Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
File: tIENfJv8WLngoeWRacPdMi3p9zc.mft (raw, json)
Hash identifier: w31S98BOzTM36oq1QVouybuOJyvAwUWHwYzJ7240lrQ=
Subject key identifier: ED:C0:6B:E3:6D:0F:E3:9C:10:96:D1:85:07:42:2B:8F:14:78:9F:8F
Authority key identifier: B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
Certificate issuer: /CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Certificate serial: 019A51507A932CB13FAC665F09121E18194E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
Manifest number: 170E
Signing time: Wed 05 Nov 2025 00:00:19 +0000
Manifest this update: Wed 05 Nov 2025 00:00:19 +0000
Manifest next update: Thu 06 Nov 2025 00:00:19 +0000
Files and hashes: 1: jHERjwHQQByovrguIT9kNAenUlw.roa (hash: fC13Nqgu9Ca7tsn1KpGgJ5T6X5W9BeqrdrYm3SZE1Rs=)
2: tIENfJv8WLngoeWRacPdMi3p9zc.crl (hash: qIv7Q5oiihaShoxrxADH7BmiATRn1EOjS11eZ5Daan0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:50:7a:93:2c:b1:3f:ac:66:5f:09:12:1e:18:19:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Validity
Not Before: Nov 5 00:00:19 2025 GMT
Not After : Nov 6 00:00:19 2025 GMT
Subject: CN=edc06be36d0fe39c1096d18507422b8f14789f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:77:7d:be:fb:b2:4d:09:e1:6c:eb:4e:26:4c:
02:29:35:fc:26:b2:fd:bb:e8:09:b4:b9:ed:6f:a7:
1b:c5:e8:ee:76:e4:0e:c6:f4:8e:fd:23:c9:bb:1d:
fc:e5:a0:b5:4e:25:23:34:21:fa:ea:4d:e2:56:28:
a2:46:8b:38:53:02:3c:8c:82:4a:5d:a9:ac:09:3b:
bb:58:33:a7:e8:63:97:6a:b6:0d:c1:21:06:c2:0d:
07:42:db:04:76:5f:c9:c0:e9:f3:c5:02:38:74:e4:
d6:cc:c4:ba:c7:e5:d3:be:c1:c0:8c:ae:bb:93:84:
d0:ca:11:24:db:29:15:7c:69:13:0f:21:01:8f:11:
91:e7:4b:cf:bf:12:50:e6:26:23:9e:e0:e4:22:cd:
a1:72:92:f8:58:5c:35:14:70:21:e2:65:5e:6e:7a:
30:b4:ce:28:9c:6a:c1:c4:7d:78:71:16:71:d1:56:
ec:b4:49:2a:56:51:e8:91:70:51:50:cc:4c:fe:2e:
cc:13:af:8b:db:60:79:2d:05:af:6c:20:26:20:ae:
a8:8b:ef:a4:ad:c0:e9:95:2b:0f:30:e3:b6:d0:2e:
55:d1:0b:50:c7:c0:b7:32:dc:b8:ca:db:5b:53:34:
4b:e1:19:c4:47:81:40:00:48:2e:35:76:19:c1:20:
f8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:C0:6B:E3:6D:0F:E3:9C:10:96:D1:85:07:42:2B:8F:14:78:9F:8F
X509v3 Authority Key Identifier:
keyid:B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:7c:be:90:4f:c7:fb:7e:6d:eb:f0:2d:f8:3b:0b:16:6b:d5:
01:c3:93:ce:2f:fd:f9:eb:cd:9d:cc:60:fc:25:41:b3:0e:ab:
93:8e:17:94:1b:13:24:5c:23:fb:cb:fe:55:56:fa:7f:87:ba:
dc:62:9e:6c:e8:30:66:a6:8c:08:64:4b:a5:49:d4:06:77:d1:
6a:ce:4f:06:69:f7:01:03:36:51:7e:4d:6c:d6:22:d0:54:0f:
30:af:8f:f3:44:19:ef:47:5d:3e:5c:ab:de:21:44:e5:7d:ef:
01:b5:94:cc:7c:93:c0:59:72:80:47:81:48:da:e9:b5:0c:e0:
1a:10:6b:8a:a8:c6:36:ad:b8:4b:88:85:0a:0d:a6:02:8a:30:
12:c5:e9:32:61:a3:c9:c6:59:d8:40:72:b2:d2:d9:03:98:4b:
1e:60:36:1c:40:08:70:a3:5d:31:47:68:c8:26:9d:74:89:32:
8e:23:93:8f:c3:a0:50:41:2e:23:c5:d0:62:a6:2d:5e:09:8a:
78:33:f9:da:91:b5:a3:87:7b:ab:6f:e3:31:eb:6b:ae:f3:a9:
a9:1f:a3:3c:be:cd:94:90:5e:57:c3:6c:e6:ef:32:af:35:38:
c4:87:1f:23:52:a7:ec:98:52:14:e2:ab:63:a7:2f:e8:f6:51:
1f:1a:ea:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:19:15 2025 by rpki-client