Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
File: ttaENqdjOfZxRBz71QrUAdPAD_8.mft (raw, json)
Hash identifier: HKp+nv8+GAnEEyALvT44u2+fu31vdtdF8gTrRcIZ6XA=
Subject key identifier: 51:E4:26:81:16:81:77:47:C9:EC:D9:7C:F8:22:5A:CA:83:4E:18:A0
Authority key identifier: B6:D6:84:36:A7:63:39:F6:71:44:1C:FB:D5:0A:D4:01:D3:C0:0F:FF
Certificate issuer: /CN=b6d68436a76339f671441cfbd50ad401d3c00fff
Certificate serial: 019A7293FAB14628BAB0EB9773937EEB5265
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ttaENqdjOfZxRBz71QrUAdPAD_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
Manifest number: 148A
Signing time: Tue 11 Nov 2025 11:01:31 +0000
Manifest this update: Tue 11 Nov 2025 11:01:31 +0000
Manifest next update: Wed 12 Nov 2025 11:01:31 +0000
Files and hashes: 1: HROKUTUR5gMY3n6zglHSVCbZS_I.roa (hash: w0BOZ7icboJC4/TfINzPR6MRHeR0gZCuXliuxuy25YQ=)
2: ttaENqdjOfZxRBz71QrUAdPAD_8.crl (hash: A8hme30WqY5xotIgniUWkjAxSHd7TVWBL+t1/o7a/zc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ttaENqdjOfZxRBz71QrUAdPAD_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:fa:b1:46:28:ba:b0:eb:97:73:93:7e:eb:52:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6d68436a76339f671441cfbd50ad401d3c00fff
Validity
Not Before: Nov 11 11:01:31 2025 GMT
Not After : Nov 12 11:01:31 2025 GMT
Subject: CN=51e4268116817747c9ecd97cf8225aca834e18a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6c:64:66:22:d5:54:f1:09:7b:5e:5a:9c:e8:
0f:86:d6:a0:90:21:2e:e7:6a:28:c3:f6:61:cf:c2:
fb:d0:47:e9:16:dd:7e:6f:0c:17:cb:65:30:74:0c:
33:3d:01:8c:34:d3:b7:6e:6a:46:21:88:9e:ee:9e:
e6:40:98:72:02:92:8c:83:66:ec:1c:11:8d:bf:9f:
a2:ea:20:e5:2d:1d:c1:3c:28:8c:68:be:98:61:58:
d9:09:07:17:36:69:38:b5:86:52:5b:b9:aa:e4:f8:
7a:b2:8d:cb:85:9b:c3:b6:f9:fd:64:94:f7:96:6f:
81:e0:7a:3d:62:11:45:f6:a2:a4:a7:3b:40:a7:16:
bc:f5:5e:e8:24:49:e3:6f:2f:b8:5e:ac:88:21:97:
ec:19:8b:64:05:f9:14:4c:92:f7:46:3f:32:ac:b0:
cd:9f:d0:86:fe:0c:e0:82:e7:a6:fb:51:90:17:72:
bf:19:e5:25:39:70:ac:b1:94:2d:97:a4:ce:0d:0d:
30:9b:58:61:15:7e:d0:e1:64:e8:4f:cd:6e:c3:5a:
ef:56:af:7a:47:e0:ed:7b:31:40:74:94:43:04:ee:
a6:2b:7c:6d:77:90:0e:7e:62:0a:ea:14:f4:9d:8f:
77:26:06:dd:bc:46:8b:a9:da:23:0f:3e:36:a5:c1:
84:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:E4:26:81:16:81:77:47:C9:EC:D9:7C:F8:22:5A:CA:83:4E:18:A0
X509v3 Authority Key Identifier:
keyid:B6:D6:84:36:A7:63:39:F6:71:44:1C:FB:D5:0A:D4:01:D3:C0:0F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ttaENqdjOfZxRBz71QrUAdPAD_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:11:d6:b1:32:d7:50:e4:86:95:55:22:5e:02:e1:e4:5a:77:
82:82:2b:71:f2:75:b4:f2:c0:c8:31:11:af:56:d0:1e:47:14:
bf:c3:a9:82:e3:c7:f2:cd:39:59:55:68:2f:e7:26:dd:b7:9f:
5a:53:3d:86:a7:da:29:30:31:ee:65:d7:a7:52:a8:90:c0:fe:
85:63:42:5f:fa:d8:69:96:68:8d:07:f3:9f:81:70:80:37:3b:
89:ad:61:42:5a:b2:c7:2d:3b:18:13:56:2f:b3:f1:53:b5:69:
11:35:66:a3:43:21:32:6b:fc:30:9f:3d:16:df:56:30:7d:08:
ff:ed:5c:b8:cb:33:3b:f5:63:5d:0e:69:f9:88:7f:27:53:64:
a1:5f:18:9a:b3:7d:15:4f:37:b8:35:72:45:d0:60:7d:96:dd:
8e:5b:31:be:5e:52:c1:78:65:9a:f9:9f:e9:43:d9:90:e6:bf:
ab:dc:83:3e:8b:3a:70:d4:d7:ff:e9:87:b1:44:e8:3d:7e:31:
ce:fe:67:cf:d1:d8:a2:d2:dd:93:3d:37:70:01:4e:33:6f:c1:
f8:aa:6e:3e:40:7d:0e:88:9b:9d:e8:66:1e:c5:7a:c3:64:fc:
f6:b6:97:39:af:38:5f:c2:c8:a0:4e:9e:31:ec:1b:ce:b5:6b:
27:fb:e3:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:35:54 2025 by rpki-client