Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
File: TDfyfrSZezvvnygmajlpQFD-dPk.mft (raw, json)
Hash identifier: R3Mt0HH1+gD4aUXDIJpA1q5U0W5tKoMbF5nVdfUgp08=
Subject key identifier: A2:7C:B1:BD:2F:45:BF:22:3A:7E:24:E1:8A:39:A6:55:28:64:01:81
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 01992D7DDFFBD9CE472D7227C16A52B6D8B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
Manifest number: 16D7
Signing time: Tue 09 Sep 2025 08:00:47 +0000
Manifest this update: Tue 09 Sep 2025 08:00:47 +0000
Manifest next update: Wed 10 Sep 2025 08:00:47 +0000
Files and hashes: 1: O9nHfOl2QVEFkw8z5PZAG-bDmQE.roa (hash: CmUudjBRBoLhGNB6o4EaSfh+UkgJVlz+52jeWbtrV5A=)
2: SzyIBUJURbOXMTDJ4Z_haTgvNpI.roa (hash: wJIDwOiFxDwrE3GURrkhai8iWOYh1f3lI6qeGAaNPyc=)
3: TDfyfrSZezvvnygmajlpQFD-dPk.crl (hash: 0N9ALLW0OQroZU8wDVScVsvTqxh4jSHeyhaESZ6t5pc=)
4: UVW-IEFCCq7ahpPdj9WY7Kn8QqE.roa (hash: MZl++GgZA3uWjf7S8QTsOZZtzVITuzAAAAPegKRXupI=)
5: VIrZrIPn5JgwIWuerakwG37U7jA.roa (hash: +9EBlzR1H7BphSJTPeOlUDa4YDh16MokR5NsBCSFTMs=)
6: dQ4y2x688XsG8rEL7o8Sp4uIl8M.roa (hash: LuvxH8ju8nmShoj6OHN3o8s0V6hBxEddqrv3+BFDAgQ=)
7: gQDaBeXH0szJXrJTEvqe4lIGCV4.roa (hash: fhlImZ1nrh4i7H6LIP2R5ZbAmjbxd5MHcou/l4C25qU=)
8: lPoIPYo1ITlq-R71JXKfxiC_US0.roa (hash: 1ODRbC1wRix1ieOTK6Ku3fYNq0UfGPEvF5Esjd3aqDM=)
9: luug-CwXmvS54qQ88cgMGt-f5zU.roa (hash: HAfj14rHhfvfAv/i1MqUIJYZwmFczeoc01ZA/poLVk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 08:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2d:7d:df:fb:d9:ce:47:2d:72:27:c1:6a:52:b6:d8:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Sep 9 08:00:47 2025 GMT
Not After : Sep 10 08:00:47 2025 GMT
Subject: CN=a27cb1bd2f45bf223a7e24e18a39a65528640181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a0:c9:24:f3:68:81:7d:64:a7:bc:93:19:b9:
3f:63:98:f4:a6:d8:5c:0a:71:a4:b6:43:bc:ba:15:
fa:12:92:09:6a:ba:4c:6c:6d:bf:9e:6c:00:82:3d:
a3:69:00:f7:a1:61:0a:0f:04:28:80:db:5d:fa:5a:
2f:f2:32:ea:f0:c0:25:f7:92:16:d8:77:81:64:2c:
e1:01:98:6a:7f:67:de:1c:af:dc:1c:f6:17:91:4a:
5b:1e:6d:39:36:30:de:da:02:77:46:02:6e:55:ca:
2b:a6:16:49:c8:08:a5:f9:81:e2:62:d7:25:7e:c0:
e9:c5:d7:e9:b0:54:e3:29:19:73:62:b5:ee:c0:fc:
4f:f4:02:84:b2:ba:19:a8:1b:41:7a:33:06:f1:e4:
53:65:b4:ce:3f:79:92:bb:7a:b8:a9:6f:5a:85:e4:
8f:65:44:98:68:5f:ee:6b:22:1e:91:ed:19:2d:34:
88:ef:f2:87:6d:45:73:5c:94:21:ab:ae:34:f1:d2:
45:49:0f:c5:cd:62:3e:54:7d:63:1f:93:ff:e3:59:
eb:1b:31:ff:53:c3:ce:18:fd:6b:c9:4f:03:93:ce:
d3:4d:21:7a:bc:39:05:0f:96:bc:3d:29:78:82:e7:
d0:6d:15:ed:7e:d3:03:74:a5:75:03:9e:66:0a:b3:
87:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:7C:B1:BD:2F:45:BF:22:3A:7E:24:E1:8A:39:A6:55:28:64:01:81
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:47:84:d8:e1:89:8b:d0:bb:ff:95:2a:5b:89:f8:68:dd:93:
1f:a3:7a:aa:5f:84:44:57:38:9f:1b:07:66:ed:0a:98:75:93:
a8:f1:22:ca:b2:ed:8d:72:d9:78:00:66:88:5f:9e:67:c5:71:
63:ec:14:28:d7:1a:fc:0a:e3:80:b9:e1:a9:d7:29:b7:3a:02:
8d:e4:1e:b7:e1:af:3f:a1:e8:63:11:41:73:6d:d3:1d:54:6a:
78:ab:17:e3:36:77:22:70:ab:ce:69:d7:e1:87:76:3c:10:72:
c9:8c:83:9a:2d:07:4b:34:1a:ad:47:64:e4:87:84:58:87:f8:
f8:7b:32:4c:0a:52:92:d1:27:87:f4:3c:19:4c:8e:da:9e:6e:
68:b1:19:7e:ec:65:d7:06:85:43:eb:23:6a:a3:14:cc:f8:1c:
8c:d3:ba:aa:4a:5c:8c:7d:f0:78:17:9b:d9:9e:ab:16:20:9f:
93:eb:83:75:07:53:d7:9b:7d:10:e6:6f:48:94:0d:34:52:9f:
1d:10:75:11:e8:6f:1d:2a:d5:0d:89:44:95:ea:f8:70:b8:17:
55:2f:08:16:72:12:59:1a:9f:77:11:aa:a9:8a:e9:36:c3:2a:
1b:3e:1b:90:04:5e:ba:98:48:33:75:8e:5e:1e:09:84:ce:6b:
a0:07:5f:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 10:52:14 2025 by rpki-client