Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
File: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft (raw, json)
Hash identifier: d2bm7vLdVnCBYyeWv+y+rTINOmkCYDuB8JurU9h8cys=
Subject key identifier: E3:4C:A8:03:FF:7A:06:C7:B2:80:5F:92:38:39:0D:ED:6F:25:5C:C8
Authority key identifier: FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
Certificate issuer: /CN=fad7e14a262560191c66576998e9c69b89c3c136
Certificate serial: 019937CB0BDA35A9CDA4E84F9B3C92ED7417
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
Manifest number: 0B0C
Signing time: Thu 11 Sep 2025 08:01:17 +0000
Manifest this update: Thu 11 Sep 2025 08:01:17 +0000
Manifest next update: Fri 12 Sep 2025 08:01:17 +0000
Files and hashes: 1: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl (hash: L3nq9pIfLgYVysbS7TiTD7z3swFl8tWg1CCffNhgfSA=)
2: ELYZJGHcWhKUiY7ABJ-PY-iSroQ.roa (hash: XKv64QH5ODk1+MXzK56Lue/Lun/NuUmKCWEmKamL9J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 05:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:37:cb:0b:da:35:a9:cd:a4:e8:4f:9b:3c:92:ed:74:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7e14a262560191c66576998e9c69b89c3c136
Validity
Not Before: Sep 11 08:01:17 2025 GMT
Not After : Sep 12 08:01:17 2025 GMT
Subject: CN=e34ca803ff7a06c7b2805f9238390ded6f255cc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d7:e0:3a:4b:84:c8:ae:b1:b0:7a:3f:3a:53:
bc:21:9d:cf:e1:df:12:62:73:24:6b:c9:d4:44:74:
ac:30:f0:b1:93:d8:9e:cc:a4:3d:50:87:dd:5b:a7:
ff:f2:33:d4:02:69:e3:1d:02:7b:7b:e3:8b:35:d2:
4a:15:93:ff:36:df:06:c8:1c:9c:d2:ab:29:6a:f7:
ef:b1:e2:19:2c:cc:e9:23:07:44:6f:e5:3d:b7:e1:
37:25:ec:9c:2d:7a:3c:37:b1:a9:3e:8f:1c:87:cb:
c9:52:e1:d6:6f:3f:d1:23:5b:92:d0:84:38:88:ff:
f2:72:b8:95:e8:d7:a6:d9:3e:ee:5e:13:1f:de:c5:
54:9b:4f:94:5f:8a:69:19:30:6d:e9:e0:68:b7:bf:
58:ef:a0:69:6d:83:cf:28:d3:6d:16:15:a6:78:cc:
13:a0:d1:c3:fd:ab:fb:79:df:b0:60:aa:2a:11:5b:
ae:34:8b:22:e4:7b:a1:20:3a:e7:bc:1f:a8:ec:a0:
8d:06:75:85:ca:1d:1c:7b:6b:9a:33:a5:02:65:86:
8e:87:a5:49:30:db:d1:46:a1:f2:8b:09:d7:6d:a1:
92:cd:53:31:b3:6a:cc:8f:71:2c:3c:d4:25:41:df:
9c:f3:d7:c3:b7:a1:ca:54:52:3a:08:09:d7:c3:88:
da:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:4C:A8:03:FF:7A:06:C7:B2:80:5F:92:38:39:0D:ED:6F:25:5C:C8
X509v3 Authority Key Identifier:
keyid:FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:29:f0:03:44:8f:8f:ce:e2:cd:3c:82:59:0e:e9:2f:3a:82:
c6:ec:3c:b3:01:d8:18:89:50:1a:1d:e9:78:fa:a2:b1:34:39:
76:ee:ee:68:a1:83:6b:76:7e:17:ed:a3:62:55:df:e4:0a:48:
c2:e0:5a:aa:fa:3f:0f:17:0b:89:25:c3:f0:b6:2b:7f:ae:8c:
00:1c:f4:1e:cf:b5:29:22:2b:b3:32:6e:bb:8c:98:c4:a5:2a:
d4:3f:bc:5e:41:b1:5e:51:6d:c8:2a:e2:bd:ba:f9:9e:96:5e:
8f:bb:42:90:a1:95:dc:f0:55:32:4f:12:7d:d1:fd:ad:d4:cf:
8d:1e:42:d5:1c:36:79:b7:b5:4c:72:2e:29:3d:ad:50:e2:0c:
e7:f1:a2:35:78:b9:87:d9:ae:ac:cc:e7:a6:51:fd:d0:19:36:
c2:34:2a:a4:50:2b:2f:70:84:b3:c8:e9:2d:27:0b:14:0c:43:
d9:97:fb:fa:86:34:e2:10:4c:b1:16:d4:c1:51:6a:23:57:e7:
5d:6a:ed:3f:c5:f3:43:11:b7:e2:26:c0:1b:6a:af:65:20:af:
6e:8f:80:1c:7d:e6:b6:e3:0c:f6:93:0c:3d:76:7d:4b:58:f8:
a4:10:b1:df:fd:f3:0a:e6:92:cc:68:50:fe:29:13:5e:dd:c6:
d8:6a:90:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 14:11:52 2025 by rpki-client