Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
File: tDuXodIfY3tUkTDwhXpoHMf2iEw.mft (raw, json)
Hash identifier: 9JfT/jrRypLGa2GfS6vD4/ZZPGx/TWQg26ryVl/W0E4=
Subject key identifier: FD:C1:72:7D:3C:6F:E1:D7:E2:29:B2:5B:90:DA:63:E5:3D:60:EF:C6
Authority key identifier: B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
Certificate issuer: /CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Certificate serial: 01993123DF0AD4F656B6A3CC2593B3BFF65C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
Manifest number: 1679
Signing time: Wed 10 Sep 2025 01:00:58 +0000
Manifest this update: Wed 10 Sep 2025 01:00:58 +0000
Manifest next update: Thu 11 Sep 2025 01:00:58 +0000
Files and hashes: 1: 3-CNHKGdJXMpTXntAh-s3qj--cM.roa (hash: 2BpPHYt1k/l10pBcIexz0ktK+xFvs5F87gVofFcEgls=)
2: tDuXodIfY3tUkTDwhXpoHMf2iEw.crl (hash: dpFMxzs+go/fa6gO+Nv9QOHIlK8v8QqtRJLkSjcVpLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 21:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:23:df:0a:d4:f6:56:b6:a3:cc:25:93:b3:bf:f6:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Validity
Not Before: Sep 10 01:00:58 2025 GMT
Not After : Sep 11 01:00:58 2025 GMT
Subject: CN=fdc1727d3c6fe1d7e229b25b90da63e53d60efc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d3:f4:86:00:fe:48:a9:4a:c0:4e:26:08:0f:
a6:f8:48:e3:05:1d:2a:fa:2d:c4:12:41:f0:88:77:
ce:c7:08:d3:70:32:40:8f:ac:2e:1c:1c:57:56:08:
fe:bd:ee:94:ee:7f:0e:1b:cd:0d:af:82:a5:67:35:
d7:79:b0:d4:06:84:f2:2d:46:7a:b3:7b:f0:97:62:
7e:b6:75:77:8c:78:24:20:43:4b:bd:95:0a:da:fe:
f8:59:5f:e2:5d:61:e2:63:5c:29:9c:2e:1e:95:d3:
e5:57:be:24:cf:3f:28:b7:88:22:ea:90:d4:8e:f2:
c9:dc:79:e6:b8:bd:55:88:50:94:f7:e5:94:41:d0:
e7:9d:fe:f8:37:0c:d5:4b:d5:81:38:9b:76:cc:7e:
45:99:2f:0a:4a:c3:c7:62:e2:fb:8f:03:ce:8d:21:
22:e3:c6:fc:6b:d1:04:4f:6c:22:af:b0:a0:06:e0:
20:38:9b:23:c0:63:d2:90:04:50:69:4c:10:3f:8e:
4f:86:3d:af:7a:ab:63:4c:21:fa:63:dd:b8:b3:b7:
ce:99:ad:9d:a8:fb:c0:2b:84:38:25:ca:68:93:8e:
f8:dc:ae:3e:a9:1f:99:5a:f8:35:34:9b:80:e3:f8:
ef:b6:b9:93:dd:4e:63:18:36:65:f1:6e:2b:11:ed:
a3:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:C1:72:7D:3C:6F:E1:D7:E2:29:B2:5B:90:DA:63:E5:3D:60:EF:C6
X509v3 Authority Key Identifier:
keyid:B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:a2:74:fd:90:66:c8:57:8b:19:55:1c:95:b8:ba:25:cf:97:
ec:ff:76:3f:a4:97:63:26:10:cb:b9:71:5e:5e:1c:9b:7d:4f:
8e:b6:ed:84:67:41:e8:92:4c:67:9c:00:83:b8:eb:18:59:aa:
6b:58:39:16:ff:5c:62:f5:1c:8a:c8:76:3b:dd:89:75:0a:46:
58:28:91:0a:9f:f4:c2:8d:9c:8e:e8:3e:56:ca:8b:eb:37:df:
4a:6f:97:09:3d:44:47:87:95:66:cf:8b:c1:d2:b0:f9:18:d1:
ff:da:7d:4d:ff:f5:f4:36:2c:36:97:a4:cd:38:b6:5c:e3:fb:
a7:e6:46:a1:9a:83:2e:0e:fa:15:5a:16:77:ac:10:10:4a:63:
1b:69:88:69:7e:6a:be:3e:0f:93:93:d4:eb:3c:86:8a:88:54:
69:c5:62:26:78:b0:e1:32:39:4b:13:d3:eb:01:01:ce:1a:c2:
e2:58:7b:47:d9:e0:6f:95:b4:bb:80:f4:2b:05:de:ec:8d:12:
4d:ef:ef:2a:10:cd:3b:13:df:1d:a5:ad:6d:8b:7c:4c:f7:4a:
fd:7c:35:af:f3:1d:1d:e2:66:26:0b:55:b1:c5:e7:05:ef:75:
19:68:90:28:a0:7a:93:91:e3:d5:eb:c9:34:3c:16:1a:1f:2d:
25:f0:e9:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 03:36:50 2025 by rpki-client