Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
File: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft (raw, json)
Hash identifier: ohmL9yoGiLX15bg3+F6wpfYDXWTKnUck0xO0O4ZufHk=
Subject key identifier: C1:A4:99:B3:44:D9:79:80:25:AC:91:52:F4:36:FA:56:9B:12:58:49
Authority key identifier: 4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
Certificate issuer: /CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Certificate serial: 019935DC5320831CAE4D98948768876D2A94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
Manifest number: 0D61
Signing time: Wed 10 Sep 2025 23:00:55 +0000
Manifest this update: Wed 10 Sep 2025 23:00:55 +0000
Manifest next update: Thu 11 Sep 2025 23:00:55 +0000
Files and hashes: 1: 4f1jI7-qAw-Fm-OtnESqUBoebm0.roa (hash: Yj15262IImuG/zvO4RGd+KynWz9BG4CJpl9H3lrssA0=)
2: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl (hash: oL+yurcVOxCuuSViriC9zdrDmSPd90XS/cmQUKcbsAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:dc:53:20:83:1c:ae:4d:98:94:87:68:87:6d:2a:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Validity
Not Before: Sep 10 23:00:55 2025 GMT
Not After : Sep 11 23:00:55 2025 GMT
Subject: CN=c1a499b344d9798025ac9152f436fa569b125849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:53:d9:e0:e1:ce:8d:16:0e:02:7a:05:71:e2:
f7:85:df:0b:bc:2a:fb:21:b9:27:b5:81:fe:0a:96:
8e:87:2e:c9:d8:a0:a9:67:b7:0f:62:3d:19:d0:ae:
64:64:85:b5:81:2d:ec:fe:b8:bc:cb:a2:a3:25:68:
90:73:ab:c0:1d:30:16:d4:88:04:d4:ba:7c:4b:15:
77:e8:20:11:97:f7:c4:85:f1:b3:c1:e7:83:48:2f:
98:8e:1c:1e:e8:70:bd:60:1a:d1:f8:5b:18:2f:62:
15:17:ad:c1:f1:e3:d4:d6:76:51:ec:8e:c8:df:39:
aa:57:a9:40:03:fb:9e:45:e8:1b:18:8c:2c:fd:1d:
a1:95:32:9e:99:8c:f8:e0:9d:3a:44:0c:b6:a0:44:
ad:ad:b8:ab:76:28:97:35:66:f2:79:e6:45:c5:ef:
37:40:d8:dd:d4:40:6d:0c:ed:da:af:55:ab:ce:9c:
c6:5a:b8:3b:a3:5b:85:1d:ee:a6:82:b0:1b:23:78:
3d:72:3b:22:a8:0f:e8:70:f3:a4:45:08:45:f1:e9:
04:94:9a:23:88:ba:6b:f6:6f:c0:c4:f3:4a:3d:b3:
6d:a3:98:05:33:43:2c:19:14:69:8a:76:0a:2f:5c:
76:89:14:c8:4b:5e:be:cb:1b:a0:d5:13:3e:5d:5f:
34:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:A4:99:B3:44:D9:79:80:25:AC:91:52:F4:36:FA:56:9B:12:58:49
X509v3 Authority Key Identifier:
keyid:4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:1b:dc:22:8f:a4:02:7f:24:9e:99:97:ed:4e:51:6d:f9:01:
7d:87:05:5e:6a:25:9f:86:eb:ee:d8:af:09:2c:34:14:cd:df:
7d:4b:c2:3e:c9:17:c7:fc:c6:5e:b5:43:2e:26:5d:3a:3d:c4:
2c:9e:58:d5:93:b4:68:17:46:a3:22:55:f5:f1:bd:d3:1a:e9:
6f:0e:3f:4a:4b:de:a2:33:6c:18:18:68:e6:42:60:1a:a0:1c:
dc:59:e3:01:90:2b:a2:bf:76:b3:4a:a5:60:f1:6b:e0:87:d2:
65:e3:fc:88:62:91:cd:19:21:bb:0f:b0:c8:66:f8:b1:b6:3b:
d8:d1:43:8c:3b:6c:a5:19:88:aa:7b:0a:3c:9f:60:b6:ac:18:
bb:ef:a7:68:79:f5:49:85:15:e9:b2:0d:97:7d:86:6f:1e:b7:
bb:5e:cd:f6:8f:82:aa:9d:bb:83:8a:e6:8d:8e:7e:56:57:e7:
ee:4d:3c:a1:ed:8a:60:ac:39:88:dd:55:fb:04:7a:49:ce:e9:
ec:3b:58:fd:cf:b1:14:2c:f9:55:52:9e:89:e9:9a:f4:3c:60:
fd:48:06:d0:b0:59:2d:8c:65:13:69:45:2f:bd:86:d8:24:6e:
79:ec:ec:ac:8a:85:95:7f:e9:f3:c9:b1:de:a9:db:32:2e:9f:
17:69:5f:3a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk13FMggxyuTZiUh2iHbSqUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkYmUzMWI2YmVkYzUxZjJhYTJlYzBhNjQ1M2YyZTQzNWU4
MDhmYjUwHhcNMjUwOTEwMjMwMDU1WhcNMjUwOTExMjMwMDU1WjAzMTEwLwYDVQQD
EyhjMWE0OTliMzQ0ZDk3OTgwMjVhYzkxNTJmNDM2ZmE1NjliMTI1ODQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1PZ4OHOjRYOAnoFceL3hd8LvCr7
IbkntYH+CpaOhy7J2KCpZ7cPYj0Z0K5kZIW1gS3s/ri8y6KjJWiQc6vAHTAW1IgE
1Lp8SxV36CARl/fEhfGzweeDSC+Yjhwe6HC9YBrR+FsYL2IVF63B8ePU1nZR7I7I
3zmqV6lAA/ueRegbGIws/R2hlTKemYz44J06RAy2oEStrbirdiiXNWbyeeZFxe83
QNjd1EBtDO3ar1WrzpzGWrg7o1uFHe6mgrAbI3g9cjsiqA/ocPOkRQhF8ekElJoj
iLpr9m/AxPNKPbNto5gFM0MsGRRpinYKL1x2iRTIS16+yxug1RM+XV80iQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMGkmbNE2XmAJayRUvQ2+labElhJMB8GA1UdIwQY
MBaAFE2+Mba+3FHyqi7ApkU/LkNegI+1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGI0eHRyN2NVZktxTHNDbVJUOHVRMTZBajdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8xZDI3ODgtZGE0MC00MzFhLTk3ZDAt
ZmJkNDZkOWNhMzcyLzEvVGI0eHRyN2NVZktxTHNDbVJUOHVRMTZBajdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8xZDI3ODgtZGE0MC00MzFhLTk3ZDAtZmJkNDZkOWNhMzcy
LzEvVGI0eHRyN2NVZktxTHNDbVJUOHVRMTZBajdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAihvcIo+k
An8knpmX7U5RbfkBfYcFXmoln4br7tivCSw0FM3ffUvCPskXx/zGXrVDLiZdOj3E
LJ5Y1ZO0aBdGoyJV9fG90xrpbw4/SkveojNsGBho5kJgGqAc3FnjAZAror92s0ql
YPFr4IfSZeP8iGKRzRkhuw+wyGb4sbY72NFDjDtspRmIqnsKPJ9gtqwYu++naHn1
SYUV6bINl32Gbx63u17N9o+Cqp27g4rmjY5+Vlfn7k08oe2KYKw5iN1V+wR6Sc7p
7DtY/c+xFCz5VVKeiema9Dxg/UgG0LBZLYxlE2lFL72G2CRueezsrIqFlX/p88mx
3qnbMi6fF2lfOg==
-----END CERTIFICATE-----
Generated at Thu Sep 11 04:29:25 2025 by rpki-client