Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
File: TzLUClO7YLhnWebsClIHMAtBr3A.mft (raw, json)
Hash identifier: oxwFn6934RSE7BezKaz/d3p8x6PNhIkBX69i+j7pNDg=
Subject key identifier: 59:7A:39:F1:A0:39:E3:08:D3:9E:8F:A9:91:A1:59:47:3A:37:89:03
Authority key identifier: 4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70
Certificate issuer: /CN=4f32d40a53bb60b86759e6ec0a5207300b41af70
Certificate serial: 019A4C97D961EA7E35A1D7E13736BFF2D267
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
Manifest number: 170A
Signing time: Tue 04 Nov 2025 02:00:11 +0000
Manifest this update: Tue 04 Nov 2025 02:00:11 +0000
Manifest next update: Wed 05 Nov 2025 02:00:11 +0000
Files and hashes: 1: 2j3kAJC1aDvfwJPuGUvb554m29Y.roa (hash: Hr+M1o8+SSmf7r+qXis6TOXIjRUjTFBSHGU0mpn3FN4=)
2: TzLUClO7YLhnWebsClIHMAtBr3A.crl (hash: xC50GQQlBfCwJkMrggo02QZBRd5ON3ISdlkR427KBo4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 02:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:97:d9:61:ea:7e:35:a1:d7:e1:37:36:bf:f2:d2:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f32d40a53bb60b86759e6ec0a5207300b41af70
Validity
Not Before: Nov 4 02:00:11 2025 GMT
Not After : Nov 5 02:00:11 2025 GMT
Subject: CN=597a39f1a039e308d39e8fa991a159473a378903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:73:19:72:b0:a3:a9:06:30:65:f8:1f:10:5a:
8c:cd:05:c1:ec:2d:b3:f5:05:d6:ff:e4:df:22:1f:
7e:27:85:9a:f3:03:7a:34:ec:1d:cf:09:08:32:fc:
a3:4f:0b:98:08:48:07:c9:29:6d:f9:01:4d:8d:9d:
a1:3d:8e:01:8e:bb:9c:a5:1c:bc:81:fc:11:14:b6:
a2:f3:fa:0f:c8:24:18:80:d2:ed:b7:be:cf:c1:0a:
ae:14:0d:5d:da:fa:8f:30:c7:50:3c:69:60:e7:44:
fa:c5:cd:9b:1b:08:b3:2e:5d:c4:ec:14:79:51:53:
53:6e:41:d4:4c:25:19:a8:02:2b:0d:b4:03:ad:a1:
12:1a:6f:a9:c3:0f:fe:78:26:7c:94:a5:47:03:29:
a1:02:ea:47:ea:5b:a1:c6:13:9d:7e:9c:79:3f:81:
96:b6:42:75:86:47:67:cc:d2:56:b6:99:1c:37:8a:
65:31:de:03:37:4b:9a:46:8d:6e:86:d3:cf:b8:5f:
ee:73:5b:d1:92:f7:e6:a0:ed:e4:b8:08:f2:90:d7:
45:6f:f9:29:82:14:5e:09:1d:15:f0:7b:ad:0b:01:
b6:ad:35:2a:7d:5d:41:da:d1:81:50:a2:3b:bf:c0:
d6:2c:8b:a2:67:bc:60:10:84:57:f6:dd:f4:34:a0:
b6:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:7A:39:F1:A0:39:E3:08:D3:9E:8F:A9:91:A1:59:47:3A:37:89:03
X509v3 Authority Key Identifier:
keyid:4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:0a:fb:dd:99:08:d0:25:df:b2:15:72:35:7b:0d:54:35:ed:
08:a0:cc:25:3b:cf:dc:9f:93:54:25:0b:52:a3:56:27:00:2a:
6d:71:84:fc:7d:a3:25:d0:c9:19:71:77:49:4b:23:35:ed:45:
65:84:94:c6:ea:fb:cc:a9:1d:71:b4:72:02:80:67:61:03:3d:
98:9f:99:d9:d8:54:ee:ba:d9:7c:47:e8:97:4a:f6:9e:8e:6a:
43:8f:f8:e1:f2:06:ec:c2:59:19:96:b1:6b:83:a2:46:bf:8e:
1e:54:17:36:49:66:28:b3:6f:4f:54:64:fd:ea:82:c6:b9:4d:
e6:79:30:32:ed:c7:e9:cf:fa:8c:dd:8a:08:7e:10:75:bc:33:
7a:d7:ac:5c:7a:aa:8f:03:50:c2:b7:bc:9f:a4:8b:5c:e1:ff:
0d:c2:35:55:ee:cd:55:17:a3:af:bb:82:bc:55:08:b1:65:bf:
31:8d:99:c4:92:6d:85:a4:f9:30:76:43:43:9e:1b:b8:06:3f:
04:59:7f:d2:f4:85:58:77:4d:75:13:77:86:a3:97:65:dd:1a:
71:d4:0d:d9:78:b0:ea:21:45:01:37:d6:90:33:de:10:95:64:
a1:a0:ed:5f:85:21:da:d8:69:75:3f:4d:fa:6b:38:37:a6:86:
1e:8d:b8:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:51:17 2025 by rpki-client