Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft
File: tcOYwHMlxA59dtI5ahvoXEL9wsg.mft (raw, json)
Hash identifier: JZPBc2TubPXBhBBoFVGFkbHCKH1U+M0LtjUap0MeBdY=
Subject key identifier: F8:A4:F1:24:3C:BA:E8:75:03:7D:53:E2:C6:4C:94:93:22:78:4A:CA
Authority key identifier: B5:C3:98:C0:73:25:C4:0E:7D:76:D2:39:6A:1B:E8:5C:42:FD:C2:C8
Certificate issuer: /CN=b5c398c07325c40e7d76d2396a1be85c42fdc2c8
Certificate serial: 0199180A641970B7493D635040621952EFDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tcOYwHMlxA59dtI5ahvoXEL9wsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft
Manifest number: 05EA
Signing time: Fri 05 Sep 2025 04:02:38 +0000
Manifest this update: Fri 05 Sep 2025 04:02:38 +0000
Manifest next update: Sat 06 Sep 2025 04:02:38 +0000
Files and hashes: 1: HeTNJZjhVHC3QazbToD7IxfPGhg.roa (hash: k/lPKk3dyIcZTARgL9fxQcpWqaVNc6/eODt+UcBvC5M=)
2: tcOYwHMlxA59dtI5ahvoXEL9wsg.crl (hash: RF6VswxrUUYHhQTCzX7K6SJISjEjArlEknzoa9PEc3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tcOYwHMlxA59dtI5ahvoXEL9wsg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:0a:64:19:70:b7:49:3d:63:50:40:62:19:52:ef:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5c398c07325c40e7d76d2396a1be85c42fdc2c8
Validity
Not Before: Sep 5 04:02:38 2025 GMT
Not After : Sep 6 04:02:38 2025 GMT
Subject: CN=f8a4f1243cbae875037d53e2c64c949322784aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:aa:52:7b:3d:b3:3e:18:34:33:df:51:0c:79:
7a:5d:ff:11:b7:79:23:80:83:a7:80:9f:ec:f7:cc:
65:3c:f4:70:d7:48:4b:02:e8:e7:42:d9:a2:ca:64:
9e:26:9b:53:67:c0:31:f0:04:6a:41:1a:76:6c:14:
8e:d4:ea:45:6b:e4:0f:79:e9:b6:73:ee:1d:b8:ee:
a8:bb:b4:cd:9f:bf:b5:af:c4:b6:44:ad:74:06:ab:
0f:ff:8e:df:75:f8:55:71:dd:55:17:8c:c9:98:1c:
9c:b6:98:8b:cc:9a:dd:58:63:e1:63:07:79:3d:98:
cf:c6:49:86:43:0f:25:21:27:34:5b:6e:b8:f9:e0:
87:96:ce:58:ab:e5:0d:3a:eb:41:64:a7:e8:00:6d:
29:08:b5:ed:bb:77:30:13:93:8e:fb:ca:b5:d5:07:
5e:c0:7c:af:50:46:d5:7a:b6:8f:7f:2c:7d:ce:a5:
34:e3:b3:2a:a6:87:32:89:7d:73:04:e5:39:03:ad:
be:dc:9a:65:43:70:ef:63:d1:2c:95:f1:9b:c7:56:
9a:af:aa:8c:c0:57:b6:ab:ae:a7:e0:de:0c:48:81:
40:9f:3a:29:1d:c2:c2:22:ec:d3:7c:c0:e9:29:61:
0a:c7:71:d5:21:33:52:36:5d:0f:ef:ea:af:bc:1f:
8b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:A4:F1:24:3C:BA:E8:75:03:7D:53:E2:C6:4C:94:93:22:78:4A:CA
X509v3 Authority Key Identifier:
keyid:B5:C3:98:C0:73:25:C4:0E:7D:76:D2:39:6A:1B:E8:5C:42:FD:C2:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tcOYwHMlxA59dtI5ahvoXEL9wsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:c3:24:a9:fd:5d:45:6b:b3:4d:41:47:d0:93:a2:ea:61:dc:
27:68:c1:f0:86:54:26:55:55:43:d3:9a:3b:9c:ef:a9:89:82:
f7:2c:37:70:48:23:4a:ba:59:dc:51:9f:7f:fd:fa:f7:72:c9:
b6:2f:86:4b:ca:88:f3:f2:21:de:3d:8e:ad:b4:75:f8:4f:28:
23:04:65:95:37:89:bb:68:0a:47:1e:11:d4:38:f6:c7:02:ae:
8f:bd:de:6e:ea:43:32:70:e8:e8:a5:a7:c8:f4:6a:1e:21:0d:
04:01:f4:64:0c:dd:83:e1:02:bb:72:bc:8d:d7:48:bc:f3:31:
08:5a:eb:75:7f:aa:35:21:a5:1d:f9:94:a8:b6:d5:51:0c:72:
bc:cf:a7:57:9e:e1:f7:82:9f:de:ab:aa:0a:2e:4c:b7:d5:ad:
bb:a9:71:2d:a3:c1:93:21:ed:bd:c7:d9:de:82:cd:4e:7c:ce:
31:c0:85:86:13:a2:8d:c1:8a:ed:ba:79:e5:22:bd:a2:53:d4:
ac:c2:f3:4e:dd:e8:3d:b4:4a:e6:27:3c:f0:ad:ae:d0:d2:61:
d6:48:f9:28:f8:50:3b:5e:e2:cc:9e:11:cb:4e:7b:72:2b:4c:
aa:10:fd:02:e3:3d:3b:d3:33:10:01:df:3b:cf:8d:24:3b:16:
84:58:58:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:06:20 2025 by rpki-client