Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
File: thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft (raw, json)
Hash identifier: dwi1fM06m39W4U4rmpeQGOPZVgJ1dKA+3yyU+i+YodQ=
Subject key identifier: 0C:7B:3F:83:BF:A4:4D:B8:0C:11:F6:3F:2B:E8:AB:88:02:FE:58:C3
Authority key identifier: B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
Certificate issuer: /CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Certificate serial: 019A4E18DB009BB8EB1A0DBBAEF539909702
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
Manifest number: 0B51
Signing time: Tue 04 Nov 2025 09:00:42 +0000
Manifest this update: Tue 04 Nov 2025 09:00:42 +0000
Manifest next update: Wed 05 Nov 2025 09:00:42 +0000
Files and hashes: 1: B1zjeI12z7rKzJjEV2xk7Kx6YeQ.roa (hash: r2WGLNl7mqhMqh1kFVBikeJbCxyFFZKze+pH0m8/Lxw=)
2: J0SmJvo_DblXKy-6WzDl514uI_0.roa (hash: q/+Q30dvsgavMpRf9kHRcZOPpYacKoQhzHpVoqSh0+Q=)
3: oE2klgKXcU6ZFBaxD5Ye5dFs4b0.roa (hash: xVrVcQ4eqe5NnaROnCloWgSzhvwXlAPv4n0sYt9CbFA=)
4: thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl (hash: VMrSaUfEyPhFPw4J4kQFTb2J0PqjB80d8MMrYdYhaNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:db:00:9b:b8:eb:1a:0d:bb:ae:f5:39:90:97:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Validity
Not Before: Nov 4 09:00:42 2025 GMT
Not After : Nov 5 09:00:42 2025 GMT
Subject: CN=0c7b3f83bfa44db80c11f63f2be8ab8802fe58c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ec:60:0f:8f:d8:88:17:ef:8e:9e:ed:a2:ab:
90:92:e7:a2:35:9f:96:69:0d:36:31:17:30:ed:a9:
29:ba:6c:47:fd:2b:54:b6:ed:96:13:f4:9f:9d:26:
d9:a3:e1:ae:7f:be:e7:50:ca:6c:35:35:ab:dd:0b:
aa:45:2c:cd:01:8d:4e:4b:ca:be:4e:17:77:da:87:
a1:a9:54:46:47:94:63:bc:cb:47:f8:10:c8:e1:06:
f7:51:36:29:49:30:d6:4c:4f:64:e4:57:ce:96:be:
f3:44:74:2a:7c:32:1b:50:03:ac:36:20:9d:7d:73:
f1:52:aa:48:fc:d6:0f:b4:90:df:64:fc:20:cb:c8:
67:ab:62:27:49:fd:3d:5a:e4:20:c3:1b:b6:f6:d7:
fc:63:ab:f4:07:96:ea:c4:ba:14:dc:87:ea:5a:79:
e4:9f:86:d0:03:60:72:ab:89:7c:f7:e5:26:d8:3e:
6c:9b:a5:1c:7c:21:7b:d2:fa:21:14:56:a0:a9:f0:
52:18:d8:10:63:87:9f:84:58:69:3d:f8:7b:d3:12:
ab:14:d5:73:c7:b7:22:cd:12:23:77:05:72:60:41:
65:b1:7a:62:68:c2:98:fe:50:7e:23:6c:2c:24:94:
32:a2:0c:82:94:2f:30:c0:58:20:bb:35:92:ec:0f:
60:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:7B:3F:83:BF:A4:4D:B8:0C:11:F6:3F:2B:E8:AB:88:02:FE:58:C3
X509v3 Authority Key Identifier:
keyid:B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:cc:88:2c:63:8c:83:11:3c:8e:97:a3:0a:cb:12:05:d1:8c:
8a:49:e3:98:8d:82:3f:d4:2c:1d:cf:5a:36:2b:09:69:b6:6a:
74:39:8d:06:7e:b1:2c:7b:47:a9:88:be:92:37:b8:d4:34:17:
85:fc:8c:18:11:6f:4e:dc:55:f2:16:44:c7:d6:22:85:90:10:
ca:87:6f:14:42:a0:04:e1:d9:ed:2b:36:28:bb:08:c8:61:d9:
dc:ce:82:3e:e8:ed:e4:6a:22:55:0c:b5:ec:d2:2d:66:27:87:
db:1a:44:b2:2d:3b:79:7b:06:8b:6a:5d:ab:47:7a:14:22:ca:
77:6b:26:66:46:8c:28:df:ae:a0:dc:6f:47:34:be:59:91:45:
1e:79:aa:32:87:7a:23:93:9b:be:89:d4:c9:39:ed:99:8d:c5:
48:99:87:d3:70:bb:58:d4:96:7b:56:cd:77:6d:64:38:f5:37:
fd:d3:f7:56:29:55:31:2d:65:3e:0a:25:2e:70:33:60:08:57:
e9:a8:cc:fb:ec:6d:18:2c:36:21:1f:6f:e9:48:a4:65:eb:d6:
84:d3:4c:a0:82:f5:59:41:44:00:1e:00:e1:a8:d8:81:62:3e:
2e:a4:fc:07:82:33:85:49:38:0d:8f:3c:18:8e:4d:ad:cd:a0:
df:73:75:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:45:05 2025 by rpki-client