Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json)
Hash identifier: sLB06qaBPSa+KYJ+pJGYUhmw7uCJGlZNJ5EAGgxukN0=
Subject key identifier: 82:6D:44:02:BE:B7:2F:2A:0B:33:97:E9:F2:09:7E:67:6A:27:18:2E
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 019A52D13BB4B4CD822F42F477696E688853
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
Manifest number: 12B8
Signing time: Wed 05 Nov 2025 07:00:35 +0000
Manifest this update: Wed 05 Nov 2025 07:00:35 +0000
Manifest next update: Thu 06 Nov 2025 07:00:35 +0000
Files and hashes: 1: M5OG91JsCAL60eSIC9Ad8J1tKCQ.roa (hash: 1YIYjfLNUonn/y5DvRwWqNtN3UGauHay3fPvlHRKB78=)
2: NLZJeEG7B459T5HRjzbaryRo4U4.roa (hash: D+Zc3p+KtPQCrkhD8NK/RsRz3Ozk8j3l3fx+in8YU8k=)
3: SX0Et8xCJ-oQPSZhA1vLwpgECss.roa (hash: GtBoUqmPl7+e01rEjLRBIu11uahmgFfyYOp4+G1ts2k=)
4: g3mWLx3QHER7jvUWO9_K86XjFvg.roa (hash: CQjC54kUHdxygPOZtU3D7Ni2Q4FQ2f8Z6SwCWy0D9f0=)
5: hvqfOijr6dDuZ5bH5DmTLJBSNC0.roa (hash: wnrweN82zW3L/i2kjShP1DGJ6lX6f745nj23KDLcERg=)
6: pkTSWC0kyyJmikpwefrKy0hYNBc.roa (hash: uJAe5aUPI71DUshehwa1+fSKLZdP9CODCdcESePQJgY=)
7: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: +q5H2Mb2k7fNlmZwIdz6053gINts+jM2p+IxZikwi1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d1:3b:b4:b4:cd:82:2f:42:f4:77:69:6e:68:88:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: Nov 5 07:00:35 2025 GMT
Not After : Nov 6 07:00:35 2025 GMT
Subject: CN=826d4402beb72f2a0b3397e9f2097e676a27182e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:27:79:7a:a4:98:0c:2b:72:03:9b:cd:e1:40:
2e:45:c6:81:86:ff:2e:41:d6:d5:a9:34:38:f8:ce:
a7:5f:d5:f8:78:a6:7e:c4:8a:fd:b2:f0:e6:f4:cb:
ad:f3:38:e3:0f:2a:e0:c7:46:ff:75:a3:4b:42:57:
87:30:a1:c3:e7:35:1d:d6:2f:20:23:26:8e:fe:ad:
05:03:6f:db:a9:fa:52:b8:7f:b6:ab:8a:bc:80:4f:
13:c4:4f:72:d8:ba:28:7b:03:df:69:74:37:39:08:
46:b3:8f:df:fe:9a:8b:00:38:7d:ca:66:f0:6f:72:
ce:f9:73:4f:f4:6e:78:8e:33:51:50:a5:7a:10:d1:
b1:51:f3:b7:c9:5a:3e:d7:44:6e:98:86:8f:13:e7:
7a:d6:06:76:e8:ce:41:b7:6e:69:28:08:43:a7:f3:
bb:53:cd:7e:b9:75:90:7f:12:3b:fc:2d:26:45:c8:
3f:ef:eb:6a:9d:d8:29:b8:3a:35:7d:45:b3:14:e3:
2a:fb:78:b6:ab:8c:09:8e:ec:73:b0:f1:72:cd:bc:
84:c3:32:6f:97:82:67:bf:71:20:5d:30:80:85:18:
9d:ac:fd:ff:df:f8:cf:88:6b:e2:ae:a8:21:25:5f:
85:79:b8:c2:d0:4b:cc:89:5a:cb:91:df:d8:52:55:
db:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:6D:44:02:BE:B7:2F:2A:0B:33:97:E9:F2:09:7E:67:6A:27:18:2E
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:ab:30:fe:ae:6c:b4:6e:15:bd:5e:84:bc:e9:f9:dc:ef:38:
c3:d9:59:f7:36:87:0a:05:e4:cc:cc:4f:9f:8a:23:ab:03:d1:
78:73:fa:0e:8b:67:20:9c:85:60:a9:68:a7:a0:69:4c:e4:9a:
95:a8:c0:18:85:3e:b4:ea:36:72:5d:c1:d9:8b:c6:d1:e1:29:
a6:f7:30:c3:81:71:a3:31:14:e3:e3:13:24:1f:18:21:bd:a7:
8a:44:d0:72:45:d4:17:32:df:e9:ea:3a:e7:92:88:f6:92:bc:
29:55:3f:2c:24:fe:5f:7d:8f:62:78:f5:bd:f8:30:00:ad:ec:
5f:28:07:81:12:6b:9e:70:03:30:d9:62:4b:e7:20:e7:00:2b:
2d:6a:46:d7:35:f6:dd:66:62:bb:cd:c0:ce:e5:d1:3b:ae:cc:
d6:00:91:98:63:3d:93:ed:79:70:fd:45:0c:f8:1c:fc:4c:45:
14:7e:84:37:23:db:5b:c7:fe:eb:6f:a0:30:1d:12:05:76:1c:
45:2b:bf:48:cb:99:45:f8:45:56:96:e6:e7:19:cb:55:d9:8a:
bf:5f:ba:ed:17:b2:be:7f:34:3f:db:8e:aa:22:c8:3c:af:04:
2c:10:bb:66:ad:51:e5:d8:ac:0e:2c:9b:8b:f8:d8:18:7f:45:
f1:ce:f9:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:14:42 2025 by rpki-client