Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
File: 1-TmwPxKU69NaOxXWldfpH4y0H6A.mft (raw, json)
Hash identifier: Hz6jYkhtuh7bjKQpHSFSXguZIAIZ9BFgTjyKGr7JpZ8=
Subject key identifier: 69:BF:57:55:9D:DD:FD:62:11:F0:46:CB:34:E0:73:A2:06:1E:0E:42
Authority key identifier: F9:39:B0:3F:12:94:EB:D3:5A:3B:15:D6:95:D7:E9:1F:8C:B4:1F:A0
Certificate issuer: /CN=f939b03f1294ebd35a3b15d695d7e91f8cb41fa0
Certificate serial: 019A714A022D41BD6A10AF3F19A63C63B4EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
Manifest number: 136A
Signing time: Tue 11 Nov 2025 05:01:06 +0000
Manifest this update: Tue 11 Nov 2025 05:01:06 +0000
Manifest next update: Wed 12 Nov 2025 05:01:06 +0000
Files and hashes: 1: 1-TmwPxKU69NaOxXWldfpH4y0H6A.crl (hash: bgWW3oLKKiARalDMdNp9fvItQFJxjpqos1BUrQHxPN4=)
2: S1K-LNOfEdqMwJPR6JwjXy3twNM.roa (hash: 6+dgtQWWnCxkd6rViHnDLK3NWbLzGQNeNx6DA6f+PL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:02:2d:41:bd:6a:10:af:3f:19:a6:3c:63:b4:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f939b03f1294ebd35a3b15d695d7e91f8cb41fa0
Validity
Not Before: Nov 11 05:01:06 2025 GMT
Not After : Nov 12 05:01:06 2025 GMT
Subject: CN=69bf57559dddfd6211f046cb34e073a2061e0e42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f1:47:83:28:fb:b7:91:ae:76:44:f4:77:16:
bb:52:19:00:5d:7e:37:6b:e6:8b:a5:d3:dc:97:26:
c7:93:c5:b5:c2:51:33:a3:57:8c:9e:e6:08:75:83:
cb:42:98:92:80:2c:e0:19:3a:c3:3a:8e:4d:e4:6b:
d5:83:6e:38:d7:cd:e3:96:68:ab:43:46:5f:93:e7:
3e:db:75:51:97:4c:40:c3:5b:b4:75:fc:fa:f7:45:
c0:37:f0:b2:90:4d:ed:6d:5f:04:9a:27:2f:b3:d4:
13:51:6e:42:ba:35:fc:55:e1:e9:a7:4b:36:ff:d2:
e0:37:29:a3:54:1e:e0:d8:6b:a2:61:c9:d3:07:a6:
5e:b0:b2:1c:d2:34:6c:58:a4:70:99:84:65:14:61:
b3:87:7d:82:c4:0b:47:4b:aa:1e:ce:69:29:a7:71:
ad:7b:37:98:3f:9b:c1:bd:63:c9:6d:ac:77:49:12:
d6:f5:11:39:fe:ea:99:30:df:08:cb:e1:38:62:b2:
3b:e6:b1:7c:84:f7:ef:6e:38:19:8e:ad:93:3f:08:
f3:af:9d:88:aa:42:af:0a:08:ed:01:02:bc:8c:4e:
fd:d7:27:32:d7:13:ae:26:f5:3a:54:54:a7:bd:26:
1c:25:86:c7:b4:9f:17:8d:da:68:d5:94:0e:5a:cf:
77:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:BF:57:55:9D:DD:FD:62:11:F0:46:CB:34:E0:73:A2:06:1E:0E:42
X509v3 Authority Key Identifier:
keyid:F9:39:B0:3F:12:94:EB:D3:5A:3B:15:D6:95:D7:E9:1F:8C:B4:1F:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:29:df:fe:e7:38:c9:4d:31:db:1f:36:94:f4:9d:29:ce:cc:
94:a0:50:7e:47:c0:77:b1:93:4d:56:87:e5:97:c1:27:9d:ed:
3c:ac:ab:9f:90:99:00:e3:c3:20:1d:73:85:db:d9:94:8b:28:
1c:49:1a:dc:8e:0e:72:fe:4f:d1:3e:fe:0b:9b:96:14:96:37:
ef:55:22:bb:fa:0b:cf:70:f6:71:99:b6:2b:cc:6e:91:e1:4f:
8c:ee:fa:ab:fd:f7:0c:a0:45:f0:41:dc:9f:3b:13:29:ef:dc:
1b:0a:ef:28:93:fd:19:9a:66:06:07:2c:06:c0:bc:06:70:5f:
91:6a:58:1c:a8:dc:e4:d6:58:fc:c3:48:be:c1:04:5c:4e:20:
e5:ff:b3:ef:72:c9:fc:f1:50:00:25:39:62:3b:29:90:7c:e0:
62:86:e3:28:3a:09:50:47:ec:52:ad:41:34:50:2c:30:c1:98:
44:44:a3:a9:c2:2d:8f:f2:d7:35:07:da:b1:1b:bc:fb:12:7b:
8d:c3:5f:7d:1f:01:31:db:98:2e:e3:df:8c:6c:96:af:35:93:
79:6a:60:3c:83:90:bf:89:d4:37:a8:5b:93:bb:98:bc:ba:6c:
37:ae:08:9c:84:fc:d7:d0:51:4d:0d:9a:76:ca:0f:bc:5b:96:
fb:5c:9f:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:04:47 2025 by rpki-client