Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
File: tpHQC9tiauVzB9XNTord2UdWgLM.mft (raw, json)
Hash identifier: BWx6e9/ipjrhQmYu2pYQCE/D1EPmh2fhY8hsSLTwI5c=
Subject key identifier: 10:C6:E4:D1:58:35:BB:F8:CC:20:9B:2C:5D:25:18:1F:6B:25:A2:58
Authority key identifier: B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
Certificate issuer: /CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Certificate serial: 019A7293E95FAF42588EF05A495EA4C0AA10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
Manifest number: 0FF3
Signing time: Tue 11 Nov 2025 11:01:27 +0000
Manifest this update: Tue 11 Nov 2025 11:01:27 +0000
Manifest next update: Wed 12 Nov 2025 11:01:27 +0000
Files and hashes: 1: AQvnwjdpCCJVGghqg0nwe9L0mVk.roa (hash: lmMkrxQHgFH9/tCkdiNxxBNSfZZ+AeKUjyZG6YnOW/4=)
2: tpHQC9tiauVzB9XNTord2UdWgLM.crl (hash: EqfVnK5O0NhmovJrF9SXc7lUWQ1ig/Qf0OPyKlQ4C3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:e9:5f:af:42:58:8e:f0:5a:49:5e:a4:c0:aa:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Validity
Not Before: Nov 11 11:01:27 2025 GMT
Not After : Nov 12 11:01:27 2025 GMT
Subject: CN=10c6e4d15835bbf8cc209b2c5d25181f6b25a258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:33:f6:9e:c8:12:08:0e:75:a3:e1:c2:d2:7a:
6e:14:e4:b1:61:ae:e2:31:4d:6a:64:f0:26:34:3b:
11:71:bb:dd:60:04:ed:b8:c5:d8:70:f8:ee:d2:39:
52:2e:2e:8b:04:40:7a:3c:ab:91:3b:1b:b7:85:c2:
18:19:7d:ee:eb:a5:ee:47:90:05:23:9d:99:b5:d3:
41:e3:3f:8b:20:d5:c6:40:31:09:cc:fd:9b:eb:8c:
a5:72:5a:83:b6:e0:75:1b:30:64:75:5b:a0:f4:ea:
ec:e9:c8:a5:d3:bb:75:dc:31:25:15:72:38:04:d2:
6f:eb:99:a4:8f:88:76:03:eb:84:f3:82:22:aa:86:
06:9a:b3:6e:cb:0c:c2:75:c4:6e:5c:29:4c:b1:97:
02:fd:21:1c:d3:90:5d:de:db:31:70:bd:63:59:3d:
ce:27:95:26:ba:70:fb:bf:1b:43:ee:09:79:b4:cd:
1a:81:07:bd:2c:8a:8b:12:68:86:9a:20:85:3c:75:
5f:34:71:18:60:95:49:9c:97:a7:a5:8f:47:eb:e6:
e0:0e:89:7d:0b:0e:0d:5e:c2:9c:55:01:80:25:ed:
5a:d7:5e:ce:88:3b:34:6b:45:e3:72:1d:67:53:c4:
0d:25:27:b5:f3:56:cf:de:e1:d5:7c:ff:76:37:56:
f2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C6:E4:D1:58:35:BB:F8:CC:20:9B:2C:5D:25:18:1F:6B:25:A2:58
X509v3 Authority Key Identifier:
keyid:B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:82:3b:7e:96:0c:66:5c:8b:ff:ea:75:2d:90:d4:0b:15:c8:
56:e4:84:7e:ca:50:6d:44:b1:f9:76:21:d2:ef:c1:10:ed:47:
a0:f0:00:f6:7d:34:96:0b:3c:06:6d:43:13:40:d5:98:d3:0f:
aa:3f:73:9c:b1:e3:16:f2:1d:0a:cb:7c:e9:a3:ea:62:04:c1:
58:24:43:9a:30:c2:d1:9f:f4:cc:00:14:a2:bd:61:82:18:de:
ee:9f:e8:11:c2:6a:ad:ad:dc:13:7f:2f:0a:16:9a:51:98:ea:
b6:20:f0:78:fe:68:25:e4:91:0f:0d:5a:cf:9b:f6:31:d6:8f:
d3:5d:e1:81:b6:c8:29:e9:7b:a6:ef:c3:5f:f5:58:a1:de:50:
3f:85:7f:2d:f9:8e:09:23:b0:0c:89:2a:41:a8:4c:c4:5b:7d:
a4:94:97:49:f9:c8:58:f5:7e:07:69:64:00:cf:b0:06:0f:79:
32:de:05:31:21:96:1b:a1:ed:ea:da:e7:60:d2:72:09:40:91:
91:ac:fe:4a:58:27:99:7b:5f:7d:db:ab:29:27:fa:ec:1a:df:
73:bb:60:6d:71:cf:da:c8:56:84:95:87:ea:51:93:2f:90:e6:
ff:ca:28:42:fb:ec:1c:19:79:8b:11:1d:ae:71:cb:48:f6:ad:
ca:24:1d:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:09:43 2025 by rpki-client