Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
File: tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft (raw, json)
Hash identifier: tAtRTBAAFEi3UxlLb6hPcMSM3y8oY3YONU7VN7eESzg=
Subject key identifier: AF:E8:89:2E:57:CB:B9:CE:0E:B6:0C:07:48:C7:75:1A:03:10:62:15
Authority key identifier: B4:53:A2:B3:FB:83:D8:6C:78:06:CC:06:60:D8:29:11:9D:93:75:B4
Certificate issuer: /CN=b453a2b3fb83d86c7806cc0660d829119d9375b4
Certificate serial: 0198512020DB903BA6D53AB77968B1C7B785
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
Manifest number: 06DC
Signing time: Mon 28 Jul 2025 13:01:56 +0000
Manifest this update: Mon 28 Jul 2025 13:01:56 +0000
Manifest next update: Tue 29 Jul 2025 13:01:56 +0000
Files and hashes: 1: G4FFwIyiIU29W95QZk9-MWiLljM.roa (hash: iDaSzS67wgh1om9NMNs4mTJZEfMH7AGf6ifeuTsPDRg=)
2: tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl (hash: WU19O4fbqkhRcJAQ6OM5RNOXQ1Pe3trddWISe1xHe6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 13:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:51:20:20:db:90:3b:a6:d5:3a:b7:79:68:b1:c7:b7:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b453a2b3fb83d86c7806cc0660d829119d9375b4
Validity
Not Before: Jul 28 13:01:56 2025 GMT
Not After : Jul 29 13:01:56 2025 GMT
Subject: CN=afe8892e57cbb9ce0eb60c0748c7751a03106215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:73:f7:25:41:bf:a0:b8:aa:f3:1f:6c:bc:9c:
d0:92:67:b0:96:09:61:fc:3c:b0:38:cc:a7:7e:05:
2a:c4:f1:fe:91:69:b9:4c:19:bb:97:5a:c3:4c:3a:
75:bc:c7:f7:50:d5:de:23:ae:45:53:39:3f:85:32:
b1:e1:2f:2e:53:65:87:a0:ea:40:84:bf:a3:19:37:
77:13:de:10:64:20:30:d1:c3:d6:76:53:31:27:fa:
a6:c9:c3:22:b9:d3:39:76:40:a6:3d:05:76:cf:41:
77:ca:ff:5f:c8:11:ea:c6:1e:bc:7d:dd:9f:af:fc:
7f:d2:fc:b2:5f:e1:d8:ac:47:c6:22:41:42:0b:14:
ba:a7:a2:7f:60:64:a6:8f:c7:cc:ee:14:72:3c:2a:
76:7f:58:36:33:0a:57:01:8c:af:6d:df:4e:4c:62:
42:4c:4c:d4:88:82:d5:f1:f1:c6:36:34:5d:64:18:
f6:12:96:58:29:ba:70:d5:1c:a4:eb:0c:14:88:b2:
7a:b3:7e:98:49:7f:2a:6e:ec:39:9b:26:09:0f:b0:
8b:87:48:dc:2e:52:6b:53:52:ac:a5:3f:fc:e9:c1:
15:95:54:bc:6a:af:e9:6f:50:c3:7a:96:60:24:1b:
57:91:bc:1d:f4:65:da:0e:23:b3:b3:71:29:a5:22:
71:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:E8:89:2E:57:CB:B9:CE:0E:B6:0C:07:48:C7:75:1A:03:10:62:15
X509v3 Authority Key Identifier:
keyid:B4:53:A2:B3:FB:83:D8:6C:78:06:CC:06:60:D8:29:11:9D:93:75:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:47:9d:62:45:66:04:e8:65:1e:01:18:c1:7c:79:cb:21:67:
d8:bd:ae:5e:d2:36:fa:95:f8:82:08:e4:54:18:ce:b7:ad:4d:
c2:e4:75:db:33:58:a6:e5:aa:59:4e:0e:87:07:78:ae:42:2f:
8b:1f:fd:cd:c6:dc:a4:2b:ce:e0:d5:58:69:21:f8:6e:98:62:
10:4a:4d:2b:b9:e5:d4:fe:4e:54:98:71:1a:40:d3:2a:08:e7:
b7:f9:33:af:80:df:bf:40:58:8f:c6:f8:dc:d4:e3:94:51:25:
6e:6b:a4:b4:4c:16:4f:ff:93:a0:ff:2f:52:5e:b0:51:54:c4:
8a:42:bd:e4:36:56:15:8b:d7:a7:02:95:55:e9:f5:cf:33:50:
4a:c4:ae:72:00:f8:60:3e:04:83:3a:89:d3:f9:a5:b6:32:70:
0d:53:c7:bc:68:73:73:da:e0:c7:39:1c:44:0b:bd:13:18:4e:
39:23:38:88:17:6c:32:c2:7c:3c:d9:59:ea:63:a5:2f:09:e7:
70:db:bb:a8:e8:8b:7b:cc:51:a9:d3:70:7a:b8:98:64:1d:df:
d8:5a:7a:91:c9:db:49:83:4b:af:5f:9e:97:2c:4a:fd:a0:2f:
70:2a:13:b8:2e:f8:bb:37:ea:b3:51:4b:3b:a3:67:d5:23:87:
cb:ea:cc:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 28 20:29:37 2025 by rpki-client