Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
File: tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft (raw, json)
Hash identifier: KyZ9osVe+Xq3xUKn69/KCKVvYPWqy5lR28WEJUnLulQ=
Subject key identifier: FF:EE:42:5E:F8:64:A8:3B:9A:48:A5:2B:5A:DA:C8:18:CE:D4:6A:B9
Authority key identifier: B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
Certificate issuer: /CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Certificate serial: 01993680DA442D1D9824584706A170F7645B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
Manifest number: 1680
Signing time: Thu 11 Sep 2025 02:00:37 +0000
Manifest this update: Thu 11 Sep 2025 02:00:37 +0000
Manifest next update: Fri 12 Sep 2025 02:00:37 +0000
Files and hashes: 1: AwMEJfGD-_TNRZ72c5x-9dIRsd4.roa (hash: 6UVDM1JqxHmjbnJ4pDDIOsD2r8EQyy1bF6KNp9ocKGg=)
2: VJtvXDXYtAcS9C4LIbmlaqXh4Co.roa (hash: THcKGdc9aA5a+OjJYNnV65xxowh1d3kb8KQrHqiCPq4=)
3: fUXrv6-AqG-Sdl9xICl4cQAU7yA.roa (hash: jv2v4x0octz1D9witRg3iiWbwIrgi4wxjje3xLewI+U=)
4: tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl (hash: O+bHu8ZuwoeD1o8ztdHWtsC+6ChkRdTplOkh2+mxobk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:80:da:44:2d:1d:98:24:58:47:06:a1:70:f7:64:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Validity
Not Before: Sep 11 02:00:37 2025 GMT
Not After : Sep 12 02:00:37 2025 GMT
Subject: CN=ffee425ef864a83b9a48a52b5adac818ced46ab9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:8a:0e:ea:00:57:be:6b:cf:75:3a:db:e3:a0:
2a:b8:bd:54:26:2f:15:5d:ad:c0:f6:da:ad:36:30:
4a:f8:8a:e2:bd:b6:a4:95:1a:b2:eb:28:f2:71:fd:
c2:df:2b:55:8e:d3:53:bf:15:f9:40:6a:fb:32:e4:
6c:6d:fc:af:25:23:2d:b1:93:2c:5c:80:50:c1:16:
48:47:ca:f4:cf:d7:08:65:c0:c6:d7:45:77:8d:d0:
93:98:00:ab:b3:85:3c:a0:ba:44:4d:a5:4c:ec:7d:
38:60:21:65:f7:54:a5:e6:ae:49:e2:bb:43:a4:28:
18:b9:7d:4f:dd:b7:ee:5a:e5:fb:c1:b1:ba:47:ef:
a6:7a:61:c0:2e:33:a1:12:26:56:26:fb:ac:d0:e0:
b0:b3:b7:86:2b:37:fd:30:67:c4:d6:ba:dc:54:79:
48:9e:07:f7:78:2b:b0:cb:81:d4:97:3c:f7:26:4f:
d9:07:e9:04:2e:f8:08:63:3c:e7:e1:15:07:4e:4f:
63:3a:45:95:ed:95:d0:51:b7:9f:5e:4f:4e:9d:77:
54:06:7d:a8:e7:5a:f8:de:1b:38:20:5f:79:f7:22:
3c:f6:17:07:2c:61:9b:7d:69:4a:70:c2:4f:68:d1:
9a:43:99:2f:4f:ae:c1:25:6d:47:bd:fe:94:f8:32:
73:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:EE:42:5E:F8:64:A8:3B:9A:48:A5:2B:5A:DA:C8:18:CE:D4:6A:B9
X509v3 Authority Key Identifier:
keyid:B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:43:6d:95:82:cd:0d:7b:5b:82:a9:3e:07:27:9f:69:9d:08:
d5:7a:8f:b5:6e:c3:4e:4d:02:07:f7:a3:0c:3a:92:30:15:e6:
d0:14:12:ae:68:59:04:df:48:61:5e:bd:29:4b:2b:64:2c:1e:
23:60:0f:f7:31:24:8e:2e:3c:e5:27:87:dc:a7:a7:46:3c:9b:
c0:b9:31:86:9d:15:d9:fc:02:d2:97:c2:50:6e:eb:13:0f:47:
2e:c7:fd:b6:a4:a0:11:70:2f:fc:92:55:42:19:74:72:41:a6:
ba:8c:c6:b9:1f:ec:da:9e:72:cb:6b:e4:c3:f5:d1:e4:83:65:
81:7b:74:24:df:6e:af:ad:11:02:b7:55:f3:a4:34:2e:29:3e:
db:86:65:75:65:73:db:2a:71:c9:0a:bd:9d:84:d4:35:60:af:
50:2d:8b:1d:68:fa:55:a8:88:44:48:91:59:3a:2b:2b:f9:85:
09:9e:6c:bf:01:43:06:d5:44:bf:40:5b:62:4b:e3:a0:98:73:
bb:8d:38:a3:d8:b8:aa:15:d1:13:ed:d3:af:4b:5f:e6:ec:8c:
34:74:09:c7:db:df:e9:a6:b2:1d:90:71:cd:ca:f4:f0:04:43:
75:b3:a6:80:69:bc:00:30:88:b5:36:7c:19:bc:c2:53:8a:40:
a7:02:03:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk2gNpELR2YJFhHBqFw92RbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NDI3ZWE0OWY5NzJkMTljNTYzOTNhNjg5ZTdjYmViOTkw
ZDVkN2EwHhcNMjUwOTExMDIwMDM3WhcNMjUwOTEyMDIwMDM3WjAzMTEwLwYDVQQD
EyhmZmVlNDI1ZWY4NjRhODNiOWE0OGE1MmI1YWRhYzgxOGNlZDQ2YWI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkYoO6gBXvmvPdTrb46AquL1UJi8V
Xa3A9tqtNjBK+IrivbaklRqy6yjycf3C3ytVjtNTvxX5QGr7MuRsbfyvJSMtsZMs
XIBQwRZIR8r0z9cIZcDG10V3jdCTmACrs4U8oLpETaVM7H04YCFl91Sl5q5J4rtD
pCgYuX1P3bfuWuX7wbG6R++memHALjOhEiZWJvus0OCws7eGKzf9MGfE1rrcVHlI
ngf3eCuwy4HUlzz3Jk/ZB+kELvgIYzzn4RUHTk9jOkWV7ZXQUbefXk9OnXdUBn2o
51r43hs4IF959yI89hcHLGGbfWlKcMJPaNGaQ5kvT67BJW1Hvf6U+DJzRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP/uQl74ZKg7mkilK1rayBjO1Gq5MB8GA1UdIwQY
MBaAFLVCfqSfly0ZxWOTponny+uZDV16MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9kMmJiNjgtOWJjNy00NzkxLTg1Mjgt
MGM0OTU0NzdjYTEwLzEvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC9kMmJiNjgtOWJjNy00NzkxLTg1MjgtMGM0OTU0NzdjYTEw
LzEvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmUNtlYLN
DXtbgqk+ByefaZ0I1XqPtW7DTk0CB/ejDDqSMBXm0BQSrmhZBN9IYV69KUsrZCwe
I2AP9zEkji485SeH3KenRjybwLkxhp0V2fwC0pfCUG7rEw9HLsf9tqSgEXAv/JJV
Qhl0ckGmuozGuR/s2p5yy2vkw/XR5INlgXt0JN9ur60RArdV86Q0Lik+24ZldWVz
2ypxyQq9nYTUNWCvUC2LHWj6VaiIREiRWTorK/mFCZ5svwFDBtVEv0BbYkvjoJhz
u404o9i4qhXRE+3Tr0tf5uyMNHQJx9vf6aayHZBxzcr08ARDdbOmgGm8ADCItTZ8
GbzCU4pApwIDBg==
-----END CERTIFICATE-----
Generated at Thu Sep 11 03:35:09 2025 by rpki-client