Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
File: Ty87yZp5UD4JdXR36O9kPhGIbIs.mft (raw, json)
Hash identifier: /LuTOM6DwuRD5gkGoGDpkT6fvjsRWQmFnWzHA3tIk0M=
Subject key identifier: 92:6A:77:F4:3E:21:CC:22:E6:B5:4D:2F:74:79:83:3C:36:52:9C:77
Authority key identifier: 4F:2F:3B:C9:9A:79:50:3E:09:75:74:77:E8:EF:64:3E:11:88:6C:8B
Certificate issuer: /CN=4f2f3bc99a79503e09757477e8ef643e11886c8b
Certificate serial: 019873E415ADC33C2A8E7E70395559215160
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
Manifest number: 14C8
Signing time: Mon 04 Aug 2025 07:03:04 +0000
Manifest this update: Mon 04 Aug 2025 07:03:04 +0000
Manifest next update: Tue 05 Aug 2025 07:03:04 +0000
Files and hashes: 1: DmY4OlpSGtRwQGNkVI6pwwKmQOM.roa (hash: QsmPHxvFnUbBb8Hdz5mPLnRJfO8cxjGYjuC9mmKC/hY=)
2: Ty87yZp5UD4JdXR36O9kPhGIbIs.crl (hash: HEjoRr+US18DnX6ocAc1XyQeuZC0l5RmDT4ZNUanY2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:03:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e4:15:ad:c3:3c:2a:8e:7e:70:39:55:59:21:51:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f2f3bc99a79503e09757477e8ef643e11886c8b
Validity
Not Before: Aug 4 07:03:04 2025 GMT
Not After : Aug 5 07:03:04 2025 GMT
Subject: CN=926a77f43e21cc22e6b54d2f7479833c36529c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:11:d2:52:0c:dc:31:32:ad:3e:ac:56:75:49:
2f:30:12:2a:52:4c:7f:59:ad:d8:ab:32:79:51:2a:
0e:ca:35:dd:8a:f2:bb:f5:9a:88:18:4b:85:51:20:
69:42:50:00:dd:07:50:9f:24:58:0e:64:66:ea:42:
b5:a7:19:1c:6e:48:69:a5:f2:1e:d3:82:eb:de:40:
72:84:bf:4f:3f:0c:b3:eb:94:b0:23:ab:fe:53:d3:
02:9d:4b:b3:53:b5:43:42:8a:c8:f2:27:63:4f:7b:
35:66:b4:2b:38:2a:43:f9:33:25:34:9c:4f:3c:b1:
a6:9d:60:ca:7f:c7:bd:e8:38:a4:75:5d:b8:14:00:
0d:c7:98:36:9a:3e:1c:c4:51:ed:e9:52:6d:ed:c9:
d5:c7:9c:22:72:bc:3a:5e:4a:20:9c:f0:40:40:0f:
e8:c6:b1:56:d7:6f:a4:1f:2c:73:3e:09:95:ad:70:
68:8f:aa:ba:60:89:af:05:bd:a2:ff:55:51:39:5d:
cf:d3:43:fe:b4:bd:ae:53:5a:b2:95:ef:6a:7c:43:
e2:b5:d2:39:ad:1b:38:12:d0:56:4a:f0:be:50:2c:
40:71:2b:90:bb:ac:a2:ff:ac:8e:81:74:b3:58:40:
11:d0:3e:de:8b:21:7f:db:e4:a6:af:bb:fd:cf:10:
88:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:6A:77:F4:3E:21:CC:22:E6:B5:4D:2F:74:79:83:3C:36:52:9C:77
X509v3 Authority Key Identifier:
keyid:4F:2F:3B:C9:9A:79:50:3E:09:75:74:77:E8:EF:64:3E:11:88:6C:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:92:54:fa:72:22:ff:4a:7b:52:73:90:e9:5c:90:47:f2:27:
72:7e:c1:e7:ad:0a:1c:bd:a4:3b:fc:17:fe:af:de:3e:a4:67:
33:59:95:7e:78:16:a1:e7:a9:e8:f7:29:17:1a:6e:f3:0f:ed:
53:9e:15:c7:95:06:11:0e:42:fb:2c:65:e6:13:a5:8d:6a:fe:
8d:b1:7f:a0:ff:a9:1a:b1:dc:d0:ac:b8:1c:50:4a:05:71:62:
d5:d5:30:8f:ff:ee:31:76:b1:e8:37:80:00:61:c1:de:30:5a:
18:6b:fa:6a:6d:8e:79:d2:53:ba:49:fa:e4:34:44:1f:30:7e:
a0:91:e2:5d:9f:ec:5e:db:37:68:c9:ed:5c:b3:86:fc:06:f7:
ed:0b:df:40:a2:8a:ac:e6:f9:eb:33:9b:fd:f6:53:67:17:65:
dc:42:47:e3:8f:d4:74:f7:1a:62:2f:e2:27:08:86:73:64:d1:
2b:67:ad:28:42:3b:18:a4:97:b3:2e:fc:71:47:95:27:79:a4:
61:c1:f7:51:27:b5:25:4c:c1:e1:6f:9b:f4:47:a1:2e:8d:84:
e3:62:6a:3b:6e:7c:f9:02:fc:05:89:db:63:25:ca:5c:77:8b:
ee:5d:30:70:31:fb:e4:2c:83:2f:ce:c2:4e:98:07:f2:62:26:
4f:4b:78:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:05:52 2025 by rpki-client