Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
File: TRYkCJewEwVoHJQl_lI_WPqydBU.mft (raw, json)
Hash identifier: CwhS/NFzEOaht0651OnCPI5gKyBHITMwGckxPbjccSI=
Subject key identifier: DF:5D:4C:C5:E8:B6:86:A0:92:85:60:15:D1:CA:9F:F3:4E:50:FC:C5
Authority key identifier: 4D:16:24:08:97:B0:13:05:68:1C:94:25:FE:52:3F:58:FA:B2:74:15
Certificate issuer: /CN=4d16240897b01305681c9425fe523f58fab27415
Certificate serial: 0199221EBD03E2E1333AF58E907A1CB4385F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 03:01:03 +0000
Manifest this update: Sun 07 Sep 2025 03:01:03 +0000
Manifest next update: Mon 08 Sep 2025 03:01:03 +0000
Files and hashes: 1: L587eFkH5wYc14IkuF8E7of-x9o.roa (hash: qZjZeJL5jZ5Dikm84ADOgn1QShjJOm5n3wbg8yoD9PY=)
2: TRYkCJewEwVoHJQl_lI_WPqydBU.crl (hash: oSL71PLIMocqPd5h8OuTrPYYQd5HHQEf5dK3rDAHCfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:bd:03:e2:e1:33:3a:f5:8e:90:7a:1c:b4:38:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d16240897b01305681c9425fe523f58fab27415
Validity
Not Before: Sep 7 03:01:03 2025 GMT
Not After : Sep 8 03:01:03 2025 GMT
Subject: CN=df5d4cc5e8b686a092856015d1ca9ff34e50fcc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e5:50:ab:4a:57:77:0b:1f:3f:f0:ef:2b:19:
82:53:b8:44:f5:f9:1a:6a:1b:62:4d:3d:39:df:8a:
d5:36:32:8c:0d:06:1c:f2:ee:4e:de:15:07:a9:39:
4f:9e:7e:1c:b2:5c:17:84:fb:dc:30:a9:23:80:06:
7f:e0:17:ea:0f:c9:86:41:d9:18:2f:3b:87:fb:c4:
cd:76:a3:9d:2b:27:dd:f1:00:36:09:e1:40:f1:84:
4b:0f:26:15:cf:d1:7e:70:1f:94:26:57:91:6b:46:
e1:55:3e:90:56:ca:64:b9:0a:30:85:f3:90:f4:6e:
76:06:6c:1c:4a:9c:9c:b8:3b:3b:90:cc:55:87:e4:
43:83:9b:6b:0d:1a:e5:57:ae:d0:8b:aa:05:5d:59:
24:c8:b7:12:2a:bc:c7:42:0e:22:2d:7c:e3:c9:38:
02:3d:b9:4a:1c:0f:ca:58:a7:3f:54:16:b2:0a:9b:
4c:8e:cc:d6:61:29:be:8e:ee:07:c1:99:2f:36:6e:
0c:7c:21:ea:5f:c8:01:86:89:01:9c:e4:37:e7:5c:
5e:40:28:39:58:bb:85:a3:18:55:97:10:5d:84:e1:
84:50:e4:da:30:8e:95:06:28:d6:99:10:7d:12:99:
88:93:66:5b:a3:74:b1:b3:4b:1d:ea:bc:9e:de:8e:
cb:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:5D:4C:C5:E8:B6:86:A0:92:85:60:15:D1:CA:9F:F3:4E:50:FC:C5
X509v3 Authority Key Identifier:
keyid:4D:16:24:08:97:B0:13:05:68:1C:94:25:FE:52:3F:58:FA:B2:74:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:58:36:e6:f3:79:1f:69:47:66:c1:7f:64:62:c2:c4:6c:74:
85:f4:fb:5e:e8:7a:24:9d:c5:d7:e0:ee:1f:f7:8a:f6:48:53:
17:02:95:58:b3:bb:08:4a:31:b6:95:ef:bf:7c:52:cf:7b:29:
08:52:69:d7:d7:be:7d:e3:ea:f1:39:ae:33:50:ae:5c:a4:0b:
36:f4:4c:4e:d3:81:8a:a3:55:27:38:94:65:9d:af:ea:0b:0d:
0b:d4:ed:3f:6d:60:42:a0:4d:05:37:fe:1e:28:41:5c:0a:e9:
ae:43:44:0d:43:15:0f:06:59:c1:b8:c2:bb:6a:05:60:9f:83:
4b:bc:a1:3a:6e:a3:93:4d:61:bf:7c:36:41:a7:70:36:6d:05:
f9:26:7c:a7:45:54:d1:b9:f8:0d:06:a4:27:14:11:b4:9f:17:
f3:c0:79:a8:f5:cd:a0:41:8f:a1:bf:43:50:49:10:94:5c:d2:
30:d7:d5:66:7e:72:65:cc:97:a3:53:e7:0d:26:ce:e2:50:8b:
4a:fc:61:83:2a:2a:d1:2a:eb:b4:e4:b8:e0:a8:60:fe:65:21:
ae:bb:e6:12:9a:5c:e6:92:ef:7d:1a:88:8e:cd:b1:a1:18:56:
c9:f8:4a:00:26:21:3e:7a:58:64:e6:7b:d8:71:10:16:32:46:
0a:3f:2e:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:50:50 2025 by rpki-client