Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json)
Hash identifier: 3W7au6qXBBSt4F4iaSoBLZN1LuefobibZI8EptrdhFY=
Subject key identifier: 8B:9F:CA:17:67:08:EC:48:CF:AA:B2:D3:B5:55:6D:EB:40:E1:C6:32
Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Certificate serial: 019A13F26E6A73A1E8691DB74412EE9A60B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
Manifest number: 0DD0
Signing time: Fri 24 Oct 2025 02:00:46 +0000
Manifest this update: Fri 24 Oct 2025 02:00:46 +0000
Manifest next update: Sat 25 Oct 2025 02:00:46 +0000
Files and hashes: 1: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: OTVnmA0hPQZUB8538LNMHT+NgIxMXsqZcKVXIihebPo=)
2: ehQIMYmYwJQIMwezxzrnCxQWXrQ.roa (hash: K5j8O7wSUuuth3uj2946HM7L4q3WosF43ObE+K/eL8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:13:f2:6e:6a:73:a1:e8:69:1d:b7:44:12:ee:9a:60:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Validity
Not Before: Oct 24 02:00:46 2025 GMT
Not After : Oct 25 02:00:46 2025 GMT
Subject: CN=8b9fca176708ec48cfaab2d3b5556deb40e1c632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f3:14:d6:b1:60:c2:98:88:3c:e3:73:3a:1a:
b1:e4:a9:4a:1d:4a:d3:56:24:87:fe:a7:0a:72:a4:
94:fc:86:3e:0f:c7:cc:9a:d6:89:b9:7f:28:bc:5a:
86:d5:26:60:3b:64:91:2c:f2:34:02:ba:68:f2:18:
f6:83:8c:7b:68:91:0b:04:11:24:dc:be:e8:e3:fa:
40:b4:b4:bd:ef:cf:bc:ed:46:29:a4:d8:7c:53:98:
1e:00:55:99:07:65:18:d2:d6:7d:54:17:d2:d3:22:
9f:e9:cf:b8:8b:bd:16:81:7d:b9:6a:0e:b3:df:63:
e0:09:4c:80:db:06:72:34:bb:5c:ee:db:2a:22:7a:
95:e5:4f:6e:f1:eb:02:dc:53:0a:34:d3:69:e7:5e:
e2:79:e4:5c:6c:63:ca:5c:5f:ac:25:e2:43:e1:83:
82:e7:4e:86:c6:bc:c4:c0:5e:0d:86:ac:90:31:4a:
6b:93:b9:bd:f3:ce:d5:15:f8:54:34:16:b6:01:15:
c7:ae:9a:02:d0:ab:71:16:3e:a2:9b:08:9c:5f:61:
0c:af:24:17:d6:62:fe:3e:df:d0:7d:56:fa:48:6b:
ed:65:49:d1:cb:3f:e9:9e:40:49:87:0c:8d:73:ef:
11:b7:f8:e5:c6:4b:f1:af:84:a8:8b:85:71:3b:0e:
47:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:9F:CA:17:67:08:EC:48:CF:AA:B2:D3:B5:55:6D:EB:40:E1:C6:32
X509v3 Authority Key Identifier:
keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:d9:dc:6a:eb:8e:68:5b:c3:01:80:2c:7e:8b:86:46:67:72:
aa:48:59:cc:47:92:50:2a:69:40:d1:1a:c8:49:8b:31:13:13:
04:5b:04:3c:dc:1c:a9:66:ce:a3:08:22:b1:5d:3d:4e:26:c8:
d0:d3:49:07:e8:da:d3:6d:d0:37:98:50:3f:f0:19:6a:b7:3e:
27:33:96:bd:5e:7e:10:ec:d3:6b:16:50:ba:e3:e0:89:dc:d3:
20:0c:b1:e5:67:92:78:24:c9:37:15:90:fa:ca:18:f1:22:b2:
69:ef:91:ef:ff:df:0f:9d:de:4f:c9:2c:23:8b:0b:d9:b5:a9:
2d:26:40:2a:a2:e8:6a:63:88:bd:1e:0c:a8:5c:b1:63:0e:be:
2a:da:df:5f:85:ab:b9:54:32:de:9c:eb:84:22:8c:d5:37:24:
b7:9a:42:e0:4e:69:9c:45:eb:1a:0e:7b:25:50:07:7b:e7:bc:
58:23:87:9f:1a:6e:ea:29:8b:67:ea:34:ec:f6:fe:c2:74:d5:
f1:15:80:58:67:78:21:6f:b1:be:76:97:e2:81:43:4f:fa:34:
67:2b:5f:e2:52:80:c7:84:81:5c:37:01:11:6d:e1:fd:07:6a:
f5:b9:f7:8a:e6:8f:c0:c1:09:2c:59:14:d3:56:34:5b:25:25:
ac:18:0c:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoT8m5qc6HoaR23RBLummCxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkMzY4Nzc0MmJlY2YzZDA4MDgyZWQxMmU5ZjM0NzBiODJk
YTdjZmYwHhcNMjUxMDI0MDIwMDQ2WhcNMjUxMDI1MDIwMDQ2WjAzMTEwLwYDVQQD
Eyg4YjlmY2ExNzY3MDhlYzQ4Y2ZhYWIyZDNiNTU1NmRlYjQwZTFjNjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzPMU1rFgwpiIPONzOhqx5KlKHUrT
ViSH/qcKcqSU/IY+D8fMmtaJuX8ovFqG1SZgO2SRLPI0Arpo8hj2g4x7aJELBBEk
3L7o4/pAtLS978+87UYppNh8U5geAFWZB2UY0tZ9VBfS0yKf6c+4i70WgX25ag6z
32PgCUyA2wZyNLtc7tsqInqV5U9u8esC3FMKNNNp517ieeRcbGPKXF+sJeJD4YOC
506GxrzEwF4NhqyQMUprk7m9887VFfhUNBa2ARXHrpoC0KtxFj6imwicX2EMryQX
1mL+Pt/QfVb6SGvtZUnRyz/pnkBJhwyNc+8Rt/jlxkvxr4Soi4VxOw5HrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIufyhdnCOxIz6qy07VVbetA4cYyMB8GA1UdIwQY
MBaAFE02h3Qr7PPQgILtEunzRwuC2nz/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQt
MTAzYjE3ZDNlYjQ1LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQtMTAzYjE3ZDNlYjQ1
LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAttncauuO
aFvDAYAsfouGRmdyqkhZzEeSUCppQNEayEmLMRMTBFsEPNwcqWbOowgisV09TibI
0NNJB+ja023QN5hQP/AZarc+JzOWvV5+EOzTaxZQuuPgidzTIAyx5WeSeCTJNxWQ
+soY8SKyae+R7//fD53eT8ksI4sL2bWpLSZAKqLoamOIvR4MqFyxYw6+KtrfX4Wr
uVQy3pzrhCKM1Tckt5pC4E5pnEXrGg57JVAHe+e8WCOHnxpu6imLZ+o07Pb+wnTV
8RWAWGd4IW+xvnaX4oFDT/o0Zytf4lKAx4SBXDcBEW3h/Qdq9bn3iuaPwMEJLFkU
01Y0WyUlrBgMnw==
-----END CERTIFICATE-----
Generated at Fri Oct 24 08:19:45 2025 by rpki-client