Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
File: tpHQC9tiauVzB9XNTord2UdWgLM.mft (raw, json)
Hash identifier: sRKJg+FkqmA988s/grw0FErAf31XrXkqY6llPeRXXLg=
Subject key identifier: 37:17:4E:AC:B6:2C:6F:33:24:61:0C:AE:D7:0C:AE:76:CF:0A:03:CE
Authority key identifier: B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
Certificate issuer: /CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Certificate serial: 019916F6317F697762E8B66233BA642E32B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
Manifest number: 0F3F
Signing time: Thu 04 Sep 2025 23:00:57 +0000
Manifest this update: Thu 04 Sep 2025 23:00:57 +0000
Manifest next update: Fri 05 Sep 2025 23:00:57 +0000
Files and hashes: 1: AQvnwjdpCCJVGghqg0nwe9L0mVk.roa (hash: lmMkrxQHgFH9/tCkdiNxxBNSfZZ+AeKUjyZG6YnOW/4=)
2: tpHQC9tiauVzB9XNTord2UdWgLM.crl (hash: SFo0wfl+JjDjQ44uT7EP0Mdk8Nv2doZTQYad2z0w+1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:f6:31:7f:69:77:62:e8:b6:62:33:ba:64:2e:32:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Validity
Not Before: Sep 4 23:00:57 2025 GMT
Not After : Sep 5 23:00:57 2025 GMT
Subject: CN=37174eacb62c6f3324610caed70cae76cf0a03ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:81:54:23:4a:17:84:1f:0a:c7:5d:50:5c:9d:
16:f8:ae:2a:64:4f:83:80:57:a9:92:c9:87:f0:38:
e5:c7:8c:b5:d9:36:f3:80:fe:64:9c:8a:0f:d1:68:
3a:93:f1:36:0d:e0:53:84:68:1e:7f:ed:79:93:1d:
34:50:a3:c1:df:ed:73:31:f0:a2:39:36:be:0b:8e:
c2:6c:b6:ba:dc:dc:02:8c:e2:9d:5a:8d:b2:36:3d:
d4:3d:a1:89:89:5d:b3:eb:5e:3e:24:d1:44:db:e6:
43:53:bc:7f:63:62:ab:16:32:8b:8a:a0:98:bd:b5:
4f:75:df:4f:91:cf:35:8f:07:99:12:62:86:a8:b1:
39:0d:c2:9a:0c:8b:25:eb:d3:65:dc:ab:4a:41:29:
38:ba:80:d3:95:2f:64:e9:5c:08:6e:7f:48:7d:d0:
87:35:65:c5:ea:af:66:6b:09:5d:36:bf:a2:0c:fd:
18:4e:d7:ac:2b:9b:70:a6:56:7b:fd:89:05:ac:d3:
1e:3c:14:85:d4:e0:83:d5:52:be:18:25:10:01:da:
00:c5:06:34:f2:e2:68:f3:60:2e:31:8b:16:0a:d6:
20:27:9e:e2:0d:80:c5:b7:9e:47:6a:87:28:3d:f3:
a4:f6:f1:1f:44:cf:74:b4:49:6d:95:59:5d:57:bf:
b3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:17:4E:AC:B6:2C:6F:33:24:61:0C:AE:D7:0C:AE:76:CF:0A:03:CE
X509v3 Authority Key Identifier:
keyid:B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:9a:8c:51:66:e6:a0:e9:43:78:cf:bb:17:c4:5c:42:f6:9e:
24:50:15:c6:6a:70:88:e1:82:f3:18:46:2f:69:ee:98:a9:29:
0b:ae:f1:8d:b8:82:89:91:0d:cb:a8:c1:a9:6b:7a:f7:1b:04:
b9:73:36:3c:65:93:38:ae:03:8f:e4:e2:7a:6c:b1:bc:32:2c:
54:35:26:61:53:c2:4f:47:02:16:98:1a:32:29:e9:a1:28:b2:
9b:44:11:b9:5a:9a:f8:e2:e3:3a:f8:b0:af:31:e2:89:85:77:
e6:14:f6:11:49:d1:7c:58:18:40:ed:ab:dd:4d:38:e2:c1:6e:
e5:54:29:09:2c:e6:26:39:d8:36:43:84:02:c3:fb:08:c7:72:
31:e4:5d:ab:dd:5c:af:bf:6b:6c:63:24:56:10:80:54:be:aa:
cd:d7:7a:d0:55:db:3c:d3:a6:eb:84:44:b6:0d:23:6e:f7:27:
24:f5:d2:20:08:3b:ca:de:79:92:c0:b3:26:93:86:15:e4:40:
39:70:92:57:39:43:c1:28:75:70:95:7c:15:fb:17:f0:74:18:
a8:8c:46:0f:1f:69:7e:b3:9e:12:54:34:c0:2f:a6:8c:2b:f9:
1d:79:98:74:5e:a2:89:d2:5b:36:74:f4:5c:e0:cb:5b:bc:24:
a7:e9:bb:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkW9jF/aXdi6LZiM7pkLjK2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2OTFkMDBiZGI2MjZhZTU3MzA3ZDVjZDRlOGFkZGQ5NDc1
NjgwYjMwHhcNMjUwOTA0MjMwMDU3WhcNMjUwOTA1MjMwMDU3WjAzMTEwLwYDVQQD
EygzNzE3NGVhY2I2MmM2ZjMzMjQ2MTBjYWVkNzBjYWU3NmNmMGEwM2NlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4FUI0oXhB8Kx11QXJ0W+K4qZE+D
gFepksmH8Djlx4y12TbzgP5knIoP0Wg6k/E2DeBThGgef+15kx00UKPB3+1zMfCi
OTa+C47CbLa63NwCjOKdWo2yNj3UPaGJiV2z614+JNFE2+ZDU7x/Y2KrFjKLiqCY
vbVPdd9Pkc81jweZEmKGqLE5DcKaDIsl69Nl3KtKQSk4uoDTlS9k6VwIbn9IfdCH
NWXF6q9mawldNr+iDP0YTtesK5twplZ7/YkFrNMePBSF1OCD1VK+GCUQAdoAxQY0
8uJo82AuMYsWCtYgJ57iDYDFt55HaocoPfOk9vEfRM90tEltlVldV7+zBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDcXTqy2LG8zJGEMrtcMrnbPCgPOMB8GA1UdIwQY
MBaAFLaR0AvbYmrlcwfVzU6K3dlHVoCzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHBIUUM5dGlhdVZ6QjlYTlRvcmQyVWRXZ0xNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8zZTNkMDgtZTRjNS00ZjNkLWJlMDEt
NDUwYWQ1NWQzMjVhLzEvdHBIUUM5dGlhdVZ6QjlYTlRvcmQyVWRXZ0xNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8zZTNkMDgtZTRjNS00ZjNkLWJlMDEtNDUwYWQ1NWQzMjVh
LzEvdHBIUUM5dGlhdVZ6QjlYTlRvcmQyVWRXZ0xNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe5qMUWbm
oOlDeM+7F8RcQvaeJFAVxmpwiOGC8xhGL2numKkpC67xjbiCiZENy6jBqWt69xsE
uXM2PGWTOK4Dj+TiemyxvDIsVDUmYVPCT0cCFpgaMinpoSiym0QRuVqa+OLjOviw
rzHiiYV35hT2EUnRfFgYQO2r3U044sFu5VQpCSzmJjnYNkOEAsP7CMdyMeRdq91c
r79rbGMkVhCAVL6qzdd60FXbPNOm64REtg0jbvcnJPXSIAg7yt55ksCzJpOGFeRA
OXCSVzlDwSh1cJV8FfsX8HQYqIxGDx9pfrOeElQ0wC+mjCv5HXmYdF6iidJbNnT0
XODLW7wkp+m73g==
-----END CERTIFICATE-----
Generated at Fri Sep 5 04:27:24 2025 by rpki-client