Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
File: TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft (raw, json)
Hash identifier: 5Td2f/Jp2ih9+pUvdGgcAswp70RI5pfMtIaYGqumCyk=
Subject key identifier: 13:CF:48:50:C5:84:00:05:D3:D7:EA:BC:E5:1A:54:72:1E:61:51:63
Authority key identifier: 4D:15:27:D1:83:9B:F8:30:36:0D:71:59:01:34:35:4E:6D:90:46:97
Certificate issuer: /CN=4d1527d1839bf830360d71590134354e6d904697
Certificate serial: 019A5074E89DEB5262930B4B31BF79949CD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
Manifest number: 170F
Signing time: Tue 04 Nov 2025 20:00:30 +0000
Manifest this update: Tue 04 Nov 2025 20:00:30 +0000
Manifest next update: Wed 05 Nov 2025 20:00:30 +0000
Files and hashes: 1: TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl (hash: JmKDPhsYQlrNPUX4+AbMOcGMGsTwbR4Zf/1M9l3194M=)
2: a6Whh1qMHaCLz9si7bMkIx4xg1Y.roa (hash: R/Syehgq2eEOSio/8bhqr2YXvz+4Ke3qpd0G80XikQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:74:e8:9d:eb:52:62:93:0b:4b:31:bf:79:94:9c:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d1527d1839bf830360d71590134354e6d904697
Validity
Not Before: Nov 4 20:00:30 2025 GMT
Not After : Nov 5 20:00:30 2025 GMT
Subject: CN=13cf4850c5840005d3d7eabce51a54721e615163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:72:2b:01:9a:f5:98:fe:e8:6f:40:ec:75:8a:
70:55:a5:83:6c:22:f7:23:f1:3d:9c:e0:91:55:01:
c8:99:47:68:63:84:8a:8e:60:65:3b:0f:d3:ed:15:
8a:39:68:6a:60:36:27:8a:41:8d:f5:33:72:1b:86:
69:c9:83:ef:b0:bc:83:67:af:2f:ff:ab:3e:46:9d:
ef:45:20:54:5e:5a:3c:c5:07:0e:40:7c:b8:f3:f4:
f2:3d:5d:84:90:97:38:8d:03:95:9d:1c:b6:d2:05:
e6:a4:b3:33:06:ad:07:01:18:6b:1b:c6:62:d5:17:
aa:89:d3:b7:4f:2f:5a:33:e7:d2:58:1a:0e:04:33:
be:59:7a:fc:79:44:f3:1c:bc:6c:fc:1c:86:f0:c1:
82:20:9a:cd:0e:5d:54:d3:85:6c:5f:e7:fc:63:9b:
95:80:e0:cc:bd:48:2b:40:55:62:92:23:3a:ee:18:
e9:d0:71:ea:37:19:60:14:58:54:cf:11:a5:59:86:
27:2b:37:0d:5e:fa:06:5f:85:05:9d:cd:4f:8f:57:
9f:01:b3:ca:59:77:66:47:9a:d7:b8:44:36:ac:36:
07:4f:b0:6e:ce:86:a9:8f:f2:bf:75:3c:b8:7b:ef:
e8:d9:58:2d:17:fc:e1:06:4f:e4:44:39:be:14:54:
c5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:CF:48:50:C5:84:00:05:D3:D7:EA:BC:E5:1A:54:72:1E:61:51:63
X509v3 Authority Key Identifier:
keyid:4D:15:27:D1:83:9B:F8:30:36:0D:71:59:01:34:35:4E:6D:90:46:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:1f:9b:e5:8a:7f:96:e9:c8:ef:55:7c:e7:78:89:e5:82:dd:
f5:b1:7d:02:0c:58:22:a2:71:8e:45:22:8a:f1:ca:01:d4:e9:
68:72:2a:ea:41:6f:a8:91:37:bd:77:08:6a:91:2d:9e:75:64:
31:b3:c5:ce:eb:7b:88:2c:2e:1e:bf:ac:4f:1f:d8:77:d6:be:
c6:87:4b:34:48:bf:70:13:0f:da:1f:16:21:9d:99:d2:95:e5:
cc:9e:9a:98:63:be:63:fc:16:db:7d:1a:b1:98:f1:d1:e9:22:
ac:9f:60:db:21:bf:9a:81:a2:d6:71:83:e5:fb:23:48:16:2d:
18:0c:00:92:55:5c:36:e3:f5:4c:c9:48:b6:cb:00:a7:b6:04:
09:ec:d1:51:b8:4f:e3:d2:74:f7:4f:88:6d:10:be:7e:0c:7a:
9d:ed:13:53:b4:cd:ea:b4:64:72:63:15:10:b0:3b:d1:43:3c:
78:d3:75:52:5d:49:49:bd:10:eb:02:15:d7:a5:91:37:1f:f3:
db:5d:36:1a:a5:d7:67:d9:b8:f1:c6:b7:58:fb:8c:44:28:7a:
51:16:5a:0e:20:8a:f9:87:11:f7:a7:b7:13:72:10:0f:3c:47:
28:b6:65:8a:3b:92:5b:99:90:e7:6b:48:35:45:8a:1b:fc:66:
1f:e6:56:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 01:29:55 2025 by rpki-client