Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
File: tU3fbwMzHNdzx-ersVQpuo0gvXg.mft (raw, json)
Hash identifier: DPA1QSIX/qgy7OeX6j/Nq8xwKSXrubOi83hfZFfdtOU=
Subject key identifier: BE:C8:FE:E5:1F:67:6D:DB:98:3B:83:4E:4D:A5:45:9A:DD:05:F1:5E
Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Certificate serial: 019896A6CF1C1BB3768F5F976A5A56B85AFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
Manifest number: 076C
Signing time: Mon 11 Aug 2025 01:02:50 +0000
Manifest this update: Mon 11 Aug 2025 01:02:50 +0000
Manifest next update: Tue 12 Aug 2025 01:02:50 +0000
Files and hashes: 1: 1SqAG3Japdqs2uBvGFHguJLvhqE.roa (hash: tRLIPOPh9GLi7wL54w2K0S63l5p5YYde2YPqeJx3wD8=)
2: tU3fbwMzHNdzx-ersVQpuo0gvXg.crl (hash: wH7hFQSEZ/+D0ilxLMKTi4hR3zGlmVEScQ1RDeeqvKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:02:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a6:cf:1c:1b:b3:76:8f:5f:97:6a:5a:56:b8:5a:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Validity
Not Before: Aug 11 01:02:50 2025 GMT
Not After : Aug 12 01:02:50 2025 GMT
Subject: CN=bec8fee51f676ddb983b834e4da5459add05f15e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:86:47:b0:b3:31:48:a0:92:6d:a7:fe:a1:1b:
ad:49:f3:5d:42:3d:ef:74:e8:3f:46:9c:86:d6:ce:
d8:0e:fd:57:0f:31:5f:bb:07:ca:8c:f1:3e:0a:cb:
6a:56:f0:89:b4:92:d9:63:94:18:cd:3e:13:ea:80:
2c:03:d4:f9:22:41:52:71:8c:00:3d:87:f7:b4:c2:
16:44:91:fe:f0:3e:7f:53:7e:68:0a:b0:8c:2b:f6:
4c:a6:39:1b:b4:f1:98:24:3d:ef:8f:0a:76:54:97:
ea:37:fd:7e:7c:9a:a9:46:50:29:7b:20:96:df:48:
eb:b3:ad:22:55:7f:8f:1d:f3:7c:b9:6c:05:85:bf:
fa:61:73:26:5b:4a:b0:c1:51:14:47:c0:53:6a:fd:
e7:36:87:7e:e0:80:02:2f:42:13:69:81:66:df:87:
93:65:79:b5:38:97:bd:3e:af:ee:c0:97:4a:47:d5:
13:a4:93:2c:68:c1:5f:24:38:c8:6b:8a:06:c5:88:
e9:07:7d:2a:6a:ef:9e:e1:c2:77:2c:e4:7c:15:b7:
eb:17:28:c4:dd:91:6d:15:4c:8e:2b:79:dd:6e:e6:
50:f8:af:dd:fb:5b:64:9c:68:c0:4a:3a:17:60:0c:
48:67:1d:d7:d7:42:92:50:78:99:b6:d0:73:6b:b0:
34:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C8:FE:E5:1F:67:6D:DB:98:3B:83:4E:4D:A5:45:9A:DD:05:F1:5E
X509v3 Authority Key Identifier:
keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:d4:f2:e2:33:81:b3:7f:fd:fa:c7:3f:82:6f:cd:2d:50:5a:
16:93:0e:7d:a4:9b:4b:aa:5f:8a:e0:9d:51:3f:53:57:cd:4d:
21:dd:6b:cb:a6:50:3c:c6:cd:eb:3c:ac:e5:0a:84:76:4d:1a:
12:c7:99:ff:88:b3:35:e7:b0:3f:93:25:5b:14:36:26:a8:61:
f1:14:4d:ec:6f:0b:47:50:64:72:dd:6d:e7:9f:31:4e:77:58:
3e:c4:0e:53:87:42:68:61:19:8d:4d:8b:6d:44:58:7d:d1:e8:
0b:80:6c:43:9e:0d:ca:0e:99:9b:45:38:22:9c:34:46:8e:55:
0e:f7:50:1c:98:a9:bc:5f:9f:bc:cd:8b:66:c4:07:5a:b1:9a:
aa:b6:f1:07:49:6c:23:8f:e6:d8:b4:f0:9b:20:48:57:be:14:
8c:b2:8b:de:22:d9:3e:59:7b:95:d8:a7:9f:fa:21:31:7c:c5:
3e:24:51:dd:5b:c4:38:7d:60:e8:25:3c:9b:ee:28:39:ca:61:
bf:a4:8e:bf:d4:e1:3a:c4:f7:54:f7:c4:62:58:65:ae:33:3d:
65:0d:4d:b7:d1:0d:8b:4f:91:ab:ae:91:ac:7b:a5:29:0f:10:
eb:f7:f1:14:46:30:64:50:93:fa:10:fb:f1:b1:7f:1b:73:66:
11:80:31:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:47:04 2025 by rpki-client