Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
File: tMBDnHlVURAtbx5M620cUvvF6j8.mft (raw, json)
Hash identifier: dIX6y3PMM+bejIFGEmkakFMFJ4ZS4Nf3Jwq4spWyVH4=
Subject key identifier: F1:CA:41:CB:C8:B5:1D:EF:5A:2C:B8:D2:24:1A:1E:69:FE:15:A9:AE
Authority key identifier: B4:C0:43:9C:79:55:51:10:2D:6F:1E:4C:EB:6D:1C:52:FB:C5:EA:3F
Certificate issuer: /CN=b4c0439c795551102d6f1e4ceb6d1c52fbc5ea3f
Certificate serial: 0199221F56BEFCAD6EC2C44556B9FB9CB74B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 03:01:43 +0000
Manifest this update: Sun 07 Sep 2025 03:01:43 +0000
Manifest next update: Mon 08 Sep 2025 03:01:43 +0000
Files and hashes: 1: n5jiYoIoGZQqwQOVrCfprt-PApk.roa (hash: MrCF/3iJ71+/LWf1gBDblDTWmF567DIjZvwBvhh1aT0=)
2: tMBDnHlVURAtbx5M620cUvvF6j8.crl (hash: X5d0+Q02bmoEcGo1UI8Lzs8lj4FeUFUIzNeBQMT1gv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:56:be:fc:ad:6e:c2:c4:45:56:b9:fb:9c:b7:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4c0439c795551102d6f1e4ceb6d1c52fbc5ea3f
Validity
Not Before: Sep 7 03:01:43 2025 GMT
Not After : Sep 8 03:01:43 2025 GMT
Subject: CN=f1ca41cbc8b51def5a2cb8d2241a1e69fe15a9ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f8:03:78:be:2b:a0:aa:87:79:8e:50:4e:0a:
f0:b1:7a:ff:16:4c:10:da:2d:d6:40:11:56:f6:54:
cf:6c:0c:64:54:ec:34:82:c8:54:6b:13:0e:c0:14:
b3:01:a8:86:74:34:84:0c:bf:f9:45:7c:c5:2b:aa:
64:72:0a:1e:36:c7:ff:9a:48:c8:9d:45:ec:c8:d6:
5b:3b:f0:61:d6:ad:f4:6b:28:76:bc:35:dd:a8:29:
d6:1c:5a:77:f9:16:91:29:3b:97:1f:bc:7b:e6:ae:
48:f7:88:36:92:5a:71:4f:7e:9f:1f:e9:5a:05:6f:
1c:33:54:a8:b6:8b:6b:ef:0b:d1:ca:2a:55:a1:4a:
60:3b:8f:78:88:c7:93:68:6e:60:f8:d1:c4:8c:d6:
f7:52:e3:ae:59:87:82:19:66:30:6a:ad:94:23:ae:
06:8f:94:75:b9:34:a9:7f:60:71:9b:a7:5c:1b:55:
ae:5e:19:6b:73:79:1b:a5:5e:67:f9:b9:d2:11:96:
0f:01:91:c7:7c:76:20:72:16:ba:e2:15:57:f3:68:
f0:87:f5:78:a8:70:01:61:a7:da:47:5e:da:0b:ad:
29:97:1f:24:4e:db:07:cb:d7:3b:ac:a9:93:88:af:
8b:52:54:4c:6c:c5:01:69:24:e4:23:d6:33:4a:63:
e0:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:CA:41:CB:C8:B5:1D:EF:5A:2C:B8:D2:24:1A:1E:69:FE:15:A9:AE
X509v3 Authority Key Identifier:
keyid:B4:C0:43:9C:79:55:51:10:2D:6F:1E:4C:EB:6D:1C:52:FB:C5:EA:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:38:67:ed:89:9a:ea:2a:c7:1c:b7:c1:1a:03:16:20:72:d3:
31:aa:27:d0:74:3f:e7:29:9e:db:88:51:1c:d4:1d:68:35:12:
5f:d9:24:ae:06:c2:9c:97:71:39:b1:7a:59:59:bf:0a:7e:c4:
1c:fc:da:54:0c:e2:ce:cc:34:87:d4:02:d7:42:94:3c:cc:20:
0a:92:7e:92:14:e2:b3:20:eb:3a:a0:3a:78:88:89:3b:3f:07:
91:3a:0b:83:65:51:73:18:37:c0:7e:f2:71:0f:4b:3d:61:b8:
40:84:89:fa:88:48:58:54:35:a9:49:cc:5c:ab:a4:13:92:28:
3c:b5:9b:7d:36:a0:b6:52:5a:c0:35:0c:96:39:c1:21:22:87:
a8:ea:2c:40:29:7a:22:db:7b:8d:c0:ca:05:a0:db:38:d5:2a:
ea:5d:9e:2b:c7:4e:23:9d:18:66:67:43:3b:cb:b6:01:a1:2a:
34:f6:7c:80:ec:12:91:58:12:c5:c1:89:40:a2:72:45:b4:8e:
9e:3a:a4:87:6f:c2:f5:ef:c2:0f:de:db:3e:6b:6e:da:08:0c:
56:7b:5a:04:98:b2:e8:e5:c4:d1:f6:6f:34:05:c2:52:7f:b8:
3f:01:73:e0:14:8b:91:11:97:51:21:2a:8e:4e:e8:2f:a1:aa:
45:42:c1:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:33:58 2025 by rpki-client