjJmtzfMgl1vi/LDzbmkTPpGK3vT7od6SmqM/jUu7da+m+pKLVeGz/VTikmd
KWOFEgHYEGvxp2kz2mTN/JCNdPJPC/yG1NvWw0c2QZiwbOsgrVpUeMYw5vhKVgNi
UYi5jp1s4Oc05g==
-----END CERTIFICATE-----
Generated at Wed Nov 5 01:55:11 2025 by rpki-client