Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
File: tLC71kRVeO28e6a1v3ypNo0kF78.mft (raw, json)
Hash identifier: Sr8z3ztAsN9AOSU950s+1eqYbkgguZWL2pqeGGPR+50=
Subject key identifier: 9E:89:A7:6E:BA:72:B1:72:60:5F:96:66:2B:67:82:BB:99:98:85:DD
Authority key identifier: B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF
Certificate issuer: /CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf
Certificate serial: 01993680DAAD0FA8DB6AE4DB48257DDED061
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
Manifest number: 0CDF
Signing time: Thu 11 Sep 2025 02:00:38 +0000
Manifest this update: Thu 11 Sep 2025 02:00:38 +0000
Manifest next update: Fri 12 Sep 2025 02:00:38 +0000
Files and hashes: 1: E_gpRXs1wyJj1CMrt4P6GzVFs4U.roa (hash: gqqgWP9QREPzkIwRRirj81r/4D9tgTwnunohsTpcA6w=)
2: HYQhj9GfS2VL1LGH2hoGRnAq_1g.roa (hash: vupLnnm29iaNTZjA+glh+6XHc5HkCkw1Lh/FCGeyQn4=)
3: tLC71kRVeO28e6a1v3ypNo0kF78.crl (hash: Yo57nDjGjMqbX+G2+8GhQpxP96o4fQVSXH+9VzgZc1s=)
4: zqLBYDBfWNqychEyI3nXYt2CCRQ.roa (hash: xPd7pskgYW4omSSyK6JduhnPOzmyiWl553qH0EzZiqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 02:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:80:da:ad:0f:a8:db:6a:e4:db:48:25:7d:de:d0:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf
Validity
Not Before: Sep 11 02:00:38 2025 GMT
Not After : Sep 12 02:00:38 2025 GMT
Subject: CN=9e89a76eba72b172605f96662b6782bb999885dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:5e:ca:bf:a3:44:5f:0c:94:48:8c:e5:60:96:
2c:cc:e1:53:6c:9b:d1:e5:34:d6:32:50:51:70:c7:
29:a3:95:7f:7b:25:04:76:7e:32:88:df:5c:7e:ff:
b7:8a:ae:b0:f7:a7:60:04:dd:47:58:6f:38:8d:91:
81:ae:a2:b9:ca:50:15:c3:42:ba:fa:03:c6:f8:4a:
8e:9d:9d:56:10:f5:97:1f:4e:04:b3:6c:f1:af:65:
2c:6c:c3:4d:a0:5a:af:93:81:84:08:8c:2c:b4:cf:
d2:06:d3:3c:f0:2f:49:da:d0:4c:90:d1:61:88:64:
2f:49:47:03:96:14:ed:48:b9:e0:cf:6a:dd:d5:32:
34:1c:85:39:c6:b7:b7:30:90:01:13:d0:f7:b3:cc:
5b:4e:05:14:1b:e2:3a:b6:dd:50:61:57:df:04:2b:
e9:17:2c:94:52:f4:a6:c7:96:8a:94:b4:2c:3e:6a:
e6:90:bf:31:00:c4:19:af:bc:4d:f1:c8:f2:18:70:
30:28:3f:15:f3:d9:dd:36:ec:9b:78:12:7c:eb:f2:
39:a1:60:a9:48:57:57:f7:53:cb:46:ba:6c:24:12:
e8:7b:e0:36:2d:51:1b:27:f0:f3:23:df:1b:e2:65:
5a:ad:2b:3f:10:86:3a:39:9e:ac:50:ec:e5:df:d4:
8c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:89:A7:6E:BA:72:B1:72:60:5F:96:66:2B:67:82:BB:99:98:85:DD
X509v3 Authority Key Identifier:
keyid:B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:ea:f3:39:17:ea:61:ea:f6:d3:4a:17:79:b1:86:09:43:7f:
d3:f1:1d:59:da:00:19:04:d0:07:71:28:a2:77:38:1a:51:83:
53:25:b0:18:9b:0f:53:46:ba:a2:89:cc:dc:36:7f:ff:3c:f0:
14:7c:38:b1:6d:82:e4:f4:1e:98:60:c0:2c:2c:ec:fc:ab:f5:
e9:84:d3:60:78:ea:54:2e:86:51:1e:a7:e9:d4:9c:77:4b:7b:
52:07:cc:34:3c:84:ca:1f:30:f7:bd:cc:db:79:df:50:80:f1:
7d:0d:2c:71:94:0a:19:6b:d2:54:df:b3:e2:ef:3e:13:3a:2b:
30:85:c7:f4:d3:1b:f7:7c:e7:e7:15:c5:62:92:6b:14:85:d3:
14:cc:a8:82:23:96:2a:a6:4c:72:f1:e2:4f:15:73:8c:98:7c:
28:bd:eb:f3:b6:ba:92:f9:ea:9f:03:74:99:58:ca:17:71:90:
8f:0f:15:1c:f8:bc:ad:ae:dd:bf:aa:a8:45:83:47:cd:c9:5f:
44:3c:df:f3:5d:86:4a:d8:db:c6:a1:ae:a8:0f:84:b6:ce:18:
c0:78:11:4a:e6:5b:05:0a:fa:22:40:97:a6:b0:54:50:96:3c:
02:8d:49:15:ca:79:be:a6:56:bb:34:24:73:22:4e:85:ff:36:
9a:a9:b2:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 11:19:55 2025 by rpki-client