Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
File: tJvYTaF5l8uyhq-QIqsuBboItEI.mft (raw, json)
Hash identifier: hhb7l9KU/hLWjCo940kFMqFhgXJlqeSKGJUcAW+tGq8=
Subject key identifier: 4B:B9:E4:A0:9B:2C:BE:9D:2A:71:15:DF:09:E8:90:AA:4B:FD:F6:84
Authority key identifier: B4:9B:D8:4D:A1:79:97:CB:B2:86:AF:90:22:AB:2E:05:BA:08:B4:42
Certificate issuer: /CN=b49bd84da17997cbb286af9022ab2e05ba08b442
Certificate serial: 01992E59E01DE2CEE196C87E0076A0EADA61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
Manifest number: 11D7
Signing time: Tue 09 Sep 2025 12:01:05 +0000
Manifest this update: Tue 09 Sep 2025 12:01:05 +0000
Manifest next update: Wed 10 Sep 2025 12:01:05 +0000
Files and hashes: 1: 1-PqW8UmiSaov5LQilBVWMK5ZalY.roa (hash: TOVF5pxyQFktaD7ChGQ0pQzpTOW/D5b1AiH6KqbdxuQ=)
2: ZKaLH1RF9q1E6524_CLGwNAeKPU.roa (hash: NYm5o8T+AXl6BoN5iWRobD4OTRMc9uAM7u/9BRILK/4=)
3: ha1PymC_B_zTg0OwXLf43i7WRKI.roa (hash: z4Cqq5RFMdzMGYB6DSPs12v+LmKU0agJDhruZGZUpmY=)
4: tJvYTaF5l8uyhq-QIqsuBboItEI.crl (hash: TIVpY+90q9TRX15xS/107bxZEGQAXX0GzxExKWvckfU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 12:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2e:59:e0:1d:e2:ce:e1:96:c8:7e:00:76:a0:ea:da:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b49bd84da17997cbb286af9022ab2e05ba08b442
Validity
Not Before: Sep 9 12:01:05 2025 GMT
Not After : Sep 10 12:01:05 2025 GMT
Subject: CN=4bb9e4a09b2cbe9d2a7115df09e890aa4bfdf684
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:41:79:8b:3f:e1:b0:7b:42:f7:be:63:71:41:
59:b3:62:81:e6:e8:cd:e9:ee:d5:f3:9c:69:1d:54:
bd:76:22:d3:11:bf:47:7f:52:68:2e:dc:26:9d:15:
ba:c4:fc:e5:62:0f:ae:de:c8:7a:19:1c:b4:18:e8:
da:a0:9d:95:3d:db:f6:d8:2f:5d:0d:f0:58:08:e3:
a9:9d:e6:0b:2b:95:bd:88:82:19:c4:76:2e:01:a6:
ed:99:ad:dd:b4:87:2f:e1:f5:0c:e0:f4:85:15:51:
d8:64:82:de:d9:cd:65:f8:4e:04:b3:b7:02:52:f8:
65:a1:62:ff:ff:18:e3:22:78:15:b9:b5:f5:d1:dc:
09:97:80:fe:4f:98:6b:f1:73:d9:a6:fc:96:cf:a7:
11:45:3f:46:1a:76:05:9d:a7:18:18:bd:d1:0f:2a:
f3:e3:c4:f6:fe:05:80:0e:85:76:09:5a:7e:17:63:
f1:2c:71:eb:43:5e:dd:84:6a:b0:4c:7d:e0:14:87:
31:1e:32:b1:8f:45:85:cd:2b:f7:9a:75:12:51:85:
04:b9:19:01:3f:8a:f2:7e:1c:d2:eb:fc:93:71:85:
da:5b:3b:e1:91:4a:0a:e3:fe:89:5a:90:93:f8:b0:
e3:65:9f:55:0f:36:95:7d:af:66:fb:1f:cc:c6:6d:
52:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B9:E4:A0:9B:2C:BE:9D:2A:71:15:DF:09:E8:90:AA:4B:FD:F6:84
X509v3 Authority Key Identifier:
keyid:B4:9B:D8:4D:A1:79:97:CB:B2:86:AF:90:22:AB:2E:05:BA:08:B4:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:46:75:cb:e0:b3:6c:52:71:ce:aa:4f:f9:6b:c4:5e:36:a0:
a7:90:4f:60:95:6a:17:f4:bf:ba:0d:94:6a:a3:13:e0:af:c4:
3c:0d:a4:cc:95:8a:7d:b4:b8:d1:f9:07:b4:a4:c4:2e:51:ba:
83:8d:aa:37:20:58:6a:22:b7:8d:ef:2b:dc:68:fd:2c:62:0b:
14:d5:3f:f2:f5:ed:2a:49:7e:0c:fb:c7:07:52:85:8f:c7:f3:
1f:4b:22:ec:cd:0b:72:51:45:87:86:3e:d5:41:e1:4f:c5:48:
a9:8f:fe:ab:89:1a:c2:56:d3:94:16:49:49:61:0a:b2:b0:44:
b8:79:31:ec:55:8f:d3:d1:8a:b7:00:3c:6f:06:52:b7:b3:52:
d3:22:0d:79:68:fd:bd:9a:62:a4:63:60:4f:fa:e6:37:7d:15:
0e:be:e2:fd:09:65:fb:0c:57:ef:36:1c:1d:39:b0:3c:d3:50:
59:fb:4d:fb:b7:75:d3:a9:ab:4a:e9:c1:7c:f9:ca:09:6a:40:
b3:b5:7b:6f:19:f5:7a:0d:f9:87:22:d3:1b:89:af:e2:a4:a3:
12:69:86:c6:f1:1a:99:af:35:77:71:3c:8c:f2:f3:4f:06:7b:
d2:64:ea:20:10:e0:2b:c1:50:29:f5:57:d6:b3:30:9d:a4:d4:
36:3d:7c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 18:02:05 2025 by rpki-client