Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
File: tFOob9MIG4A-3BDSO77akdeTICU.mft (raw, json)
Hash identifier: KEVZ6weT/qpnl6CVOUJTwytTB5cUHO+GHLAWZqKleqM=
Subject key identifier: 0F:1A:7F:7C:A5:32:A6:C5:4C:BD:03:1D:A2:F0:37:6D:D9:54:85:23
Authority key identifier: B4:53:A8:6F:D3:08:1B:80:3E:DC:10:D2:3B:BE:DA:91:D7:93:20:25
Certificate issuer: /CN=b453a86fd3081b803edc10d23bbeda91d7932025
Certificate serial: 019A13F27DD9D6D7CC6F349AC23ACD54268B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
Manifest number: 1682
Signing time: Fri 24 Oct 2025 02:00:50 +0000
Manifest this update: Fri 24 Oct 2025 02:00:50 +0000
Manifest next update: Sat 25 Oct 2025 02:00:50 +0000
Files and hashes: 1: 4PFxlTOs-98tpvMHS5yXn75NOOM.roa (hash: NikMUSzzpLJM1+OSBrAyuxchZ1m24pIf1f/fleT58OE=)
2: Z8zKwSwU-_AnJQp6zP0kmhvngxk.roa (hash: DKK2FLL+hiqeGN3n2BFldkSB9QGntlwHo6IOei4/Bt0=)
3: tFOob9MIG4A-3BDSO77akdeTICU.crl (hash: 1B9ZK841gX5NbRieCnhngoC/BdKXBujwnaDTp8ZkP1A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Oct 2025 21:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:13:f2:7d:d9:d6:d7:cc:6f:34:9a:c2:3a:cd:54:26:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b453a86fd3081b803edc10d23bbeda91d7932025
Validity
Not Before: Oct 24 02:00:50 2025 GMT
Not After : Oct 25 02:00:50 2025 GMT
Subject: CN=0f1a7f7ca532a6c54cbd031da2f0376dd9548523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:83:52:58:c1:89:82:fb:9a:c9:c9:6f:06:92:
bc:72:3a:cc:89:d1:a6:8b:c3:77:2d:4b:87:8d:1b:
90:76:16:76:69:7d:87:ec:e2:2f:ef:45:54:87:cf:
5e:9c:49:31:ac:b1:ac:14:d6:40:71:a6:06:03:af:
70:83:03:fe:0c:ab:29:f2:c9:89:d0:b8:6d:94:d2:
68:ad:8b:51:b8:9e:f2:b8:f7:d1:13:f0:b5:c5:08:
87:f5:00:5b:74:f3:79:c7:fd:b1:07:81:0b:f9:19:
b9:0f:1a:c8:de:61:22:3e:81:ec:b1:d4:38:a8:2d:
b4:7c:4b:6e:b0:e4:0c:07:48:e7:cc:1d:26:70:c0:
62:15:82:19:2d:8c:5e:67:5f:14:ef:57:cb:64:82:
63:a6:37:40:1e:0a:d4:64:e1:2d:71:b2:30:de:0b:
57:09:56:4e:c0:95:fa:ef:7e:02:2a:93:a8:bb:49:
03:d2:59:7e:61:eb:e7:bb:cf:b9:3f:6d:eb:77:97:
1a:99:52:85:48:42:19:cd:db:fe:08:01:af:e3:ab:
e0:57:4e:87:59:fe:58:c4:fa:8c:8c:15:25:0f:da:
96:27:6f:ca:ed:0e:44:2d:d3:54:f2:1a:9b:ba:c5:
c3:3b:37:b3:8a:57:8a:1f:fb:4d:5f:8d:1d:40:e6:
7b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:1A:7F:7C:A5:32:A6:C5:4C:BD:03:1D:A2:F0:37:6D:D9:54:85:23
X509v3 Authority Key Identifier:
keyid:B4:53:A8:6F:D3:08:1B:80:3E:DC:10:D2:3B:BE:DA:91:D7:93:20:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:e8:b0:33:de:39:df:5d:a7:28:52:da:7b:e4:43:47:7d:a1:
f8:22:93:84:f7:fc:12:bf:7f:ce:e4:6f:29:29:bd:5b:ef:e0:
43:5e:9c:0c:2c:78:d3:4f:be:ec:87:3b:7c:fe:73:c0:9a:90:
e9:12:ad:b7:e8:b4:3d:a8:f9:80:8a:cf:0c:85:9d:93:30:47:
26:ad:13:8c:79:28:dc:1c:df:0d:ae:cc:5e:cf:3d:af:58:70:
ce:9d:00:75:38:96:e8:b5:13:40:c1:03:b8:55:c6:66:54:39:
85:7d:df:6a:70:9f:5e:a4:a9:c0:ab:34:a3:e5:54:74:95:d3:
f9:8b:f1:f9:ce:be:c3:51:15:fc:76:14:24:77:16:d7:20:e3:
8d:84:78:c5:90:5f:b9:eb:2a:90:44:77:67:ea:e6:be:bd:f3:
2e:f6:5e:1e:22:1c:d0:41:66:bc:e2:9d:30:77:e8:f2:99:72:
15:77:0b:3b:4d:ba:be:c5:13:d0:6c:fa:fd:dc:63:50:54:03:
d3:6f:eb:6a:bf:17:e1:90:a6:89:21:cf:66:2b:76:eb:58:da:
8b:61:3f:1e:b9:0f:f5:80:54:b0:50:0a:64:e2:fe:2f:95:36:
31:46:90:05:bb:26:cd:30:5d:b1:dc:7e:f7:35:37:77:5c:8f:
fd:02:5b:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 03:34:59 2025 by rpki-client