Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
File: tUFVgYH3hjEZv0oVVMddqx9sUpI.mft (raw, json)
Hash identifier: vYl4wbmh8J1aqW6BMni8vEP/R0cMZJ3gyJBaahZH7ZE=
Subject key identifier: 97:FC:88:DF:EF:38:BF:B8:A0:82:39:55:04:38:2B:63:58:B0:75:4F
Authority key identifier: B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
Certificate issuer: /CN=b541558181f7863119bf4a1554c75dab1f6c5292
Certificate serial: 01992B8FDC27EDAC0092AE52DAA32124AD11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
Manifest number: 0491
Signing time: Mon 08 Sep 2025 23:01:12 +0000
Manifest this update: Mon 08 Sep 2025 23:01:12 +0000
Manifest next update: Tue 09 Sep 2025 23:01:12 +0000
Files and hashes: 1: 1-HTDTTyHqsL8qWvl7tdyMvlROZo.roa (hash: rDjH3KjSESto7R5VRIkalhKhlHHWAhNK5nCorKVRQGY=)
2: 74rFfsVLB83xqrl230f69RyQMZo.roa (hash: uIHKdF0Md6VmRaPIQqLHKtiwEPhOEBVDe4Gopq3AYXw=)
3: UVLB6EC_S4cdufZlLeGb47V1ReM.roa (hash: +1SPWwuKyVjoCsUjj6tw92B1zG4mEC7h1VegEv3YxLE=)
4: dCGcZg2F9Ea5zPZKvzxM5matRyQ.roa (hash: CVLQb8zE8ujxwsspK1MH+reOHlP+NQATO7Xjq1jEaUs=)
5: tUFVgYH3hjEZv0oVVMddqx9sUpI.crl (hash: alje+PbJSFQCpV9X8+NxPE3tiRrRfov3d8V3wkoLjmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2b:8f:dc:27:ed:ac:00:92:ae:52:da:a3:21:24:ad:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b541558181f7863119bf4a1554c75dab1f6c5292
Validity
Not Before: Sep 8 23:01:12 2025 GMT
Not After : Sep 9 23:01:12 2025 GMT
Subject: CN=97fc88dfef38bfb8a082395504382b6358b0754f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f5:88:e4:7c:11:1e:a3:43:ff:82:ce:f8:4e:
4d:fb:ed:55:f9:32:b3:60:5b:81:5a:24:57:53:21:
08:64:ed:fe:4a:73:08:96:7d:be:1f:ac:1d:8e:13:
7d:1e:86:b0:06:df:d4:2b:e1:8c:c6:63:37:4a:62:
d0:28:66:70:cf:6b:7f:e6:1b:63:ea:29:c4:78:0e:
02:f2:65:3d:ac:a2:dd:23:ae:37:8a:a6:a9:a5:51:
3c:09:01:1d:5a:c1:1d:7c:3f:47:d6:a3:30:91:4d:
2f:31:a6:eb:55:95:0c:75:04:f1:56:e5:ab:e5:55:
f4:9f:44:80:3e:62:39:72:ce:e8:e6:03:06:22:49:
3d:12:9c:ea:be:c2:e9:b6:b9:2d:45:08:7b:e4:e5:
cf:38:f1:41:2f:5b:81:1a:93:39:be:94:ca:c3:e4:
e6:6b:98:5a:c7:3d:66:2f:a9:35:6c:a6:1c:f2:7b:
44:74:22:8d:b8:88:09:57:2c:b1:6a:2c:4f:36:7d:
b2:e5:60:59:0c:2c:1e:f8:3b:b6:1b:8f:fb:81:68:
ed:d0:ff:2a:52:cc:1a:26:fd:ed:63:52:48:82:80:
3a:01:e4:94:0e:67:02:37:a9:08:f2:69:f1:41:f6:
2f:1d:18:7c:22:a6:c8:7d:60:35:b8:66:9c:7d:46:
e7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:FC:88:DF:EF:38:BF:B8:A0:82:39:55:04:38:2B:63:58:B0:75:4F
X509v3 Authority Key Identifier:
keyid:B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:aa:59:9e:ea:e6:c5:c4:59:99:de:6f:48:89:e0:6e:bc:1d:
55:3c:43:73:86:6c:bd:7b:34:17:ea:f5:89:8c:1a:9c:7b:0c:
59:aa:a4:5e:62:fb:c5:a0:66:1f:2b:b8:b4:52:05:c8:2f:ad:
6b:d8:1a:b0:74:9c:94:3f:bd:e8:47:88:a2:63:57:bc:ea:e8:
ad:5b:1c:0c:0b:6c:c0:eb:fd:c9:2d:d2:ee:1d:b5:a1:82:f8:
f4:f3:ef:59:0e:fd:3c:6c:f1:dd:31:e7:02:89:92:92:f7:72:
df:cd:23:0b:a0:a1:45:ea:bd:e1:9e:c9:e6:4d:3d:ea:c5:d1:
5a:c8:3b:66:5e:ce:e0:1d:4f:73:78:29:25:60:14:2a:f9:21:
90:c4:2b:75:37:42:63:34:ab:ca:79:2c:1d:ba:6c:b8:33:49:
61:31:35:dc:ce:af:66:95:8b:29:ce:c2:44:d4:44:8c:1f:25:
cd:54:1b:63:06:e2:b8:d6:65:d1:94:a8:df:e8:17:58:80:fd:
c7:03:61:0e:22:27:f9:d8:b6:fc:37:41:e4:90:03:2e:c1:ef:
3d:bc:ff:7f:44:05:5c:c2:98:ad:26:67:80:56:c6:46:a3:f2:
70:ec:bf:f8:4e:21:eb:ba:98:ce:b4:3d:b4:96:0a:80:e8:17:
0e:1f:c8:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 08:16:31 2025 by rpki-client