Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft
File: TtMkzMCQuDGCmReur3ODTwg0Ss4.mft (raw, json)
Hash identifier: MBHjY1HJJ2wKY48NmbBb2Fh4SRhvT3PrMjtwrs0GeaU=
Subject key identifier: 82:23:7A:3B:37:7C:C7:26:02:DF:C9:E2:84:12:5E:E8:F5:A1:A2:B8
Authority key identifier: 4E:D3:24:CC:C0:90:B8:31:82:99:17:AE:AF:73:83:4F:08:34:4A:CE
Certificate issuer: /CN=4ed324ccc090b831829917aeaf73834f08344ace
Certificate serial: 01992FDA6B18D08301D96ABD6CBBDBEDA5F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TtMkzMCQuDGCmReur3ODTwg0Ss4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft
Manifest number: 0188
Signing time: Tue 09 Sep 2025 19:01:07 +0000
Manifest this update: Tue 09 Sep 2025 19:01:07 +0000
Manifest next update: Wed 10 Sep 2025 19:01:07 +0000
Files and hashes: 1: LpPDa_hMKwPOheYcHrNv5BDTWog.roa (hash: 2CoZfLFeobkKqc9qZWTYrYW94wPP5u5Zmz2xUC1WQvs=)
2: TtMkzMCQuDGCmReur3ODTwg0Ss4.crl (hash: XsiWYB2hpwaOYXAwD9TU4CrByCppXUPFRRskx1Tjlg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TtMkzMCQuDGCmReur3ODTwg0Ss4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 19:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2f:da:6b:18:d0:83:01:d9:6a:bd:6c:bb:db:ed:a5:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ed324ccc090b831829917aeaf73834f08344ace
Validity
Not Before: Sep 9 19:01:07 2025 GMT
Not After : Sep 10 19:01:07 2025 GMT
Subject: CN=82237a3b377cc72602dfc9e284125ee8f5a1a2b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:32:19:78:71:ce:2d:c5:79:45:ff:72:6e:9c:
24:7e:f6:66:31:dc:12:f1:f4:39:ea:07:32:75:cd:
4b:08:ce:70:f1:1b:52:21:79:bd:1d:96:4a:e6:38:
31:66:30:af:07:48:c7:c9:29:0a:a9:5e:5d:0c:95:
bc:e1:85:44:7b:d4:34:6e:86:86:e2:96:d4:7d:df:
d3:ca:50:32:ba:e3:73:7d:34:95:c1:c9:a1:e6:10:
b9:ba:50:84:85:b1:32:25:ab:33:5c:cc:4d:af:54:
50:60:c9:ba:d3:d4:3f:c9:18:fc:fe:00:5c:4b:ca:
4d:37:8f:3f:3d:6d:d6:f3:c0:ed:57:66:ec:90:68:
9d:1e:22:ed:ad:6d:5d:4f:74:d7:6e:4c:dc:1c:81:
19:c3:85:bb:cc:72:f2:a1:d3:dc:0c:38:04:68:a1:
81:9a:ad:e5:ae:5b:2c:0c:19:7d:9a:9f:09:2f:08:
5e:93:2d:fc:3e:6d:f0:e1:d5:13:58:62:75:3a:db:
c7:42:3f:dd:ff:e2:5f:c4:c4:80:40:a8:6b:f4:f6:
b9:1b:99:5a:78:2a:43:26:73:8d:62:0f:32:31:3a:
91:69:dd:ec:16:7a:15:8e:86:d1:ed:8c:6f:12:11:
f0:d5:f2:58:00:9f:5a:8e:04:31:dd:c5:1e:2e:cf:
d5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:23:7A:3B:37:7C:C7:26:02:DF:C9:E2:84:12:5E:E8:F5:A1:A2:B8
X509v3 Authority Key Identifier:
keyid:4E:D3:24:CC:C0:90:B8:31:82:99:17:AE:AF:73:83:4F:08:34:4A:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TtMkzMCQuDGCmReur3ODTwg0Ss4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:1a:fd:51:49:69:08:43:f2:7d:3e:1c:79:76:aa:41:ee:0d:
dd:35:c9:22:4b:92:ce:38:0e:a9:66:4d:85:0c:f0:00:91:d4:
61:39:f3:5d:ae:ad:59:51:0c:b2:29:2a:58:cc:93:e5:e5:a0:
ed:88:b0:13:f4:2e:5c:66:98:e5:59:5e:c4:76:fb:e7:32:7d:
b3:e2:44:92:70:53:bd:6d:94:c7:a0:6e:cf:d0:e8:29:eb:c3:
6e:93:db:08:eb:71:40:52:7a:c9:44:2c:93:d1:ac:38:7d:79:
81:a7:19:fb:9b:43:19:0c:f6:b5:d8:e2:6c:b8:c3:91:5a:7f:
d0:f5:d7:78:20:08:19:0e:16:52:ae:51:c2:db:dd:9a:6c:18:
e8:12:7d:f2:1c:a9:9a:69:7f:5d:b2:18:38:79:b9:a2:56:59:
be:3e:8a:db:5d:77:9e:bb:0c:ae:74:bf:17:65:2e:06:34:55:
c3:70:02:30:5c:34:89:01:53:bf:f7:7d:d6:f8:2d:d5:42:16:
98:d5:d6:df:2d:df:67:c6:d2:7d:9e:26:5d:25:0a:79:ed:2c:
6f:72:69:5b:1c:ed:dc:c3:0f:cf:d1:6a:d4:f9:b7:fd:9d:08:
b1:b0:d6:6a:a1:ee:c2:be:f5:f7:a9:99:53:ec:34:11:32:8e:
84:89:c0:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 03:58:03 2025 by rpki-client