Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/tmdL-ORX4pV-7k9R-Le0TFfbmio.mft
File: tmdL-ORX4pV-7k9R-Le0TFfbmio.mft (raw, json)
Hash identifier: 5cbAXqYVxhLblQcUABuMsRWscKE2uC8HZFn0pcHTA8A=
Subject key identifier: BC:0A:9E:40:14:9A:50:69:F1:A2:CF:57:BE:AD:47:22:BD:E3:D8:84
Authority key identifier: B6:67:4B:F8:E4:57:E2:95:7E:EE:4F:51:F8:B7:B4:4C:57:DB:9A:2A
Certificate issuer: /CN=b6674bf8e457e2957eee4f51f8b7b44c57db9a2a
Certificate serial: 019A71131083BCDB367BAA2F850BB495C3D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tmdL-ORX4pV-7k9R-Le0TFfbmio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/tmdL-ORX4pV-7k9R-Le0TFfbmio.mft
Manifest number: 1119
Signing time: Tue 11 Nov 2025 04:01:06 +0000
Manifest this update: Tue 11 Nov 2025 04:01:06 +0000
Manifest next update: Wed 12 Nov 2025 04:01:06 +0000
Files and hashes: 1: tmdL-ORX4pV-7k9R-Le0TFfbmio.crl (hash: P4BYwl41n4kVSpZi1E/k5+S3mhPaa/9zxbVhGTenpWU=)
2: tyBiH_k1-T3tg2PjNihavpjVNFg.roa (hash: +MCpw/+jgYqZnXSoZlFEXezP/GiLWQcwVakj6OdX0hc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/tmdL-ORX4pV-7k9R-Le0TFfbmio.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/tmdL-ORX4pV-7k9R-Le0TFfbmio.mft
rsync://rpki.ripe.net/repository/DEFAULT/tmdL-ORX4pV-7k9R-Le0TFfbmio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:10:83:bc:db:36:7b:aa:2f:85:0b:b4:95:c3:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6674bf8e457e2957eee4f51f8b7b44c57db9a2a
Validity
Not Before: Nov 11 04:01:06 2025 GMT
Not After : Nov 12 04:01:06 2025 GMT
Subject: CN=bc0a9e40149a5069f1a2cf57bead4722bde3d884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:eb:19:59:28:2f:e5:73:54:c1:03:af:a8:3f:
c2:92:10:74:c6:3e:c7:e9:71:2f:05:df:f6:ef:75:
9a:fb:93:cf:c6:4f:bc:e9:cd:be:99:39:1e:76:5d:
c3:1a:41:c7:f5:f4:e1:f5:f5:18:c6:b9:ac:03:6d:
3c:c3:46:ed:2e:5c:20:ec:02:60:15:7f:00:d0:a5:
55:3d:d4:b9:d1:ff:75:b0:68:3c:c8:b4:95:3a:a5:
78:9a:23:e2:ad:05:31:7c:e9:70:41:9a:ba:f0:2a:
34:43:24:4c:44:21:9c:6f:8b:1f:76:65:bc:a6:10:
26:0b:3f:60:74:2d:a4:6c:66:4c:b9:29:42:de:22:
c6:1a:95:68:d5:e1:5d:0f:e6:9c:11:94:e2:9e:de:
98:a0:09:5f:56:d1:16:1f:3f:f9:e0:9a:37:3e:31:
98:54:0c:8d:9f:70:e4:b4:fe:ec:2d:bc:d6:f3:35:
60:ff:e4:e7:f0:17:6c:c8:a9:cb:62:a5:f7:74:5a:
01:bd:37:0a:eb:b9:72:78:57:af:26:bb:a3:de:60:
3f:56:f1:16:d5:92:11:8d:6b:ad:46:fd:c3:b9:f5:
dd:dd:3d:80:f5:5c:6a:12:dd:9e:72:fb:98:a7:dd:
44:44:66:a8:54:9d:95:21:6b:a3:cc:3e:d4:60:7b:
13:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:0A:9E:40:14:9A:50:69:F1:A2:CF:57:BE:AD:47:22:BD:E3:D8:84
X509v3 Authority Key Identifier:
keyid:B6:67:4B:F8:E4:57:E2:95:7E:EE:4F:51:F8:B7:B4:4C:57:DB:9A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tmdL-ORX4pV-7k9R-Le0TFfbmio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/tmdL-ORX4pV-7k9R-Le0TFfbmio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/tmdL-ORX4pV-7k9R-Le0TFfbmio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:f7:9f:15:6a:ba:39:38:78:da:50:0a:cb:94:dd:5f:d3:6c:
cf:83:2d:ad:a8:ea:58:33:8f:cf:05:d0:06:6e:ae:e5:be:75:
e1:b1:f4:7f:88:a8:d8:04:1f:19:e6:5a:31:87:01:9b:92:13:
58:cd:de:37:41:a3:85:88:86:9c:a8:4f:a2:91:6b:20:43:4d:
67:8a:c9:89:7d:26:b5:50:c6:17:46:e1:ef:b1:d8:0b:05:38:
34:e0:b4:92:6c:40:42:35:0b:9c:16:9f:e8:fb:ec:15:d3:a7:
dd:40:82:0b:b2:6b:0a:54:07:44:0b:b2:93:7a:f4:cc:ad:84:
fc:cf:c8:d5:c0:48:08:55:c8:e8:18:64:90:e5:cd:92:a1:b8:
03:35:da:c0:6f:2d:0b:9c:88:5a:4d:db:d6:f8:8c:26:0f:9e:
fc:40:60:80:41:f9:63:18:65:30:2a:23:45:01:36:27:bc:b1:
3a:89:75:24:17:ca:a6:c8:61:c4:42:c4:50:83:3e:70:b5:05:
e1:b9:4f:dd:10:01:f8:55:73:d4:0f:71:e1:e0:aa:b2:dd:68:
92:b3:26:e3:36:8a:aa:6e:26:25:3e:cc:39:31:9a:4d:90:93:
74:d0:f1:72:78:9b:9e:41:e6:1a:84:5e:07:91:0d:d3:ca:04:
ab:21:5d:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:08:02 2025 by rpki-client