Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json)
Hash identifier: aC79rE4VWbPFhy9ieYhfVLyorGXuCr2dA2P497kteUw=
Subject key identifier: 81:74:AF:A0:91:2C:3E:C5:B1:4F:DD:6E:61:88:4E:23:E2:5D:5B:BB
Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Certificate serial: 019922C3263E101E663E3191BCCC065945A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 06:00:38 +0000
Manifest this update: Sun 07 Sep 2025 06:00:38 +0000
Manifest next update: Mon 08 Sep 2025 06:00:38 +0000
Files and hashes: 1: DvRXNlTCR35yGxJPggKI6LQ1TXY.roa (hash: uCs5edSvBBj2KY6s6HL8wAMD7pMX49G3e3NvxavAQGo=)
2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: TMY8y0ObDxZUQsVvT1I956vQXkVlJYtR471hENl3Xig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:26:3e:10:1e:66:3e:31:91:bc:cc:06:59:45:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Validity
Not Before: Sep 7 06:00:38 2025 GMT
Not After : Sep 8 06:00:38 2025 GMT
Subject: CN=8174afa0912c3ec5b14fdd6e61884e23e25d5bbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:60:be:34:7d:70:ff:19:29:17:4e:ee:5f:cc:
c3:30:f5:d6:b6:5f:77:20:dc:15:16:df:d4:0d:ac:
ce:c3:ef:88:9a:e3:4b:a4:28:2a:44:0a:2c:08:8a:
63:c8:e3:29:9c:7f:ba:5f:d2:b4:22:ba:93:c9:92:
4c:2b:7e:c1:bd:56:36:f2:4b:d7:3d:e3:6b:d9:92:
97:35:71:81:01:b6:ec:95:b9:32:b4:19:12:10:a0:
77:d3:89:30:84:59:9e:ca:0e:4a:ed:7c:02:cf:39:
bc:2b:46:f5:57:68:f3:17:c4:90:28:6f:65:c2:ac:
d2:1b:00:09:74:41:ed:76:bf:2b:c4:38:a5:1f:16:
02:ee:9d:6a:87:c5:a6:5b:6e:84:e9:28:4e:e2:3d:
f5:64:2e:b0:e2:b7:ee:70:ce:0d:e2:07:60:0e:cc:
51:3a:bb:67:47:ab:39:2f:d6:9b:07:8a:9e:96:e7:
10:af:81:05:f4:71:4d:71:d4:0b:48:4b:96:70:de:
c4:d2:3b:16:99:2e:85:18:a9:70:94:13:42:94:fd:
77:e1:df:c6:95:52:ab:7f:0c:aa:0a:28:8c:e2:b8:
0f:09:b9:af:c7:15:62:9e:3f:50:59:d0:b9:0a:eb:
00:61:a6:39:73:a6:e8:7f:d2:b0:dd:06:3b:da:8b:
a7:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:74:AF:A0:91:2C:3E:C5:B1:4F:DD:6E:61:88:4E:23:E2:5D:5B:BB
X509v3 Authority Key Identifier:
keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:38:da:39:b6:b0:23:61:f0:4f:04:f2:1d:e3:6d:4b:6d:f2:
81:5b:07:21:a5:cf:0f:0b:ab:8a:76:19:a2:7a:45:a1:8d:b9:
15:e7:ca:6f:9e:e7:ce:bf:92:da:77:3a:23:9e:9c:49:52:fc:
2b:ab:f8:f1:31:3c:c0:b7:3b:9a:35:b8:8d:e9:05:aa:bb:83:
ee:52:8a:4f:91:cd:79:6e:09:cb:22:76:76:54:7c:87:1d:c5:
e9:73:86:9b:c8:a3:8c:60:fc:17:02:9f:24:05:d4:90:9d:85:
2d:b6:16:c8:ed:61:9b:60:8b:92:fb:6e:a7:4d:0b:be:5b:37:
c0:76:ea:8e:e5:bc:c8:0a:02:dd:71:2c:3f:f6:9a:1a:97:98:
10:89:f9:da:55:c0:ec:86:5d:6e:2f:39:f6:4b:f0:99:9b:3c:
7c:88:bd:e6:3c:78:18:b3:ef:e3:ca:69:03:da:e1:b7:93:8a:
01:49:80:67:24:24:aa:36:86:f8:ab:c6:15:76:89:ef:24:f7:
9c:5a:69:ae:09:6b:dc:20:bc:98:b0:eb:e6:b3:c8:43:37:f5:
78:18:78:3c:95:a7:55:2c:02:d0:55:7f:23:b7:21:cb:93:c6:
a7:06:d9:98:52:f0:fb:64:cb:b5:fc:f9:8d:90:06:80:57:c1:
b4:7e:70:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:26:08 2025 by rpki-client