Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
File: tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft (raw, json)
Hash identifier: K5eVXdL7fghENSGS1/BPXkhQA5d8Cws4QYwQDWJ6Kwk=
Subject key identifier: 2A:28:31:71:02:33:BF:1E:F8:EE:7F:17:E9:03:7D:4B:28:00:8A:E7
Authority key identifier: B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F
Certificate issuer: /CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f
Certificate serial: 01991C531B0845767BCEFBE0BD73747BDCE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
Manifest number: 1672
Signing time: Sat 06 Sep 2025 00:00:32 +0000
Manifest this update: Sat 06 Sep 2025 00:00:32 +0000
Manifest next update: Sun 07 Sep 2025 00:00:32 +0000
Files and hashes: 1: A19KF2VhmqgRITxahuDcRts8KJs.roa (hash: YirbVHhxW1CKNUwQAz3dz5QapLv5A3zZT5MHBNEVZ34=)
2: tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl (hash: MqUgbTxNt07MYpDBiD97xNapRhss+D03DDZuQgrJzvU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 17:17:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1c:53:1b:08:45:76:7b:ce:fb:e0:bd:73:74:7b:dc:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f
Validity
Not Before: Sep 6 00:00:32 2025 GMT
Not After : Sep 7 00:00:32 2025 GMT
Subject: CN=2a2831710233bf1ef8ee7f17e9037d4b28008ae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:20:0f:25:a8:0d:d0:79:dd:28:b9:ab:80:ca:
2d:f1:2b:60:42:43:ba:d1:52:d3:c0:b4:8f:4c:dc:
df:c5:d6:a2:65:fe:2d:e7:01:08:65:a5:63:a7:04:
b4:63:1b:23:2f:cb:af:11:b0:81:49:b4:4d:58:08:
9f:b0:2a:9a:3d:c5:67:ed:0a:8a:3a:4b:68:77:5f:
d5:e7:60:a5:48:92:4b:5f:aa:5f:ef:52:13:c5:29:
d1:f1:03:55:b9:8b:0c:a4:51:b8:71:fb:a3:f0:b0:
da:dd:f4:8c:a0:57:bd:62:c1:6d:57:39:4a:ae:d2:
1c:5e:93:a1:a7:bb:7a:23:a6:b1:6f:bf:56:5a:cd:
f5:1f:74:45:1f:47:95:87:73:47:bd:c5:f8:e4:8d:
d2:96:55:a2:9e:9e:cc:1e:b4:4d:56:23:1e:3b:70:
dc:f9:63:92:46:3e:57:ec:c3:c3:58:2b:42:1f:4d:
6e:31:4e:f4:bc:b9:09:9e:0f:12:2a:e3:27:e7:42:
17:f6:5f:49:e2:8e:ce:5f:1d:74:91:a0:2c:be:6e:
87:7c:fa:41:1f:1a:c6:67:95:3c:60:4f:ab:09:a0:
fe:60:ca:ac:5e:24:e7:d0:90:c7:1c:39:1e:9b:d2:
a2:b1:bb:db:8f:01:e6:91:3c:ec:16:39:9d:1b:24:
14:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:28:31:71:02:33:BF:1E:F8:EE:7F:17:E9:03:7D:4B:28:00:8A:E7
X509v3 Authority Key Identifier:
keyid:B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:83:89:3a:39:ee:23:a2:68:a2:8e:76:b6:09:d8:c9:0a:3b:
a9:17:a8:d5:3e:5c:f2:12:c3:f7:be:e9:13:87:e4:9b:72:55:
04:4d:19:df:de:97:38:cc:83:67:68:c0:7a:40:fb:bf:ca:20:
32:6a:9a:36:82:d3:9f:43:49:a1:d6:ed:26:28:68:bf:5f:74:
db:80:e6:5b:b0:cf:4b:0e:f9:43:46:fd:b2:91:8b:f9:a7:ff:
fa:f1:b8:72:7d:40:db:6f:41:c7:a7:46:f7:f1:23:ea:8f:46:
e0:4f:fe:61:8b:70:cb:5c:24:74:26:29:6c:4f:7a:05:92:08:
88:56:a2:03:61:7a:68:25:d7:fd:15:ae:ff:8a:6d:6f:e2:83:
fa:bf:3e:88:bb:4a:90:00:7a:6c:5f:dc:ff:06:a5:01:32:24:
ad:03:94:54:dc:7f:ee:00:74:ea:96:8c:37:97:2e:c4:ac:40:
30:47:ca:9b:9a:79:70:40:92:60:0a:54:3b:69:6c:a8:ad:5a:
80:fb:76:d8:e0:4e:70:fe:f0:9a:ab:53:e5:93:30:5e:f1:e0:
2b:b4:f1:a3:33:3a:84:87:dc:d7:6d:b7:6d:be:99:cf:dd:1b:
be:e6:57:37:31:97:70:a2:f6:88:c8:e5:33:46:ae:3c:d5:74:
a8:48:ab:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 02:09:08 2025 by rpki-client