Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.mft
File: tAifhEgwV6w2RkfIChsjyXa5MBY.mft (raw, json)
Hash identifier: gq1l44dQGEfehvk3mw6mQBTRrflKsDczjHBoNC9Ozks=
Subject key identifier: E5:9B:D8:80:7A:28:69:45:09:11:94:B5:A1:80:63:57:D9:D5:AB:69
Authority key identifier: B4:08:9F:84:48:30:57:AC:36:46:47:C8:0A:1B:23:C9:76:B9:30:16
Certificate issuer: /CN=b4089f84483057ac364647c80a1b23c976b93016
Certificate serial: 0199239F3E30B7A3049DD1B7BF7C37551284
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAifhEgwV6w2RkfIChsjyXa5MBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 10:01:02 +0000
Manifest this update: Sun 07 Sep 2025 10:01:02 +0000
Manifest next update: Mon 08 Sep 2025 10:01:02 +0000
Files and hashes: 1: ZZlyR1qePInNwWMshU_T-zKOIRs.roa (hash: 1/uH+W7Kksp46/1+HMCQDG/zqQ+/+VqifvgRn9tMf2U=)
2: tAifhEgwV6w2RkfIChsjyXa5MBY.crl (hash: j7CHAQEOJLWNbNyqq3+SxQTh+JDTcS3AgDF7BLtdYGA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tAifhEgwV6w2RkfIChsjyXa5MBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:3e:30:b7:a3:04:9d:d1:b7:bf:7c:37:55:12:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4089f84483057ac364647c80a1b23c976b93016
Validity
Not Before: Sep 7 10:01:02 2025 GMT
Not After : Sep 8 10:01:02 2025 GMT
Subject: CN=e59bd8807a286945091194b5a1806357d9d5ab69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f0:dc:d5:df:e4:ae:f0:07:f2:37:7f:18:a6:
55:3d:66:51:3c:f3:b5:e0:55:89:66:45:18:7b:63:
3c:5f:cf:bc:e1:e8:21:e8:eb:07:23:f0:bb:b6:cb:
a8:77:3b:dd:5d:b9:b2:bb:3f:00:4a:55:cf:c8:aa:
28:cc:c7:93:9b:7a:ef:0b:ca:3f:fd:88:41:88:27:
90:6d:e2:09:22:5d:30:f3:1d:d5:f3:80:a6:77:ab:
22:36:ff:6d:7d:38:97:14:94:5f:16:e0:4f:27:7f:
b7:bc:cc:de:9c:a2:b3:9d:8a:97:5d:42:d9:6d:47:
53:dc:1e:7f:56:68:54:33:e0:5a:20:eb:fe:72:a5:
28:07:6e:88:5c:40:f7:2e:93:24:78:33:7c:3c:11:
48:5a:ec:a9:f9:c8:ab:a9:d5:d8:c6:1f:08:3b:1d:
68:f6:e1:7f:7e:69:d5:c4:7e:7f:05:ff:c2:c9:93:
60:0f:64:a4:17:b8:b0:86:d8:1a:1c:8a:4f:04:e6:
69:c2:95:5d:1b:1d:32:ca:e1:da:a4:94:01:dd:17:
e1:a8:e2:da:1a:94:d3:59:dd:a8:7b:99:60:36:4e:
d9:b5:a2:a1:23:b9:73:3e:3d:c7:a7:4c:5e:c3:00:
29:7b:5e:16:a9:f2:30:42:18:05:6f:fa:79:d7:0e:
83:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:9B:D8:80:7A:28:69:45:09:11:94:B5:A1:80:63:57:D9:D5:AB:69
X509v3 Authority Key Identifier:
keyid:B4:08:9F:84:48:30:57:AC:36:46:47:C8:0A:1B:23:C9:76:B9:30:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAifhEgwV6w2RkfIChsjyXa5MBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:5e:e0:45:0b:fc:6b:4f:3b:05:3b:76:c7:b4:e4:ba:18:a9:
1f:d0:24:d9:50:14:76:9b:cd:40:ba:bc:0e:6f:2c:9f:c2:fa:
2d:e5:a6:98:c0:5b:a5:95:aa:76:69:c1:b1:82:ed:a0:65:5f:
f3:e1:74:4f:79:3a:60:4f:41:36:91:c1:74:ee:30:60:54:73:
60:a2:5f:30:ab:c2:22:17:80:e4:43:50:45:2b:ce:be:48:b2:
bf:1b:9d:7f:79:46:5a:88:74:4b:4a:f3:61:1b:ce:9a:34:9c:
3d:84:b4:da:94:2d:01:df:f4:2e:bb:7f:b0:56:d5:7c:e4:81:
93:d1:2f:d2:f9:c9:d2:51:19:d0:57:ec:ab:19:f8:c2:aa:49:
92:9d:0e:24:50:e1:6c:42:df:f3:96:6c:22:2d:3a:b3:f6:81:
eb:c9:61:4f:a6:58:90:3c:b2:0a:80:30:0d:ac:a0:c9:e2:c5:
29:f4:f0:53:d9:bc:f9:b6:bb:3e:ef:a8:bf:d9:52:26:2a:35:
cb:b3:90:2a:d7:4f:72:ee:06:fe:ae:01:68:f1:2e:1a:28:77:
e0:b0:b8:84:98:f4:5d:f6:d8:ea:e9:97:b8:58:85:92:48:0f:
99:a8:3c:0f:c4:bb:96:b7:aa:75:29:4f:39:5b:f0:2f:bf:e1:
77:f4:95:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:10:59 2025 by rpki-client