Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
File: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft (raw, json)
Hash identifier: W9B3OJx4P6rUVR/lgZIRuVbxN92r7d3p5AShHSx/8JI=
Subject key identifier: 0D:D9:B4:BD:97:DC:55:34:6B:5F:2F:A6:2E:EA:28:BE:48:82:C6:0C
Authority key identifier: 4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
Certificate issuer: /CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Certificate serial: 019A236527685E238CDA8A9977868DA21872
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
Manifest number: 0DDC
Signing time: Mon 27 Oct 2025 02:00:23 +0000
Manifest this update: Mon 27 Oct 2025 02:00:23 +0000
Manifest next update: Tue 28 Oct 2025 02:00:23 +0000
Files and hashes: 1: 4f1jI7-qAw-Fm-OtnESqUBoebm0.roa (hash: Yj15262IImuG/zvO4RGd+KynWz9BG4CJpl9H3lrssA0=)
2: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl (hash: EOdmwk5gcuNu3gRNXb9hTFY8gki0p8yODiXt7vbUXCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:65:27:68:5e:23:8c:da:8a:99:77:86:8d:a2:18:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Validity
Not Before: Oct 27 02:00:23 2025 GMT
Not After : Oct 28 02:00:23 2025 GMT
Subject: CN=0dd9b4bd97dc55346b5f2fa62eea28be4882c60c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b5:10:34:42:2d:c1:1a:e5:e3:77:f9:ab:8e:
8d:93:31:cd:ee:95:e5:80:7a:d5:be:db:8c:72:cc:
96:26:f3:fb:d3:7c:20:36:34:c9:1a:53:ef:d1:06:
20:59:3b:60:6c:5c:4b:0d:69:8c:f1:61:10:f2:9f:
2e:ec:44:47:69:a1:af:f7:a3:12:01:ce:b9:3a:a0:
4d:4a:f9:e3:1c:a7:c8:6c:32:d2:2c:78:d6:7c:ce:
68:a8:ba:30:7d:45:42:c6:21:f1:67:35:61:56:bd:
d3:96:87:a4:07:0e:26:28:c0:26:57:18:0d:78:3e:
3a:f9:8c:59:45:e6:6b:b3:e2:62:f5:bc:05:e7:50:
6e:b9:5b:7f:5f:c8:da:a7:ac:08:68:66:ce:9c:62:
12:de:98:10:46:36:20:d9:b2:0c:47:0a:a7:c0:bc:
c0:dd:b8:24:ea:b5:6e:bd:27:4e:7e:5b:01:42:3b:
e2:f9:85:38:06:25:d2:0f:fd:b3:7e:76:f6:ee:80:
ae:ac:be:4c:f6:ab:8b:39:6f:f3:42:1f:38:f0:74:
ca:39:16:fe:4c:09:3c:4f:aa:90:f2:0f:a1:02:98:
47:21:f1:ae:1f:0e:03:82:2b:dc:19:37:d0:c3:0a:
c5:fe:2c:8c:9f:71:ee:60:ac:8b:8a:22:e3:f8:4e:
78:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:D9:B4:BD:97:DC:55:34:6B:5F:2F:A6:2E:EA:28:BE:48:82:C6:0C
X509v3 Authority Key Identifier:
keyid:4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:09:1b:6c:3a:1c:e6:5c:a9:3e:23:dc:47:78:e3:5d:92:86:
4c:78:f3:88:e1:c4:53:4e:df:bf:bc:5f:4a:61:dc:17:27:34:
29:d6:cd:ac:14:a9:3c:f2:b8:a9:1c:55:7a:b8:87:fd:e1:03:
d6:d7:88:c8:3e:49:e3:5e:e3:76:71:f2:44:e0:67:94:9f:4e:
d4:69:f7:0b:23:29:b6:e0:06:94:08:0e:b9:23:de:3e:24:32:
b4:f5:a7:e1:38:e0:25:e2:36:65:57:08:5c:b5:18:d5:cb:74:
86:9d:65:b2:d8:67:fb:61:1c:c6:60:e0:33:f4:4b:f6:cc:a8:
1b:cc:a7:ef:fc:e4:3b:2b:c0:9d:63:e9:42:eb:8b:8e:15:80:
89:12:57:05:6c:e1:5e:e6:78:2e:cd:fc:52:fc:c6:c9:4d:8e:
9b:fe:e5:f1:27:ee:32:f4:9f:a9:0e:35:de:ee:bd:1f:76:6f:
21:30:01:5a:83:44:9a:9d:d8:06:df:b6:0d:15:1f:27:91:c0:
1d:14:15:9b:ed:8c:11:35:2a:5a:97:7f:d6:de:6c:fd:1b:f1:
ef:ea:e4:39:28:a4:6b:62:d7:4c:1f:78:61:7e:48:05:55:5c:
68:d7:a1:78:76:6e:ef:8c:ce:8a:11:f2:8b:37:13:bc:c1:6d:
fe:a8:e4:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 04:18:31 2025 by rpki-client