Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft
File: tFmZiZ920uLkzN_IF_mHnPrAa74.mft (raw, json)
Hash identifier: +EV54mHtmElV029prRLOP/En1iPo3JIJF6aQNpm5f68=
Subject key identifier: 91:3F:38:79:37:93:E4:AC:B8:73:ED:78:58:87:10:35:70:5F:FB:46
Authority key identifier: B4:59:99:89:9F:76:D2:E2:E4:CC:DF:C8:17:F9:87:9C:FA:C0:6B:BE
Certificate issuer: /CN=b45999899f76d2e2e4ccdfc817f9879cfac06bbe
Certificate serial: 019A142944F56FD643CC5C22DFB289FE1433
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft
Manifest number: 0FAD
Signing time: Fri 24 Oct 2025 03:00:40 +0000
Manifest this update: Fri 24 Oct 2025 03:00:40 +0000
Manifest next update: Sat 25 Oct 2025 03:00:40 +0000
Files and hashes: 1: 6XIUJLxMwG9jlaMLUiUjdNhCd1o.roa (hash: EOBqxmH/OfyTLlWlQTxtKiQX94pOzbQV1qOowmuSWjc=)
2: bVwdAY_3tzeIYh1lGjq9dC2K998.roa (hash: Cy+JJP0r30GikInnGPQvx8BcElRVxD8+sorOU6VuUOU=)
3: kzkxlAjNluX99z1bTtF79HY_wp4.roa (hash: TFi7zUlhEhQqH665vNFOO2zhHl+RI/6mE+V//oHUM0w=)
4: tFmZiZ920uLkzN_IF_mHnPrAa74.crl (hash: 9aSxDCmWP4G4t9XKnQWMOS8Mx3QItI71ANsN0T7G6dM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft
rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:14:29:44:f5:6f:d6:43:cc:5c:22:df:b2:89:fe:14:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45999899f76d2e2e4ccdfc817f9879cfac06bbe
Validity
Not Before: Oct 24 03:00:40 2025 GMT
Not After : Oct 25 03:00:40 2025 GMT
Subject: CN=913f38793793e4acb873ed7858871035705ffb46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ac:5f:bc:ce:41:7c:bd:e0:d8:f1:a7:e5:52:
fa:1d:4b:98:b3:0a:0f:61:60:40:ad:8c:8d:ca:c7:
14:9a:df:d1:91:8d:37:a3:94:4a:65:7f:93:60:65:
59:41:f0:5a:5f:48:4a:6e:a4:83:5f:9e:dc:a7:1c:
65:2f:9e:0f:48:15:a1:4d:70:fe:6a:b3:b6:6f:6d:
d4:fd:6b:73:47:70:51:97:e8:89:80:88:b0:2c:f7:
f7:7c:bf:f8:bf:f7:22:1c:ff:47:4e:aa:e6:79:0e:
eb:58:1d:d1:37:ce:1c:dc:4b:6f:0b:86:d2:db:50:
46:80:4e:45:1f:ba:7c:2e:03:78:3b:e4:93:92:33:
c9:71:7b:81:e0:66:0b:4b:cc:1c:53:53:0d:e9:6b:
6d:c5:d5:57:77:62:28:80:0c:74:78:03:db:ba:80:
4c:46:a8:c0:5a:49:ac:9d:6c:d7:bc:c3:a6:25:30:
c3:5c:81:89:b7:9c:f2:61:21:77:d0:28:4e:f9:5b:
54:c5:c3:1d:17:2f:ac:1f:c1:52:45:60:be:bd:11:
0b:8c:a9:ac:52:d3:da:b7:95:a9:0c:5b:ad:13:b7:
b1:00:73:cf:3f:06:48:84:50:6a:04:c6:3c:90:bd:
2e:ab:66:1a:2b:96:c0:98:8b:d3:5c:c2:cf:1d:37:
80:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:3F:38:79:37:93:E4:AC:B8:73:ED:78:58:87:10:35:70:5F:FB:46
X509v3 Authority Key Identifier:
keyid:B4:59:99:89:9F:76:D2:E2:E4:CC:DF:C8:17:F9:87:9C:FA:C0:6B:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:c4:80:af:84:0a:2e:d4:5a:5a:d2:51:5b:4b:f9:69:e9:c5:
52:ea:40:06:b9:d6:06:99:21:3f:be:a5:63:13:e0:aa:b5:c9:
52:16:cb:72:77:d3:80:8d:76:0e:79:83:0c:2e:61:8e:b5:3b:
ad:b0:d7:5f:4b:f6:48:46:67:59:93:b0:75:05:cf:a0:a1:a4:
b3:4c:9a:8e:f7:b1:5e:0d:b7:e5:09:b7:23:63:d0:0a:0d:a7:
08:87:e9:59:07:3b:59:99:5f:23:b1:00:a8:ec:9d:a2:75:46:
5c:56:4a:e7:8e:d1:a1:e1:2f:64:03:de:e3:bb:4e:a4:a2:4c:
86:ae:79:04:91:a1:59:aa:d6:c9:96:a3:df:63:fb:17:e3:a3:
d7:e4:2d:f8:fa:b8:78:81:a4:b1:1a:4e:09:d6:2f:98:7d:22:
4b:98:e8:a1:61:fe:a8:41:e3:e5:bf:4a:db:6c:4e:e8:64:58:
34:84:24:9b:84:7b:43:e9:f2:04:6c:7f:2d:5f:20:93:f8:b9:
81:fe:e5:62:b6:9c:06:cc:ac:8a:95:4a:65:13:ec:67:29:1a:
f8:32:0c:ac:2d:55:dd:b0:99:26:af:b5:1c:e1:6c:bd:26:82:
9b:df:0d:26:f7:ad:54:3b:8a:61:9c:98:2d:8a:7c:26:25:59:
b4:71:98:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoUKUT1b9ZDzFwi37KJ/hQzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0NTk5OTg5OWY3NmQyZTJlNGNjZGZjODE3Zjk4NzljZmFj
MDZiYmUwHhcNMjUxMDI0MDMwMDQwWhcNMjUxMDI1MDMwMDQwWjAzMTEwLwYDVQQD
Eyg5MTNmMzg3OTM3OTNlNGFjYjg3M2VkNzg1ODg3MTAzNTcwNWZmYjQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6qxfvM5BfL3g2PGn5VL6HUuYswoP
YWBArYyNyscUmt/RkY03o5RKZX+TYGVZQfBaX0hKbqSDX57cpxxlL54PSBWhTXD+
arO2b23U/WtzR3BRl+iJgIiwLPf3fL/4v/ciHP9HTqrmeQ7rWB3RN84c3EtvC4bS
21BGgE5FH7p8LgN4O+STkjPJcXuB4GYLS8wcU1MN6WttxdVXd2IogAx0eAPbuoBM
RqjAWkmsnWzXvMOmJTDDXIGJt5zyYSF30ChO+VtUxcMdFy+sH8FSRWC+vRELjKms
UtPat5WpDFutE7exAHPPPwZIhFBqBMY8kL0uq2YaK5bAmIvTXMLPHTeAZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJE/OHk3k+SsuHPteFiHEDVwX/tGMB8GA1UdIwQY
MBaAFLRZmYmfdtLi5MzfyBf5h5z6wGu+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEZtWmlaOTIwdUxrek5fSUZfbUhuUHJBYTc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9jYjdiMjEtMzM1Yy00MmNhLTg1OWUt
NzM0MjhmOWM3YmZmLzEvdEZtWmlaOTIwdUxrek5fSUZfbUhuUHJBYTc0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9jYjdiMjEtMzM1Yy00MmNhLTg1OWUtNzM0MjhmOWM3YmZm
LzEvdEZtWmlaOTIwdUxrek5fSUZfbUhuUHJBYTc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAy8SAr4QK
LtRaWtJRW0v5aenFUupABrnWBpkhP76lYxPgqrXJUhbLcnfTgI12DnmDDC5hjrU7
rbDXX0v2SEZnWZOwdQXPoKGks0yajvexXg235Qm3I2PQCg2nCIfpWQc7WZlfI7EA
qOydonVGXFZK547RoeEvZAPe47tOpKJMhq55BJGhWarWyZaj32P7F+Oj1+Qt+Pq4
eIGksRpOCdYvmH0iS5jooWH+qEHj5b9K22xO6GRYNIQkm4R7Q+nyBGx/LV8gk/i5
gf7lYracBsysipVKZRPsZyka+DIMrC1V3bCZJq+1HOFsvSaCm98NJvetVDuKYZyY
LYp8JiVZtHGYRw==
-----END CERTIFICATE-----
Generated at Fri Oct 24 06:32:53 2025 by rpki-client