Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
File: ThXfaIw66uP2he1Es5bCGYOVhh0.mft (raw, json)
Hash identifier: ngcA5Z8cC7YUf+4navAd0vmmnsBumcLhrpZ/CR+58VA=
Subject key identifier: A5:EC:4A:6E:F9:5F:A4:FC:14:41:39:17:04:3C:7B:DF:E9:4D:19:4F
Authority key identifier: 4E:15:DF:68:8C:3A:EA:E3:F6:85:ED:44:B3:96:C2:19:83:95:86:1D
Certificate issuer: /CN=4e15df688c3aeae3f685ed44b396c2198395861d
Certificate serial: 019A300F18295674E3EE284C15B11C4EF095
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
Manifest number: 0CA9
Signing time: Wed 29 Oct 2025 13:01:26 +0000
Manifest this update: Wed 29 Oct 2025 13:01:26 +0000
Manifest next update: Thu 30 Oct 2025 13:01:26 +0000
Files and hashes: 1: B5ArzT5S5sMxKfyjCyP1n1jxI-I.roa (hash: GYazD0XUED0Lzoqp0JRsmv1Wdv3MWiNL0orAYJkGs0s=)
2: GTFBgv2tNjcuxAQIe01brH4jwTk.roa (hash: Mc8ui7CXRHASlbfIuKweFLL2cR+DG52g7wgx3xsTD/U=)
3: MVWQHZ7poQZSNaxcXHSkE1cM3ac.roa (hash: tbC0zEQlc9n1vwOMWAcwfJO+Pz8J+NOLSdpR6f+1vt4=)
4: O3hDDk3KVwYQ27PzrJrQnkhzm2c.roa (hash: 26ASWYXIYWl4pMgLslZt4gAIOookNy9gQcidU1izy+I=)
5: SeVKeWDlifWewWLGV-ux3X3eP-U.roa (hash: iAr3BiSouxw0/1U0gfsb+0eTpsmeqPEqcNVOd7duq/I=)
6: ThXfaIw66uP2he1Es5bCGYOVhh0.crl (hash: 6fwL7yQ8wSJMPf673tGmAQhVJPcw1Vav2ltGm2/9WZk=)
7: VP-hz1rx2nlz5DLyKObO4ZVhOpM.roa (hash: OfQxpz1wsxm2W2m9x0OXY3aGOD+jsnKHtfm8qwqJi4M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 13:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:30:0f:18:29:56:74:e3:ee:28:4c:15:b1:1c:4e:f0:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e15df688c3aeae3f685ed44b396c2198395861d
Validity
Not Before: Oct 29 13:01:26 2025 GMT
Not After : Oct 30 13:01:26 2025 GMT
Subject: CN=a5ec4a6ef95fa4fc14413917043c7bdfe94d194f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8a:f4:ed:a5:c8:9a:80:0a:bf:7a:fc:8b:ac:
03:f3:fb:78:da:e4:11:b9:8f:c4:2d:54:cd:dd:01:
b5:81:90:65:e6:2a:cc:1d:e1:2b:92:13:87:6c:7e:
52:26:46:e3:1e:3f:15:e9:cd:c6:d9:e8:47:93:ac:
64:82:39:52:d2:f5:3b:58:65:ab:6f:57:29:85:83:
15:e5:0a:15:78:21:fa:26:b8:2c:30:de:27:79:14:
18:67:38:bd:49:d2:6f:66:36:cf:52:65:a7:e1:2b:
20:af:9e:5b:d5:81:10:fa:22:18:ba:e9:fa:ef:3c:
2f:c1:ca:c0:04:1f:16:22:04:ec:6a:d3:64:32:57:
0b:35:31:e7:85:af:1d:29:9c:40:da:ac:ec:b4:da:
64:1a:84:85:78:4b:1b:c4:da:f6:da:78:cf:92:0a:
07:41:bb:48:b9:9c:04:1d:b7:ff:e4:ba:c7:9e:16:
6a:2f:6e:7f:de:68:53:d3:e3:07:6c:0b:32:74:dc:
a3:09:3b:f2:46:fa:b4:f5:9e:88:84:69:7c:29:a3:
9f:63:38:85:50:4a:0e:90:1f:be:45:fe:73:16:b7:
2c:d4:91:aa:e8:c8:8b:87:0f:80:9b:65:f1:46:ff:
7a:16:66:78:0c:f7:36:cf:21:ed:36:a9:59:94:99:
f3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:EC:4A:6E:F9:5F:A4:FC:14:41:39:17:04:3C:7B:DF:E9:4D:19:4F
X509v3 Authority Key Identifier:
keyid:4E:15:DF:68:8C:3A:EA:E3:F6:85:ED:44:B3:96:C2:19:83:95:86:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:17:79:f1:4b:ef:15:81:13:0c:0a:64:8d:5c:32:6f:d5:40:
6f:b1:b0:42:9f:2d:12:5b:c8:ba:3d:f4:8f:09:89:6a:33:8d:
47:a8:cf:5b:15:24:38:6d:1f:ca:2c:59:51:e5:76:35:18:cd:
b4:b2:87:15:d2:a9:fd:2e:e1:49:e8:b8:4a:9b:88:87:45:57:
d2:81:0e:46:42:dc:41:8d:7b:50:e4:8e:65:51:10:3b:ee:28:
03:a0:30:cc:6e:29:e7:2c:44:4b:45:14:1f:1a:69:eb:ff:d0:
f0:7e:18:53:d6:3b:db:00:6e:ab:8b:dc:fb:75:7d:61:c9:d8:
2c:65:2c:7d:ab:1a:8b:2f:bd:51:ad:ab:dd:f0:66:9e:32:1a:
16:20:11:dd:9a:06:52:d4:ad:43:42:28:23:35:30:0f:42:09:
4c:02:ac:32:50:53:c0:6a:23:5a:1e:2c:dd:6b:38:5e:f6:69:
24:5b:fe:79:58:3d:a4:0e:f1:ef:fe:68:f1:e7:64:5f:80:c9:
93:5a:50:6b:69:9d:53:52:76:c1:f1:36:6c:23:11:2b:aa:9b:
c3:26:f4:17:3e:4a:3d:95:5b:4b:81:a6:fe:bf:cc:26:85:75:
af:e1:36:d7:28:ee:e5:4b:d6:16:9a:35:f3:1d:7e:12:b1:52:
bb:f2:55:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 22:45:05 2025 by rpki-client