Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
File: tznE4_6GnZeDui2t9mDczQ-lNwc.mft (raw, json)
Hash identifier: fyvfSFt9VRO+up7OCbTsz+EFiOYeOsSbFBoKER11KNI=
Subject key identifier: 3A:10:8C:87:AA:F8:0F:D6:6B:8E:68:9C:DD:E4:AE:73:CE:B8:E6:80
Authority key identifier: B7:39:C4:E3:FE:86:9D:97:83:BA:2D:AD:F6:60:DC:CD:0F:A5:37:07
Certificate issuer: /CN=b739c4e3fe869d9783ba2dadf660dccd0fa53707
Certificate serial: 019A714A342FC98C652867EE74156876F8AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
Manifest number: 116A
Signing time: Tue 11 Nov 2025 05:01:19 +0000
Manifest this update: Tue 11 Nov 2025 05:01:19 +0000
Manifest next update: Wed 12 Nov 2025 05:01:19 +0000
Files and hashes: 1: XSeQzzLzaRiIssAEaH8bFHtmW3c.roa (hash: 5lhi1fFGQ5t288ymZ18SpahB86WMGs7YGo9rolcKH9c=)
2: tznE4_6GnZeDui2t9mDczQ-lNwc.crl (hash: NlL6McS1LCY1VvisJrgvPdk1es7Q22t6w5XMxMQUWk0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:34:2f:c9:8c:65:28:67:ee:74:15:68:76:f8:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b739c4e3fe869d9783ba2dadf660dccd0fa53707
Validity
Not Before: Nov 11 05:01:19 2025 GMT
Not After : Nov 12 05:01:19 2025 GMT
Subject: CN=3a108c87aaf80fd66b8e689cdde4ae73ceb8e680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:36:88:11:77:a0:b3:3b:a6:55:ec:db:ee:03:
f2:8c:63:6c:a4:81:eb:e0:db:30:d9:a0:1a:be:45:
a5:b9:f7:35:82:7c:cf:ef:1d:ad:9f:94:45:2a:d0:
ec:2a:2d:f1:47:80:b9:3a:02:8b:7f:30:a5:d0:d8:
e8:9e:72:8d:33:ae:ee:5c:02:7e:3c:a2:91:03:cf:
d9:eb:04:ab:0d:9c:eb:ba:05:8b:ad:c7:75:0c:28:
bb:30:34:e4:24:35:5c:3c:0b:be:1f:f2:07:1a:51:
a9:14:f9:7e:af:e4:26:47:89:03:4b:a8:5a:d9:dc:
5a:a8:f8:b8:c8:a5:c7:9c:58:4d:40:39:0b:3a:8f:
f2:1d:57:c4:7f:de:27:34:2c:45:49:f6:8a:f8:56:
09:d0:7b:2d:46:d9:71:42:60:bb:cb:2d:d8:b8:07:
63:f8:58:1a:0e:8b:36:07:5b:48:be:86:4b:44:39:
c3:f0:6a:a4:8a:8f:4d:74:a3:72:ea:23:6a:7e:eb:
14:c1:64:df:bc:7c:2a:11:a9:d1:64:15:72:0c:21:
f8:4c:85:4e:42:b2:4a:25:dc:36:5e:66:66:0d:f8:
2f:f5:bc:6f:d7:2d:78:a4:4d:86:95:d5:36:20:4f:
7f:3c:1a:1c:26:7e:17:67:e0:00:03:d3:8e:25:fc:
1d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:10:8C:87:AA:F8:0F:D6:6B:8E:68:9C:DD:E4:AE:73:CE:B8:E6:80
X509v3 Authority Key Identifier:
keyid:B7:39:C4:E3:FE:86:9D:97:83:BA:2D:AD:F6:60:DC:CD:0F:A5:37:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:6b:e8:af:35:d9:23:0a:38:72:5b:de:3a:47:5b:d6:1b:91:
00:ac:8e:ca:8b:ca:23:1c:93:aa:72:5f:97:ee:3d:f6:13:7b:
f4:2e:af:68:52:91:03:92:07:af:7b:99:b5:b3:31:89:21:d3:
39:6b:f4:c5:ea:5a:ba:52:c3:57:a9:44:ec:83:2b:54:95:09:
0c:90:de:6d:0b:89:bf:24:c1:96:39:95:bb:a5:a3:70:9a:eb:
ef:d4:af:1c:ff:59:98:43:60:4c:19:be:07:7d:b6:06:38:91:
23:7f:ca:22:8e:d4:a6:ec:08:31:79:29:8c:88:a4:23:c3:35:
10:c7:bb:5b:c1:83:c1:04:13:b6:36:17:7b:af:57:5d:b6:e4:
16:c3:de:dd:b9:bd:a8:5e:76:a6:24:be:9e:ee:98:d0:ed:65:
e7:e2:3f:e7:5e:82:d6:1d:14:4f:70:33:ea:18:f5:88:3d:db:
01:4c:8c:5b:e9:fa:7b:b2:93:45:d1:77:a7:86:f1:61:cb:42:
a3:9a:5c:21:18:24:21:ce:95:ef:fe:3c:5c:f5:33:39:b4:61:
d3:43:41:91:ec:4b:43:77:61:70:78:80:bb:df:2c:0f:74:ab:
9a:f1:81:79:cc:f9:c8:2a:e5:60:6d:83:87:93:19:8e:06:7a:
48:55:e2:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:17:32 2025 by rpki-client