Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
File: tFOob9MIG4A-3BDSO77akdeTICU.mft (raw, json)
Hash identifier: gc6XphWHezl6QWXyVwnBFiGTTcNy8ocD8E981kfRvt4=
Subject key identifier: A2:1F:7D:B5:F9:9D:2A:E8:2C:FB:D6:D7:8C:A4:6E:14:EF:0E:C0:EB
Authority key identifier: B4:53:A8:6F:D3:08:1B:80:3E:DC:10:D2:3B:BE:DA:91:D7:93:20:25
Certificate issuer: /CN=b453a86fd3081b803edc10d23bbeda91d7932025
Certificate serial: 019928C52FE0C9DF2E3B42A024F1FBAD5A9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
Manifest number: 1607
Signing time: Mon 08 Sep 2025 10:00:35 +0000
Manifest this update: Mon 08 Sep 2025 10:00:35 +0000
Manifest next update: Tue 09 Sep 2025 10:00:35 +0000
Files and hashes: 1: h8oFDHIXTub3TgbD4vBpQOwCmWM.roa (hash: lwyf55gn3PMFr0CsrdeYlJw82BVP+7eUtEsfzrm/dIo=)
2: tFOob9MIG4A-3BDSO77akdeTICU.crl (hash: ZVweuC9JyzplfLrZ5yg7ADTrz/Gzr08/+1dtzePTfIE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 10:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:28:c5:2f:e0:c9:df:2e:3b:42:a0:24:f1:fb:ad:5a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b453a86fd3081b803edc10d23bbeda91d7932025
Validity
Not Before: Sep 8 10:00:35 2025 GMT
Not After : Sep 9 10:00:35 2025 GMT
Subject: CN=a21f7db5f99d2ae82cfbd6d78ca46e14ef0ec0eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:0b:3b:81:af:5e:3d:d6:b5:bc:31:a1:ea:06:
15:4e:ef:c0:31:0c:3c:10:4c:21:52:83:1f:b2:e2:
27:17:bc:2d:c6:c7:36:f1:c2:63:16:0b:9e:9f:27:
a1:5c:9c:c8:be:4c:47:2c:05:5f:4f:66:3b:28:46:
a1:f5:2c:bb:3d:3a:5f:97:87:3f:92:79:dc:08:81:
7a:ec:c6:9b:c9:7e:99:23:d8:be:9a:b1:34:6f:51:
3c:3d:db:bb:93:d6:4e:b7:1c:14:b6:cd:7e:3d:3a:
ba:f1:8c:70:43:ba:fa:30:67:d6:18:e5:b6:d5:c0:
c4:f1:05:b2:c1:8c:d6:57:96:67:ce:d6:e0:7a:2a:
d0:0f:95:74:bc:21:52:b6:99:d6:98:fe:cb:70:f6:
b5:2f:11:8f:d8:54:4f:0e:39:52:ff:aa:4b:d1:e2:
5d:eb:c1:ea:17:81:65:78:0e:a4:af:e0:9d:3e:2a:
3e:3b:02:c0:4f:2a:7f:32:6f:7a:5c:e4:d8:3a:30:
c0:af:80:9a:29:13:ec:18:af:5a:6d:15:69:4e:08:
75:ec:87:eb:59:c3:45:2b:ee:e3:67:63:bb:2e:48:
12:fd:b1:8f:2f:90:6f:71:11:1a:a0:75:2b:9d:41:
8b:b6:71:13:87:f5:06:3d:67:87:d8:fe:01:c6:fb:
1b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:1F:7D:B5:F9:9D:2A:E8:2C:FB:D6:D7:8C:A4:6E:14:EF:0E:C0:EB
X509v3 Authority Key Identifier:
keyid:B4:53:A8:6F:D3:08:1B:80:3E:DC:10:D2:3B:BE:DA:91:D7:93:20:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:ca:51:9f:9c:c9:93:2f:33:a8:ce:af:f7:1a:fb:93:fe:ef:
47:8c:f3:f7:1f:8a:64:0d:cb:45:fe:7f:28:1c:72:4f:07:ea:
1e:43:02:57:3f:9f:36:b8:10:d1:8f:56:4a:09:c8:90:86:f4:
11:2b:b4:04:8c:c0:1c:15:01:c4:3b:50:e1:c7:39:aa:1a:d7:
81:be:a4:01:b0:08:53:17:f9:b7:44:21:8e:89:6b:d9:c4:c2:
34:3a:0d:b7:eb:33:60:51:26:58:c8:48:b0:ff:03:50:af:85:
5e:fb:1e:2d:57:eb:41:8f:0b:b8:c2:b5:73:b1:d6:43:9b:0a:
a2:2d:74:78:7d:1e:b1:5b:33:41:a8:39:ed:bc:fc:f4:f2:06:
91:4d:f7:05:d1:29:7a:d3:7d:ca:0f:dd:3a:7d:d1:6d:ec:5d:
5a:d9:08:f9:b1:2e:42:74:9f:63:76:88:ba:46:c0:c8:60:d9:
cb:fe:10:fb:11:51:4b:d4:c9:d0:8d:0e:e8:00:fa:9e:2e:b3:
c6:17:bd:c9:04:16:95:35:26:5c:81:db:67:7a:d5:67:52:81:
ac:3b:56:22:c2:66:e7:63:fa:99:62:15:47:b8:74:16:f3:38:
01:b0:78:61:a1:16:78:6b:39:81:94:bc:b9:e5:61:e8:4a:e0:
1d:23:8b:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 16:06:01 2025 by rpki-client