Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json)
Hash identifier: AXHLLIZjQLEhxAAF7u+Ot/w1Y8nddzT46XYgNnSeWM4=
Subject key identifier: CF:DB:1A:C0:BE:97:88:06:C0:FE:3C:5A:22:53:42:09:40:12:27:69
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 01993311FFB533B111C501781797286B9412
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
Manifest number: 1223
Signing time: Wed 10 Sep 2025 10:00:41 +0000
Manifest this update: Wed 10 Sep 2025 10:00:41 +0000
Manifest next update: Thu 11 Sep 2025 10:00:41 +0000
Files and hashes: 1: M5OG91JsCAL60eSIC9Ad8J1tKCQ.roa (hash: 1YIYjfLNUonn/y5DvRwWqNtN3UGauHay3fPvlHRKB78=)
2: NLZJeEG7B459T5HRjzbaryRo4U4.roa (hash: D+Zc3p+KtPQCrkhD8NK/RsRz3Ozk8j3l3fx+in8YU8k=)
3: SX0Et8xCJ-oQPSZhA1vLwpgECss.roa (hash: GtBoUqmPl7+e01rEjLRBIu11uahmgFfyYOp4+G1ts2k=)
4: g3mWLx3QHER7jvUWO9_K86XjFvg.roa (hash: CQjC54kUHdxygPOZtU3D7Ni2Q4FQ2f8Z6SwCWy0D9f0=)
5: hvqfOijr6dDuZ5bH5DmTLJBSNC0.roa (hash: wnrweN82zW3L/i2kjShP1DGJ6lX6f745nj23KDLcERg=)
6: pkTSWC0kyyJmikpwefrKy0hYNBc.roa (hash: uJAe5aUPI71DUshehwa1+fSKLZdP9CODCdcESePQJgY=)
7: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: vyB6oGXxOvDPQ7g/nW4NIJzdlGycvx4Y5YGXsaoPGYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 10:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:11:ff:b5:33:b1:11:c5:01:78:17:97:28:6b:94:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: Sep 10 10:00:41 2025 GMT
Not After : Sep 11 10:00:41 2025 GMT
Subject: CN=cfdb1ac0be978806c0fe3c5a2253420940122769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:db:44:ab:e9:47:98:22:18:19:a6:a5:5f:1a:
c7:6c:96:53:23:07:3e:ab:ba:83:fd:55:a9:1c:d8:
81:9a:1f:59:30:63:84:ca:81:d1:81:08:25:75:ed:
64:34:84:4a:4d:ac:1e:f4:17:10:dd:5b:29:43:12:
5e:07:13:be:e6:09:3b:cb:89:7e:0d:54:31:6e:11:
c5:20:64:4a:20:4f:96:c1:eb:41:8f:03:6c:45:59:
6b:68:8d:b9:e7:ca:59:b2:e8:86:3c:98:7a:30:34:
f8:fd:32:ee:63:8b:06:c6:86:ea:27:c3:ca:b1:dc:
2d:07:f3:e7:79:b2:a1:60:31:1c:cf:03:17:70:92:
77:e8:43:8a:0c:17:81:2e:a5:58:b9:d1:cf:e6:84:
b6:5b:ee:77:5b:db:a5:0b:a6:15:ec:be:48:f6:ec:
67:ea:b6:51:af:70:b1:d3:c8:bd:8c:17:99:ec:97:
e3:36:c5:cc:d9:16:25:9d:6a:a1:6a:a0:71:c1:ba:
d4:80:69:90:cc:b6:75:a6:c9:4e:1f:ba:fc:70:df:
61:2b:9e:e5:a5:4e:ec:0b:b7:f3:fd:2c:11:4c:c5:
53:d0:d2:5a:30:a2:77:77:d9:46:ba:c2:58:1f:59:
e5:b6:7e:02:49:79:10:c8:58:62:19:f5:03:e4:0d:
d0:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:DB:1A:C0:BE:97:88:06:C0:FE:3C:5A:22:53:42:09:40:12:27:69
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:dc:24:3e:db:c7:3c:66:d7:f9:4f:33:6d:2c:0e:10:83:10:
24:63:ed:0a:02:cc:63:14:d7:94:40:bd:e6:ca:d7:80:eb:5b:
f5:da:36:1e:c1:62:1e:7d:17:d4:de:29:3f:85:fd:53:2d:00:
25:f1:ac:9d:6d:b3:f4:70:ff:e2:3d:a6:92:41:53:be:83:df:
8a:d7:3d:f6:a6:11:c5:94:7d:e0:f7:9b:ee:5a:7c:d2:43:bd:
8a:77:17:68:92:94:8a:81:9b:b9:58:8e:46:52:18:b3:89:1f:
6c:e5:37:b3:fc:01:88:b9:a9:d5:1a:8c:18:b0:af:1f:e3:59:
42:c1:af:0c:94:8b:4f:67:42:6e:04:34:d2:2d:cf:c0:eb:03:
8c:9f:d4:d7:fa:b6:f0:b4:13:0e:cb:ce:a7:cf:23:83:89:7c:
b5:ad:65:22:87:6e:c8:ad:25:60:c5:2c:5d:c9:74:43:01:7b:
05:db:92:a5:a5:9e:e2:cc:bd:43:8f:67:b0:75:64:60:54:d5:
dc:8e:da:08:f5:72:e8:82:75:33:5e:19:2a:53:82:b5:cb:65:
cb:a8:36:df:0c:c9:c2:76:df:9e:28:3f:f9:1f:7d:b2:80:01:
f8:64:28:a7:1d:9d:3f:21:15:8f:3f:a5:57:50:2c:02:bf:78:
4d:8b:cc:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 15:04:17 2025 by rpki-client