Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json)
Hash identifier: l5SfWLoQofhuDwtDPxyUsSXLKa3gNOG/SxFCpDg6h6o=
Subject key identifier: 3F:8F:60:73:FE:1F:58:12:69:90:68:CD:F4:C1:66:C6:64:1A:D9:A6
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 019A28546CA4241FD4BE598383D7895FB7CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
Manifest number: 12A2
Signing time: Tue 28 Oct 2025 01:00:12 +0000
Manifest this update: Tue 28 Oct 2025 01:00:12 +0000
Manifest next update: Wed 29 Oct 2025 01:00:12 +0000
Files and hashes: 1: M5OG91JsCAL60eSIC9Ad8J1tKCQ.roa (hash: 1YIYjfLNUonn/y5DvRwWqNtN3UGauHay3fPvlHRKB78=)
2: NLZJeEG7B459T5HRjzbaryRo4U4.roa (hash: D+Zc3p+KtPQCrkhD8NK/RsRz3Ozk8j3l3fx+in8YU8k=)
3: SX0Et8xCJ-oQPSZhA1vLwpgECss.roa (hash: GtBoUqmPl7+e01rEjLRBIu11uahmgFfyYOp4+G1ts2k=)
4: g3mWLx3QHER7jvUWO9_K86XjFvg.roa (hash: CQjC54kUHdxygPOZtU3D7Ni2Q4FQ2f8Z6SwCWy0D9f0=)
5: hvqfOijr6dDuZ5bH5DmTLJBSNC0.roa (hash: wnrweN82zW3L/i2kjShP1DGJ6lX6f745nj23KDLcERg=)
6: pkTSWC0kyyJmikpwefrKy0hYNBc.roa (hash: uJAe5aUPI71DUshehwa1+fSKLZdP9CODCdcESePQJgY=)
7: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: dPvjOKwWaMncgsvy06X1Ts8Bcy+hlnq3Z1Z5/iKF2I4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:54:6c:a4:24:1f:d4:be:59:83:83:d7:89:5f:b7:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: Oct 28 01:00:12 2025 GMT
Not After : Oct 29 01:00:12 2025 GMT
Subject: CN=3f8f6073fe1f5812699068cdf4c166c6641ad9a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:76:90:39:1f:f8:85:08:4d:50:78:b0:c3:15:
7c:ef:6b:e5:59:b0:6c:9e:27:cc:d6:bf:9c:c7:95:
67:96:32:df:10:d1:58:7d:d6:37:db:82:d9:76:dc:
70:1b:df:bf:32:9c:5f:9a:f6:2f:71:23:52:a4:40:
2f:bf:67:e0:19:76:f7:d2:bf:56:53:32:e0:58:9f:
5a:ed:e3:46:2d:78:c1:55:1a:32:19:c3:ec:2f:6c:
24:e6:75:29:8e:99:41:9e:71:1f:e4:9e:80:2f:fe:
97:75:eb:2a:ed:a4:ec:a3:5b:e3:da:ef:75:48:55:
ba:1e:29:9f:42:a0:03:3c:3f:8b:ea:28:26:db:fb:
40:b4:fe:61:07:13:ea:83:3a:3e:84:72:9f:a7:07:
7b:bf:65:c6:f8:81:61:09:21:e3:06:61:1c:a4:fa:
df:89:1c:89:5a:60:bb:e7:88:3c:cb:8b:40:40:2c:
2c:3c:36:38:77:4e:19:d4:bd:21:5a:d6:ed:7f:b1:
6c:f3:80:98:3e:6c:66:2a:af:62:4b:ed:51:50:72:
48:7f:79:aa:aa:54:fa:a5:2d:7c:32:bc:82:b2:31:
2d:82:ea:66:76:d6:dc:75:e1:a5:a8:76:34:99:0f:
79:83:7b:e9:fb:6f:7e:8c:9a:4c:0d:12:d0:17:ef:
06:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:8F:60:73:FE:1F:58:12:69:90:68:CD:F4:C1:66:C6:64:1A:D9:A6
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:e4:8c:0a:3b:34:d2:5e:9b:78:b2:60:74:99:d2:56:d8:4c:
ee:16:31:4c:45:1b:84:1c:b9:cd:1a:f5:c2:65:ae:4b:f9:20:
9d:50:fd:20:2d:a6:96:16:08:9f:a3:4c:5d:45:24:e9:21:43:
46:2a:d7:c9:bb:0f:44:65:c5:d9:94:61:91:6b:09:c9:f9:ea:
12:8e:90:58:39:a5:4f:4b:6f:ee:b3:30:6d:2e:39:a2:86:98:
94:59:23:a0:59:64:a0:43:72:4d:d4:5c:da:8e:41:d1:39:a2:
39:45:73:56:6d:62:c4:99:0f:fd:63:4b:4c:80:96:bd:f1:d6:
6c:3f:22:a3:30:14:e0:e9:cf:53:3f:fb:66:21:55:cd:b5:42:
67:6f:fc:cf:75:19:7f:9c:3a:3e:5d:a8:89:62:15:5c:9c:d6:
ae:18:4a:01:2e:1d:30:b8:e8:15:df:e2:d7:77:c0:49:79:ba:
83:a6:f6:bf:b6:58:7e:7b:c2:1a:c6:b5:d6:c1:23:c4:e7:f4:
47:52:58:fa:3b:ad:1f:ab:96:9a:bd:70:a2:20:96:14:0a:bf:
d6:79:b6:5a:e0:99:c7:cb:f8:42:7d:83:b6:84:4d:ac:76:c2:
1d:da:34:ad:6b:f8:59:2f:74:6c:e8:e9:f4:55:a9:17:2e:65:
08:dd:2e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 04:44:31 2025 by rpki-client