Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
File: tLC71kRVeO28e6a1v3ypNo0kF78.mft (raw, json)
Hash identifier: NGOXB0Frr8kv2Nmvg9JTnY9jb6tTEKyz4ditLLaPImk=
Subject key identifier: CE:C4:D8:E6:5D:21:F2:37:92:E7:59:BF:D0:E7:34:3B:82:96:69:94
Authority key identifier: B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF
Certificate issuer: /CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf
Certificate serial: 019A202D24E1C4686269C3B89C798D35FC5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
Manifest number: 0D58
Signing time: Sun 26 Oct 2025 11:00:20 +0000
Manifest this update: Sun 26 Oct 2025 11:00:20 +0000
Manifest next update: Mon 27 Oct 2025 11:00:20 +0000
Files and hashes: 1: E_gpRXs1wyJj1CMrt4P6GzVFs4U.roa (hash: gqqgWP9QREPzkIwRRirj81r/4D9tgTwnunohsTpcA6w=)
2: HYQhj9GfS2VL1LGH2hoGRnAq_1g.roa (hash: vupLnnm29iaNTZjA+glh+6XHc5HkCkw1Lh/FCGeyQn4=)
3: tLC71kRVeO28e6a1v3ypNo0kF78.crl (hash: jgYJJy2LkaGdhzTF7PD737Y8cvcKZM08L7PNJjXco8I=)
4: zqLBYDBfWNqychEyI3nXYt2CCRQ.roa (hash: xPd7pskgYW4omSSyK6JduhnPOzmyiWl553qH0EzZiqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 05:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:20:2d:24:e1:c4:68:62:69:c3:b8:9c:79:8d:35:fc:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf
Validity
Not Before: Oct 26 11:00:20 2025 GMT
Not After : Oct 27 11:00:20 2025 GMT
Subject: CN=cec4d8e65d21f23792e759bfd0e7343b82966994
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:72:82:34:c4:5c:9d:9e:ee:5c:7d:b6:51:f0:
ee:b9:cd:0c:6a:b9:e2:8c:f8:c1:45:2b:3a:96:e5:
ef:be:b1:3a:32:51:67:da:d9:94:b5:25:a0:d3:52:
bd:9f:5d:56:e9:51:a2:2c:c9:fb:48:00:b2:cb:26:
4a:36:a3:73:eb:a0:64:dd:fe:54:eb:65:6a:d0:25:
86:06:89:90:7c:d7:94:eb:d7:38:86:6b:b3:77:05:
21:d5:8f:8b:f8:dd:ce:10:d6:59:42:54:31:35:40:
58:bc:84:26:71:df:b1:ec:a6:96:e9:05:03:0f:15:
57:15:a0:fa:69:6b:c8:f2:83:9a:50:c8:c2:0c:6f:
3d:df:e3:d8:bd:a5:45:06:2c:94:ca:25:d2:6d:fc:
af:1a:cf:5d:75:9d:b8:05:f3:0a:a6:36:0e:55:fb:
03:53:2e:57:a7:1a:d8:b9:65:a9:cf:d9:4d:db:e0:
bf:97:f7:e6:c8:90:8c:94:22:71:bf:3a:cc:e6:9d:
c2:5a:7b:10:37:56:9b:21:4c:8b:d3:9d:32:f4:38:
00:1d:2f:8f:37:a7:2c:20:97:fd:c0:a3:24:4f:cc:
f3:92:74:30:ce:3d:db:1c:64:f7:81:0e:25:a1:84:
6d:21:41:ad:17:81:d3:6e:76:f9:c9:80:4f:30:ac:
d6:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:C4:D8:E6:5D:21:F2:37:92:E7:59:BF:D0:E7:34:3B:82:96:69:94
X509v3 Authority Key Identifier:
keyid:B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:82:9e:90:5e:98:5a:4d:d9:a1:b3:c9:e3:ec:74:66:f4:f4:
b2:2f:b4:8c:a3:51:38:71:1a:9f:f3:25:a0:62:00:fa:22:15:
c7:9e:c6:28:27:b9:be:d6:4f:47:87:9b:15:e5:ce:b4:7f:20:
c6:3c:d6:ed:1f:34:76:20:e8:8c:e6:91:81:9a:00:a3:20:91:
76:03:8f:39:79:59:a5:28:65:43:c0:a2:69:19:f4:00:59:32:
75:63:f0:4f:29:e0:17:a3:06:6d:5e:4c:40:d7:d5:f7:01:8f:
80:15:f1:d8:07:8a:84:51:de:7a:a8:59:98:ed:85:56:1d:6c:
f2:33:23:a6:36:3d:b3:51:2c:25:94:f9:e4:21:10:e3:1f:63:
35:36:84:26:5f:dc:cb:7c:8d:a2:b5:be:e4:69:e6:ff:08:83:
f7:66:8e:12:d9:29:d6:66:01:6c:1a:d3:08:f9:64:34:e5:dd:
5d:76:b2:87:42:11:f6:ea:e8:e7:b4:ae:d5:e6:86:02:2c:0c:
43:16:03:68:7b:c9:e7:b5:66:60:5a:94:7e:70:37:c2:57:d5:
95:70:10:a0:bd:fd:03:77:8c:86:8b:15:02:89:45:f8:dd:3d:
0b:06:8f:48:dd:47:8b:0d:b6:a4:1a:58:1d:8a:0c:b0:a2:57:
0a:5e:90:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 14:29:17 2025 by rpki-client