Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
File: tgcVWH7cyzJajXwPWkLY8EOHHbc.mft (raw, json)
Hash identifier: 01SWLaCCvWyOIrWrT2WMfB0FQD/DN5rXbNUW/f5UyGc=
Subject key identifier: 87:25:9D:85:7E:26:EC:44:2D:A5:A2:EF:9B:8B:5B:C6:8F:B1:6A:F0
Authority key identifier: B6:07:15:58:7E:DC:CB:32:5A:8D:7C:0F:5A:42:D8:F0:43:87:1D:B7
Certificate issuer: /CN=b60715587edccb325a8d7c0f5a42d8f043871db7
Certificate serial: 019A52D17A29CC25A3E2CFDD7416C18BFA2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgcVWH7cyzJajXwPWkLY8EOHHbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
Manifest number: 0234
Signing time: Wed 05 Nov 2025 07:00:51 +0000
Manifest this update: Wed 05 Nov 2025 07:00:51 +0000
Manifest next update: Thu 06 Nov 2025 07:00:51 +0000
Files and hashes: 1: tgcVWH7cyzJajXwPWkLY8EOHHbc.crl (hash: HHvbJR6Y1btItgfA4IxrXovTaOVYsTGSYu0MJTdO1rA=)
2: zAVl6KN24j-HKETuiZlV3hao63U.roa (hash: djF473q/t5BuBhPbvFB06yhsIPQKmfmJ61GIeE/TTOg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tgcVWH7cyzJajXwPWkLY8EOHHbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d1:7a:29:cc:25:a3:e2:cf:dd:74:16:c1:8b:fa:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b60715587edccb325a8d7c0f5a42d8f043871db7
Validity
Not Before: Nov 5 07:00:51 2025 GMT
Not After : Nov 6 07:00:51 2025 GMT
Subject: CN=87259d857e26ec442da5a2ef9b8b5bc68fb16af0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:40:3d:de:e2:b1:d9:49:aa:80:f6:ce:f1:8d:
7e:61:35:41:ef:28:3f:09:fe:79:ee:7b:b4:d5:59:
09:99:41:31:16:00:af:92:af:cc:89:2b:45:f1:ad:
f9:91:53:fb:30:60:35:1e:d8:f6:a6:32:8b:0d:54:
8c:dc:2d:bd:e0:22:af:0d:06:f5:8a:07:3e:af:85:
4c:55:b3:e5:da:f7:8d:c1:f3:4a:b9:de:69:35:0d:
eb:f0:f1:5e:4e:5c:9b:a0:b4:41:e9:81:57:3b:1e:
85:0b:ff:7f:ff:b2:05:f1:65:2d:8a:d9:80:a2:a7:
48:3f:b7:ea:df:f0:23:d6:fa:cc:46:7f:da:fc:5a:
b2:fd:76:1c:94:f7:07:e9:12:9a:9e:10:76:25:d8:
9a:4f:a6:83:61:9b:b0:b9:68:19:78:f3:5a:41:c7:
e9:fc:db:fb:77:77:68:dc:2f:c5:67:a4:82:ac:cd:
7b:d2:58:0b:0b:39:f5:11:4b:c8:ba:83:56:a1:ae:
f7:d0:19:1f:48:0e:7c:98:21:a7:b6:da:c4:c6:79:
21:0f:a3:7e:38:cf:42:3e:74:8f:44:ae:49:79:c7:
54:ef:fe:ae:93:ba:50:32:e6:17:45:ed:2a:0b:10:
6b:40:0f:8a:8a:5d:fe:71:e7:d0:ad:7f:01:93:2a:
a3:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:25:9D:85:7E:26:EC:44:2D:A5:A2:EF:9B:8B:5B:C6:8F:B1:6A:F0
X509v3 Authority Key Identifier:
keyid:B6:07:15:58:7E:DC:CB:32:5A:8D:7C:0F:5A:42:D8:F0:43:87:1D:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgcVWH7cyzJajXwPWkLY8EOHHbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:1f:64:0b:34:9a:4e:ce:30:bf:fb:f6:c8:e0:ba:07:d3:3d:
b7:bd:e5:bc:44:51:06:a2:9c:77:92:d8:b9:82:7a:e5:31:07:
00:b3:99:b3:ad:d6:52:10:7f:57:a0:b2:92:d6:93:14:ee:e0:
60:8a:85:4c:b6:cb:8b:18:d3:20:d3:f4:02:6b:29:33:fe:a5:
9f:0b:9a:60:10:c3:29:d7:a3:74:42:f7:f1:17:3d:ea:9d:9a:
f1:2e:65:4f:17:d1:b7:8e:da:c1:d5:6f:30:e6:b2:61:40:b7:
e7:7e:50:ae:43:ae:71:3a:73:cd:76:91:d2:bc:f7:9f:56:e5:
12:74:df:54:4c:e4:27:89:f3:e7:51:df:96:e8:6e:63:77:57:
85:b0:95:1c:0c:74:1a:08:3e:e3:2e:27:92:7d:f3:05:ea:4b:
60:4a:8d:b2:05:0e:16:d1:89:bc:36:a3:63:7b:35:61:d3:ef:
2a:8c:7c:f6:f2:22:f3:00:e0:31:cc:72:76:52:63:85:14:22:
fa:04:ee:f3:6f:7d:5b:60:47:b1:b6:c7:71:c4:aa:a0:41:a1:
cb:92:94:f2:d7:b4:37:23:c2:f4:e4:bb:46:d3:04:84:29:93:
b1:2d:48:68:1e:b9:eb:79:44:6d:ae:6f:05:5d:ef:f2:c2:7e:
08:d4:a3:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:29:15 2025 by rpki-client