Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
File: tUFVgYH3hjEZv0oVVMddqx9sUpI.mft (raw, json)
Hash identifier: Zt29q2BzXNgE5rHz6jmUaT/zu7havEEAbows+8qle5U=
Subject key identifier: 56:76:16:4E:CC:3D:58:93:65:70:C3:32:32:E7:27:39:85:80:13:CC
Authority key identifier: B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
Certificate issuer: /CN=b541558181f7863119bf4a1554c75dab1f6c5292
Certificate serial: 019A1B3E0F7558BAA95B660CB27A6598D95C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
Manifest number: 0510
Signing time: Sat 25 Oct 2025 12:00:43 +0000
Manifest this update: Sat 25 Oct 2025 12:00:43 +0000
Manifest next update: Sun 26 Oct 2025 12:00:43 +0000
Files and hashes: 1: 1-HTDTTyHqsL8qWvl7tdyMvlROZo.roa (hash: rDjH3KjSESto7R5VRIkalhKhlHHWAhNK5nCorKVRQGY=)
2: 74rFfsVLB83xqrl230f69RyQMZo.roa (hash: uIHKdF0Md6VmRaPIQqLHKtiwEPhOEBVDe4Gopq3AYXw=)
3: UVLB6EC_S4cdufZlLeGb47V1ReM.roa (hash: +1SPWwuKyVjoCsUjj6tw92B1zG4mEC7h1VegEv3YxLE=)
4: kQsGPemVQTjeA88dAZ8pv0jsM5Y.roa (hash: +/+dI6sKhxOqMNJuHemXER1d+kDUpiEiqbk+G5uJ4KU=)
5: tUFVgYH3hjEZv0oVVMddqx9sUpI.crl (hash: 90LjuXTylBpUneetMjIDHjQvKj7ppNWG6l8gh9s1MMc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 11:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1b:3e:0f:75:58:ba:a9:5b:66:0c:b2:7a:65:98:d9:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b541558181f7863119bf4a1554c75dab1f6c5292
Validity
Not Before: Oct 25 12:00:43 2025 GMT
Not After : Oct 26 12:00:43 2025 GMT
Subject: CN=5676164ecc3d58936570c33232e72739858013cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:55:fd:68:81:39:1b:52:f3:1b:2d:91:0b:af:
10:b1:53:11:b3:4c:ca:66:61:29:84:85:fd:5b:02:
89:37:3d:56:05:57:92:ca:69:d8:27:60:5d:69:75:
f6:cd:a4:91:07:17:24:d3:97:e8:12:4d:ec:2b:50:
dc:1b:fe:ff:2f:5d:ab:50:a8:2b:dd:4a:02:f5:d7:
0f:e6:bc:d5:cc:81:04:e8:15:14:17:13:84:1e:60:
b2:da:3e:a6:53:e6:c1:5d:1d:18:83:a3:37:a9:4c:
f1:b3:40:ab:bf:c4:67:fd:79:10:d5:bc:3d:7c:eb:
b7:25:2b:f4:1c:77:f7:75:9d:32:5d:c6:1f:43:43:
13:f3:ec:0a:d2:de:98:48:b1:e5:ff:2d:c6:38:93:
ea:e6:cf:d1:d1:60:1c:f8:c9:2d:9a:d5:68:ff:b7:
b8:ed:87:93:fa:42:10:9f:ae:d1:65:77:ba:5a:3d:
0d:40:95:37:5d:92:40:6e:37:cf:d8:64:d1:22:9e:
57:a1:e8:b6:bc:58:8b:e1:0f:10:ea:0f:b6:d8:b9:
64:8c:3b:fe:fc:dd:9f:b2:cd:38:d1:c3:62:ec:33:
b3:e9:7d:d4:5f:dd:7e:02:47:7a:e7:8e:14:b7:05:
14:e0:a2:72:69:c2:a7:08:c7:20:66:0e:04:49:11:
b0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:76:16:4E:CC:3D:58:93:65:70:C3:32:32:E7:27:39:85:80:13:CC
X509v3 Authority Key Identifier:
keyid:B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:b5:82:4b:7e:0a:3a:f5:8f:36:8d:62:ed:ee:5d:8b:5e:6a:
f1:58:55:7b:91:44:90:9b:de:57:45:50:bc:07:71:cd:ae:43:
29:65:5a:7b:d7:8f:79:73:3c:a6:ee:bc:ef:cb:c8:14:d9:56:
0a:25:b8:75:ef:b5:3e:ff:50:cd:29:ce:2d:af:f4:10:a0:29:
8a:aa:03:5f:fe:31:a0:3f:1f:11:b1:54:3e:09:da:99:bc:99:
be:c4:24:d0:3c:e9:e1:1d:c1:5b:a2:9b:d6:49:7b:f0:68:69:
05:b9:07:3f:02:91:70:cb:c4:fa:c0:5b:e3:c4:c4:32:b1:e2:
5e:82:fb:99:7a:90:d7:3f:8b:38:d9:b9:0f:85:57:5c:fa:2e:
e4:8d:42:e3:bc:96:27:01:89:78:8d:33:51:73:ab:84:e9:d2:
fb:fa:dc:31:62:43:8c:b8:a2:f2:c4:da:2c:50:f1:90:96:cb:
2b:c8:be:3b:b6:3e:77:39:6e:f9:a4:2a:39:00:c4:40:06:9e:
73:63:6d:bc:41:da:e0:bb:e4:52:d7:b4:82:f8:ee:3b:96:a2:
e6:df:c6:8e:97:f6:b2:36:06:dc:52:00:1f:a4:79:24:d8:fe:
e8:85:5d:00:d2:59:58:6c:ef:3e:23:a4:01:23:aa:91:ad:0b:
28:fc:e2:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 17:58:30 2025 by rpki-client