Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
File: _TSxP72Tgd-Exofwa80HTkp1WAM.mft (raw, json)
Hash identifier: 4mIzNEuNsct8uoIQNNLlUXhcJZv7H/Brx8S1lm9b6uE=
Subject key identifier: 1B:9B:34:3B:3B:72:47:6A:5D:7C:B2:F3:60:C1:57:B2:21:94:94:52
Authority key identifier: FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03
Certificate issuer: /CN=fd34b13fbd9381df84c687f06bcd074e4a755803
Certificate serial: 019A71B7986105F091B8797079E5B38EF0A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
Manifest number: 171D
Signing time: Tue 11 Nov 2025 07:00:48 +0000
Manifest this update: Tue 11 Nov 2025 07:00:48 +0000
Manifest next update: Wed 12 Nov 2025 07:00:48 +0000
Files and hashes: 1: 0BpZrCwCrh0nhCnBWsTx8npHw5Y.roa (hash: dghoAHC17Ez/jlFwmLW4wwi4h/yLfo/iz9cDa/mgf8U=)
2: _TSxP72Tgd-Exofwa80HTkp1WAM.crl (hash: wjbArlasaKzaHp/6Sol+r7LLLWmx1eTq5yUn2lVyhyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:98:61:05:f0:91:b8:79:70:79:e5:b3:8e:f0:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd34b13fbd9381df84c687f06bcd074e4a755803
Validity
Not Before: Nov 11 07:00:48 2025 GMT
Not After : Nov 12 07:00:48 2025 GMT
Subject: CN=1b9b343b3b72476a5d7cb2f360c157b221949452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:42:5a:c1:28:26:1b:12:d1:e4:ac:b3:e8:08:
38:de:26:fc:18:d2:36:98:48:cc:89:38:b2:8e:c6:
93:b3:97:dc:08:90:bb:e4:d6:06:bf:a8:32:29:25:
9b:91:01:8d:ad:a2:e8:63:5c:72:66:1f:04:51:92:
b4:62:18:f7:8c:9e:d0:74:37:9f:17:29:4d:08:d6:
bc:3f:e2:1c:74:22:f6:76:b9:c4:75:7c:b0:f5:8a:
66:fb:eb:c1:0b:cc:61:72:ef:29:34:21:00:d3:4f:
b9:02:e2:9a:66:a7:72:b7:f7:c9:c5:b2:0f:fe:53:
d4:36:25:19:06:0d:22:f4:df:64:73:38:97:86:90:
54:27:3a:f1:cf:40:20:70:62:01:54:83:9d:f2:01:
de:e2:3a:3b:8b:17:72:22:c1:23:84:10:5c:55:0d:
3d:b5:88:7b:62:4e:20:20:81:79:82:97:72:f3:b5:
0b:cf:3d:2b:0c:73:e7:d8:ea:d3:cd:6f:d5:e0:ca:
f8:99:2b:65:a9:e7:66:f7:56:a9:c9:91:e6:aa:4c:
d6:02:e7:cf:39:d5:ab:f6:6b:1f:98:40:07:e9:5f:
15:91:d9:e8:22:ad:3a:69:c6:74:76:36:16:b5:33:
a0:89:1e:e4:eb:02:56:79:5b:f1:35:1b:98:35:3e:
78:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:9B:34:3B:3B:72:47:6A:5D:7C:B2:F3:60:C1:57:B2:21:94:94:52
X509v3 Authority Key Identifier:
keyid:FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:50:5b:83:47:df:5f:d1:68:7c:28:54:1c:28:ef:ab:2d:ec:
34:0f:77:46:4f:66:a1:47:65:2c:e2:fc:51:b2:1e:18:ec:fc:
03:4c:6e:88:0c:8b:c6:47:36:95:0e:b5:4b:c4:77:74:60:46:
c6:7d:e0:c5:3b:cc:3b:6c:b1:0b:9a:d0:54:73:1b:bb:5c:fd:
96:c1:87:53:1c:af:7d:b7:f9:84:30:09:f0:33:f7:e6:05:3b:
01:8b:d1:8f:07:d7:16:62:e2:af:1c:82:ea:02:91:15:5e:92:
81:91:19:40:68:55:84:b9:c4:75:f5:73:df:2e:04:72:0d:18:
dc:f4:57:02:4d:97:62:36:82:ba:4a:ce:2a:5f:0d:e6:70:a1:
1f:2f:3b:76:e2:83:c3:2b:4b:2d:df:87:45:0f:4b:5c:6e:b9:
c3:8c:f5:15:2c:33:65:b3:a4:19:5d:3c:30:a9:66:48:b9:58:
f9:94:fa:db:49:4e:d6:15:46:df:4f:cc:55:d3:bb:09:0e:80:
00:41:bb:26:07:6b:2f:56:6a:12:c8:93:32:41:53:dc:c4:3d:
f9:3d:02:6b:d7:60:87:21:08:94:af:7b:78:3f:65:8b:e4:c2:
51:36:cb:bd:18:18:e4:74:14:fb:de:f7:3c:8f:ef:9f:a2:ab:
07:f8:ff:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:58:41 2025 by rpki-client