Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
File: tm6nNZIhwbd9bMAG97ZwapqQgpk.mft (raw, json)
Hash identifier: cVdyUhMeJuAsEajifx2icqimatGvLi0N7Mcw0lr6ANQ=
Subject key identifier: 40:D0:66:DE:4D:D2:C1:A9:0E:F6:1B:1E:31:CD:F5:93:04:28:A3:33
Authority key identifier: B6:6E:A7:35:92:21:C1:B7:7D:6C:C0:06:F7:B6:70:6A:9A:90:82:99
Certificate issuer: /CN=b66ea7359221c1b77d6cc006f7b6706a9a908299
Certificate serial: 019A1D2CB57FBF09E02755855A90B65FD0C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
Manifest number: 1702
Signing time: Sat 25 Oct 2025 21:01:00 +0000
Manifest this update: Sat 25 Oct 2025 21:01:00 +0000
Manifest next update: Sun 26 Oct 2025 21:01:00 +0000
Files and hashes: 1: NlYcoSp45z0WrpR3Tl1MptwPpME.roa (hash: sqtBfE3kNCyJie27C2GkG5RDLoXNkpYCfVwwEjHU9tw=)
2: tm6nNZIhwbd9bMAG97ZwapqQgpk.crl (hash: 614yREdHCWfdgZLmUTTHuAqswRuRRok3w/H0z8DWGHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 21:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1d:2c:b5:7f:bf:09:e0:27:55:85:5a:90:b6:5f:d0:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b66ea7359221c1b77d6cc006f7b6706a9a908299
Validity
Not Before: Oct 25 21:01:00 2025 GMT
Not After : Oct 26 21:01:00 2025 GMT
Subject: CN=40d066de4dd2c1a90ef61b1e31cdf5930428a333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7b:a9:62:80:c5:54:4b:6d:12:ab:4c:36:7e:
34:d7:80:b2:5e:8a:ee:9c:c7:f3:08:80:ea:8e:8c:
e4:f5:85:19:4b:60:3e:ee:78:9f:9b:09:06:a0:2f:
c8:ae:f0:1e:23:15:5d:32:fd:3b:c1:69:c3:4c:ac:
ba:ba:9c:4d:20:c2:16:62:39:b8:90:be:62:e3:49:
da:dc:42:dd:0c:e1:e1:4e:c4:e8:0a:c3:34:0f:9a:
6c:e7:fb:37:0a:af:d7:6d:94:c0:8a:1e:71:32:d7:
5f:1f:53:e9:42:d7:f2:dd:c4:ff:f5:4c:0c:0d:9d:
b9:3c:7c:92:82:15:fd:10:3f:b2:e8:81:05:62:d9:
8b:b3:43:94:e8:e6:89:4b:15:3c:4e:a6:d2:55:1b:
01:b0:4b:24:e3:ee:78:34:e0:14:db:c7:5e:76:83:
41:bf:eb:fa:7b:a3:ec:0f:d5:af:93:45:11:52:fa:
81:c7:08:07:7b:8b:cd:cb:44:96:bf:06:64:d7:08:
78:50:0b:18:9e:ea:91:7b:d3:8c:0b:56:bc:b9:a3:
96:82:8c:88:86:87:5f:6e:b3:49:8b:7c:36:45:bd:
57:a7:9b:47:9b:ca:28:2a:69:36:1f:f7:92:f3:00:
fb:2a:72:c3:fa:cd:70:3a:1c:79:da:39:36:03:46:
e5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D0:66:DE:4D:D2:C1:A9:0E:F6:1B:1E:31:CD:F5:93:04:28:A3:33
X509v3 Authority Key Identifier:
keyid:B6:6E:A7:35:92:21:C1:B7:7D:6C:C0:06:F7:B6:70:6A:9A:90:82:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:ac:94:62:47:79:1d:38:36:a8:79:70:95:ef:81:bb:b6:e6:
9f:4c:00:56:fd:b0:0b:68:7c:f5:57:d0:e7:13:b6:ff:dc:79:
78:39:11:8e:81:f2:7e:13:76:39:8f:7a:ef:33:29:69:44:da:
2f:a7:64:3f:e6:10:a5:f0:1e:9c:3a:d5:c7:44:72:ae:6d:02:
85:73:0a:c6:d8:00:67:98:31:1c:68:f4:06:44:e6:51:8b:f5:
3b:09:12:07:e1:7f:03:49:24:77:18:55:bf:f3:f9:83:ef:c1:
af:7a:31:4b:bc:37:d4:1b:32:15:41:84:99:62:60:c9:5a:be:
af:a1:f0:37:97:6b:b1:83:64:3c:d4:cd:62:d0:19:23:96:bc:
fa:57:a3:2b:87:8b:f8:22:9a:e7:af:ba:96:a7:d8:ae:a3:0a:
a2:ca:c2:60:ec:fe:03:f3:87:2a:a7:f9:d4:d5:8b:a8:5d:53:
28:4f:3f:9a:25:fe:8a:6f:f3:47:ba:a5:0a:2e:19:0e:a1:e2:
35:ec:2a:2c:d0:ee:a0:8b:a6:44:f8:6a:7d:d9:17:1f:13:30:
02:b4:71:dd:0d:b0:e4:4e:8b:f0:48:6a:00:d9:b9:11:43:1d:
b2:e4:7b:cc:ad:ae:b7:56:3d:dd:12:5a:7d:6d:c8:e3:48:53:
d7:5d:be:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 06:40:23 2025 by rpki-client